Pixieray Privacy Policy

Last updated: April 28, 2025

Pixieray Oy (“Pixieray” or “We”) respects your privacy and is committed to processing, maintaining, and using your personal data responsibly. This Privacy Policy applies to personal data that is processed as you visit our website or contact us. Pixieray Oy is the data controller for these processing activities.

This Privacy Policy may be updated from time to time.

Contact Details of Controller

Name: Pixieray Oy (“Pixieray” or “We”)
Company ID: 3208010-5
Karamalmintie 2, 02630 Espoo, Finland

You can contact us through https:/ixieyewear.com/contact or write to us at the address above.

PERSONAL DATA PROCESSED AND SOURCES OF PERSONAL DATA

We primarily receive personal data directly from you. We might, however, to the extent permitted by applicable laws, also collect personal data from third parties.

The types of personal data we collect and process consist of information about individuals who engage with our website or make an inquiry via our website or email. For example, we directly collect data from you when you:

  • Subscribe to our newsletter
  • Fill out our contact box on our website
  • Contact us via email
  • Use or view our website via your browser’s cookies

In detail, the information processed includes basic identifying details such as your name, email address, other contact information and IP address, from which we may also derive your approximate location.

THE PURPOSE AND LEGAL BASIS FOR PROCESSING

We process your personal data based on:

  • Our legitimate interest: engaging with you, improving our website, and for analytics
  • Your consent: for example, for marketing emails or cookie tracking (you can withdraw consent at any time)
  • Legal obligations: where required by law

DATA RETENTION

We retain personal data only as long as necessary for the purposes for which we collected it or to comply with legal obligations. For newsletter/contact form data, we retain the data up to 1 year. In some cases, we may retain data longer if required by applicable laws.

PERSONAL DATA RECIPIENTS

We generally do not share personal data with third parties outside of our organization, but may do so in the following situations:

For legal reasons

We may share personal data with third parties outside our organization if access to the personal data is reasonably necessary to: (i) meet any applicable law, regulation, and/or court order; (ii) detect, prevent or otherwise address crime and/or security issues.

Further, we use Google Analytics, Google Ads and the LinkedIn Insight Tag to understand how our visitors interact with our website and to improve our advertising activities, and may share data with them for this purpose. You can find more information on how Google uses data in this context at www.google.com/policies/privacy/partners/.

To service providers

We may share personal data with service providers who perform services for us. Such service providers are, for example, business support or cloud storage operators and always operate under contract and on behalf of us.

DATA TRANSFERS OUTSIDE OF EEA

Your personal data is mainly processed within the European Economic Area.

However, in certain cases, we may transfer or access personal data outside the European Economic Area. In such cases, we provide adequate protection for the transfers of personal data to countries outside of the European Economic Area through a series of agreements with our service providers based on the Standard Contractual Clauses or through other appropriate safeguards, such as the EU-U.S. Data Privacy Framework.

YOUR RIGHTS

Right to access

You have a right to access the personal data processed by us. This means that you may contact us and we will inform you of what personal data we have collected and processed regarding you and the purposes for which the data is used.

Right to withdraw consent

In case the processing is based on a consent granted by you, you may withdraw the consent at any time.

Right to correct

You have the right to have incorrect, imprecise, incomplete, outdated, or unnecessary personal data we have stored corrected or completed. You have the right to update, for example your contact information or your other personal data.

Right to deletion

You may also ask us to delete your personal data from our systems. We will comply with such a request unless we have legitimate grounds not to delete the data.

Right to restriction of processing

You may request us to restrict the processing of personal data, for example, when your data erasure, rectification or objection requests are pending and/or when we do not have legitimate grounds to process your data.

Right to object

You may have the right to object on grounds relating to your particular situation to the processing of your personal data based on our legitimate interest. We will comply with such objection unless we have legitimate grounds not to.

Right to data portability

You have the right to receive the personal data you have provided us with in a structured and commonly used format.

How to use your rights

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at https:/ixieyewear.com/contact or by using the contact information given at the beginning of this Privacy Policy.

We may reject requests that are unreasonably repetitive, excessive, or manifestly unfounded.

INFORMATION SECURITY

We are committed to keeping your data safe and secure. We use a variety of organizational and technical safeguards to protect the personal data we collect and process. Our security controls are designed to maintain an appropriate level of data confidentiality and integrity.

The personal data stored under this Privacy Policy shall only be processed on a need-to-know basis. The use of personal data is protected by appropriate user rights, passwords, and rights of use. Paper documents shall be stored in locked storage.

PRIVACY POLICIES OF OTHER WEBSITES

Our website may contain links to other websites. Our privacy policy applies only to our website and the information we collect, so if you click on a link to another website, you should read their privacy policy.

LODGING A COMPLAINT

In case you consider our processing of personal data to be inconsistent with the applicable data protection laws, you have the right to lodge a complaint with the local supervisory authority for data protection. In Finland, the competent authority is the Data Protection Ombudsman (www.tietosuoja.fi).