Privacy Policy

1. What information do we collect about you?

We collect information about users in order to improve our services and customer experience by providing accurate information and to enable the provision of our services.

We may collect the following personally identifiable information:

  • Customer relationship information: e.g. billing and payment details, product and order information, customer feedback and contact history, visit details, credit decisions, interests, responses to contests and surveys, cancellations, appointment information.
  • Health data: e.g. patient records related to healthcare services, appointment information.
  • Digital account data: e.g. username, nickname, password, or other unique identifier.
  • Personal and contact details: e.g. name, personal ID number (for billing purposes), address, phone number, email address.
  • Demographic information: e.g. age, gender, occupation, mother tongue.
  • Cookie and technical information:
    • information on website usage and browsing such as referring page, device model, unique device and/or cookie identifier, collection channel (browser, mobile browser, app), browser version, IP address, session ID, session time and duration, screen resolution, operating system, saved chat conversations.
    • Identified users are typically linked with a randomly generated numeric ID.
    • Non-logged-in users are typically identified via cookies or equivalent identifiers.
  • Permissions and consents
  • Opt-out information
  • Survey and research responses
  • CCTV recordings
  • Other information collected with the user’s consent

2. Sources of data collection

Personal data is primarily collected directly from the user during contract signing, ordering, or registration, and later during the customer relationship.
Additionally, by means of the techniques described below, we may collect observed data on how the user interacts with our services.

If you are under 18, you will need your guardian’s consent to use our services, and we recommend discussing data protection with your guardian before using them.

3. Purposes of processing personal data

We process personal data only for predefined purposes, primarily for:

  • Customer relationship management and development: including use of services, orders, purchases, reservations, billing, cancellations, refunds, payment monitoring, granting of credit, debt collection, complaints, and registration.
  • Service development: continuous improvement of our services, including surveys, visit analysis, and statistical reporting.
  • Sales, offers, and customer service: delivering purchased products/services, providing personalized service, and recommending relevant offers.
  • Targeted digital advertising: delivering advertising based on purchases and site usage, including automated profiling.
  • Automated profiling for credit checks: automated credit assessment for large one-time purchases or installment contracts. Customers may request manual review.
  • Healthcare services: planning, organizing, implementing, and monitoring examinations and treatment, maintaining the patient relationship, ensuring quality and effectiveness, and informing the patient about relevant checks or treatments (with patient consent).

4. Data storage and protection

We process and store personal and usage data securely.

We use necessary technical and organizational safeguards against unauthorized access, disclosure, destruction, or misuse. These include firewalls, encryption technologies, secure facilities, controlled access, managed user rights, staff training, and careful selection of subcontractors.

5. Data retention

We retain personal data only as long as necessary to fulfil the purposes defined in section 3, in compliance with applicable legislation. Customer data is stored until the end of the relationship and only as long as legally required. Marketing records are valid for one year since the last interaction.

Some forum content or public feedback may remain visible with user nickname even after account closure. Legal obligations (e.g. accounting) may require extended retention.

Cookies may remain on user’s device for months unless manually deleted.

6. Who processes my personal data?

Power Body Helsinki may process personal data in accordance with applicable legislation. We may outsource processing to third parties, ensuring compliance via contractual safeguards.

Services may use resources and servers in other countries, including outside the EEA. In such cases, we take measures to ensure adequate data protection.

Personal data may also be disclosed if required by law or to protect Power Body Helsinki’s legitimate interests (e.g. in legal proceedings).

Third-party service providers (technical, logistics, advertising, etc.) may process data solely for their designated purpose.

Third-party service providers (technical, logistics, advertising, etc.) may process data solely for their designated purpose.

7. Cookies

We may collect data via cookies or similar technologies. Cookies are small text files stored on the user’s device, often containing an anonymous identifier.

Types of cookies we use:

  • Functional cookies: login, shopping cart, chat service, language preferences.
  • Analytics and reporting cookies: improving user experience and supporting business decision-making.
  • Advertising and marketing cookies: enabling targeted advertising.

Remarketing cookies.

Users may block cookies in browser settings, but this may affect functionality.

Cookies may collect information such as the page you visited before arriving at our website, which of our pages you browsed and when, which browser you use, your screen resolution and operating system, as well as your computer’s IP address – i.e. the internet address from which your data is sent and where it is received.
With cookie data, Power Body Helsinki and its partners can monitor visitor numbers, analyse behaviour, and further develop the service to better meet visitor needs. In addition, our partners may use cookies for advertising purposes, collecting information about visits to this and other websites. This information is used to provide targeted advertising based on the visitor’s interests.
The advertising created through cookies does not identify individual users, nor is the information linked with personal data obtained elsewhere.

Visitors can block cookies by changing their browser settings so that cookies are not stored. Please note, however, that disabling cookies may affect the functionality of some services. More information about cookie-based advertising control: Your Online Choices (EDAA)

8. Your rights and choices

You have the right to:

  • Inspect your personal data and request corrections, deletion, transfer, or updates.
  • Object to data processing or withdraw consent at any time.
  • Prohibit direct marketing
  • Manage cookies via browser settings.
  • Reset advertising profiles by deleting cookies.
  • Opt out of behavioral advertising via the Your Online Choices website.

9. Changes to this Privacy Policy

We reserve the right to update this Privacy Policy, especially in response to service development or changes in legislation.
We recommend reviewing this policy regularly.

10. Contact for privacy matters

The user can send inquiries related to this privacy statement and any complaints related to advertising targeting to:

Power Body Helsinki
Data Protection Officer
Eteläesplanadi 22
00130 Helsinki
info@powerbodyhelsinki.fi