Current as of

Privacy Policy

This document explains how we collect, use, store, and protect personal data when you interact with quiphralprxex.world, request information about Wellion, or place orders. It is designed to meet the transparency requirements of the EU General Data Protection Regulation (GDPR) and national law in Finland.

1. Data controller and contact details

The controller responsible for processing personal data in connection with this website and related Wellion inquiries is:

Quiphralprxex.world
Yrjönkatu 12
28100 Pori
Finland
Email: talk@quiphralprxex.world

You may contact us using the email above for privacy-related requests. We may ask you to verify your identity before disclosing information or acting on a request, especially where we need to prevent unauthorized access to your account or correspondence.

2. Scope and principles

This policy applies to visitors of quiphralprxex.world, individuals who submit forms, customers who place orders, and anyone who communicates with us electronically. We process personal data lawfully, fairly, and transparently; we collect data for specified, explicit, and legitimate purposes; we limit storage to what is adequate and relevant; and we apply integrity and confidentiality safeguards.

Where processing is based on consent, you may withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal. Where processing is necessary for a contract or legal obligation, withdrawal may not be possible without ending the relevant service relationship.

We do not sell your personal data. We do not use automated decision-making that produces legal or similarly significant effects solely by automated means without human intervention.

3. Categories of personal data

Depending on your interaction, we may process the following categories:

  • Identity data: full name, title, or similar identifiers you provide.
  • Contact data: email address, postal address, telephone number when supplied.
  • Order and transaction data: product selections, order references, payment status (payment card details are handled by payment processors where applicable).
  • Communication content: free-text messages, support tickets, and email threads.
  • Technical and usage data: IP address, browser type, device identifiers, approximate location derived from IP, referring URL, timestamps, and pages viewed.
  • Cookie data: as described in our Cookie Policy.
  • Marketing preferences: opt-in or opt-out records where you have made a choice.

4. Purposes and legal bases

We process personal data for the purposes below, relying on GDPR Article 6 legal bases as indicated:

  • Website delivery and security: hosting, TLS, abuse prevention, debugging logs. Legitimate interests in operating a secure service; in some cases legal obligation for security incident reporting.
  • Responding to inquiries: processing contact form submissions and emails. Legitimate interests in customer communication; pre-contractual steps where you intend to order.
  • Order fulfillment: shipping, invoicing, returns. Performance of a contract and legal obligation (e.g., accounting rules).
  • Compliance and record-keeping: tax, consumer protection, dispute resolution. Legal obligation and legitimate interests in defending claims.
  • Analytics and optional marketing cookies: where used, typically consent per ePrivacy rules.
  • Product improvement: aggregated statistics that do not identify you, where possible. Legitimate interests with appropriate safeguards.

5. Cookies and similar technologies

We use cookies and similar technologies as described in detail in our Cookie Policy, including strictly necessary cookies, and—where you consent—analytics and marketing cookies. You can manage preferences through our cookie banner and browser settings.

6. Recipients and categories of processors

We may share personal data with hosting providers, email delivery services, customer relationship tools, payment service providers, logistics partners, accountants, and IT security vendors. Each processor is bound by a written agreement requiring GDPR-compliant handling and assistance with your rights. We disclose data to public authorities only when required by law or a lawful request.

7. International transfers

Where data is transferred outside the European Economic Area, we implement appropriate safeguards such as Standard Contractual Clauses approved by the European Commission, adequacy decisions, or other mechanisms permitted under GDPR Chapter V. We assess local laws and supplementary measures where required by recent guidance.

8. Retention periods

We retain personal data only as long as necessary for the purposes described:

  • Marketing and analytics cookies: per durations shown in the Cookie Policy, typically up to twenty-four months unless shortened by your choices.
  • Contact and support messages: generally up to twenty-four months after the last substantive message, unless a longer period is needed for unresolved disputes or legal claims.
  • Orders and accounting records: at least the period required by Finnish accounting and tax legislation, commonly six years from the end of the relevant accounting period unless a longer period applies.
  • Security logs: rolling retention often between thirty and one hundred eighty days unless a security investigation requires longer storage.

9. Security measures

We implement technical and organizational measures proportionate to the risk, including access controls on a need-to-know basis, encryption for transmission where appropriate, secure data centers, patching and monitoring, staff training, and confidentiality commitments. No system is completely immune; if a breach likely affects your rights, we will notify supervisory authorities and, where required, affected individuals.

10. Your rights under GDPR

Subject to conditions and exceptions in the GDPR, you may have the right to access, rectification, erasure, restriction of processing, data portability, and objection to processing based on legitimate interests. Where processing is based on consent, you may withdraw consent. You may lodge a complaint with a supervisory authority. In Finland, the Office of the Data Protection Ombudsman (tietosuoja.fi) supervises compliance.

To exercise rights, email talk@quiphralprxex.world with a clear description of your request. We respond within one month in ordinary cases, extendable where complex.

11. Children

Our website and Wellion marketing are directed at adults. We do not knowingly collect personal data from children without appropriate parental authority where required by law. If you believe we have collected a child’s data in error, contact us and we will delete it promptly where legally permissible.

12. Updates and how to reach us

We may update this Privacy Policy to reflect legal, technical, or business changes. The “Current as of” date at the top is updated when revisions are published. Material changes may be highlighted on the site or communicated where appropriate. Continued use after updates constitutes acceptance of the revised policy where permitted by law.

For any questions about this policy or our processing activities, write to talk@quiphralprxex.world or post to Yrjönkatu 12, 28100 Pori, Finland.