Latest updates 14.12.2021

Registry & Privacy Policy

This is the Registry and Privacy Policy of Ipa Group Oy (later “Pien” or “we”), in accordance with Personal Data Law (10 and 24 §) and EU General Data Protection Regulation (GDPR). This Privacy Policy will explain how our organization uses the personal data we collect from you when you use our website. Ipa Group Oy is committed to ensuring your privacy is protected.

1. Registry holder

IPA Group Oy
Mikonkatu 8
00100 Helsinki
VAT 27623531
(Y-tunnus 2762353-1)

If you have any questions about this Privacy Policy or the usage of personal data, please feel free to contact us via email at

Registry name

Pien Customer Register (Pien asiakasrekisteri)

What data does Pien collect?

Information you give us, and identification information

Information we get and analyze from your use of our services

The primary source of information is the website and webshop user themself. In addition, we may receive additional information from our chosen partners, such as from our payment services provider. You can view your personal information through your customer account page on Pien Webshop, and you also have the right to request that we erase all your personal data by contacting our customer service.

4. How will we use your data?

5. Who has the access to your data and how do we store it?

  1. Pien Customer Register is only accessible to employees of Ipa Group Oy and the subsidiary NEIPA Group Oü. Every Pien Customer Register user can only see as much information that is necessary to conduct one’s work assignments. Every employee processing customer data is trained to properly use this data.
  2. Information to third parties is only transferred when it is necessary, for example for delivery, logistics, storing, analytics or marketing. For these purposes, we only use our trusted partners with whom we have conducted comprehensive data protection and data processing agreements. Each operator receives only the necessary information to provide their service, and service providers do not have the right to use the data other than providing their services.
  3. We transfer data to the following third parties:
    • Analytics and statistics partners
    • Marketing automation software partner, when a customer has subscribed to Pien newsletter, authorized marketing or authorized SMS marketing messages
    • Payment service provider, when paying with payment card 
    • Creditor partners, if customer chooses an invoice or partial payment as a payment method
    • Tax representative, responsible for the rendering of excise taxes
    • A collection  agency, in case of bills are due and they are assigned to collection
    • Transportation companies, that deliver orders to recipients or to pick up points
    • Logistics partners, that collect and pack orders
  4. Storing your data

Pien stores your personal data within the European Economic Area (EEA). We do not transfer any data outside the EEA.

We use administrative, organizational, technical, and physical safeguards to protect the personal data we collect and process. Measures include for example firewalls, two-phased logins, secure facilities and systems protected with restricted access rights. Our security controls are designed to maintain an appropriate level of data security and the ability to store data.

Pien retains your personal information only for the necessary or legal time needed to fulfil the purposes stated in this policy. Sometimes business or legal requirements, or for example unpaid debts, may oblige us to retain certain personal information, for specific purposes, for an extended period of time.

6. Cookies and social media plug-ins

Pien website uses various technologies to collect and store analytics data, such as website cookies, caches and web beacons.

Cookies are small text files placed on your computer to collect standard internet log information and visitor behaviour information. We use cookies in a range of ways, to improve your experience on our website and/or to personalise marketing. Cookies and other tags have a set validity period, after which the web browser deletes them.

Our website traffic is tracked by for example Custobar, Google and Facebook platforms. Cookies help us to analyse and improve our website functionalities and develop our processes. Cookies and tracking methods allow us also to create targeted advertising content. 

Cookies are used to collect information about your visit to our website, for example your IP address and device type, to identify you and to maintain your login details, for delivery method and delivery time estimates and shopping cart functionalities. For these functions, cookie usage and consent is obligatory.

You can set your browser not to accept cookies. However, cookies will be activated again when you revisit our website.Read more about the cookies and social media plug-ins we use from our Cookie Policy.

7. Marketing

To communicate to our customers about our ever-evolving services and products, we process personal information for direct marketing purposes. We might be in contact with you via email, text message or through other communication channels, such as social media.

You have the right at any time to stop our company from contacting you for marketing purposes by via email stated above, or you can opt-out by using the unsubscribe link in our marketing emails.

We can use your contact details (for example email or phone number) or technical personal data (for example cookies) to create target audiences for marketing in our social media platforms or web services, such as Facebook, Google, Linkedin and Custobar. In these circumstances, we make sure your contact details won’t be handed to other parties, but are used only for our own marketing purposes.

8. The right to view and correct your personal data in our register

Every individual in our register has the right to request to view all data saved in our register. You have the right to request that our company correct any information you believe is inaccurate or incomplete.

If you wish to view the information saved about you in our register or request a correction, please send your request via email to The Registry Holder might request an ID from you if necessary. The Registry Holder will answer requests in the time set in the GDPR (roughly in one month).

9. Other rights related to data processing

Every individual in our register has the right to request our company to erase all your personal data (“the right to be forgotten”), under certain conditions. Moreover, the registrar has every other right stated in the EU General Data Protection Regulation (GDPR), such as restricting personal data processing under certain conditions.

If you wish to erase your personal data, please send your request via email to our customer service The Registry Holder might request an ID from you if necessary. The Registry Holder will answer requests in the time set in the GDPR (roughly in one month).

10. The right to change our privacy policy

Due to possible legislative changes or updates in our services, we have the right to change our Privacy Policy when needed. Any changes we may make to this Privacy Policy in the future will be posted on this page and, where appropriate, notified to you by e-mail.

11. Links to marketing and payment services data processing privacy policies


Google Analytics: