Privacy Policy

Last updated: 7 April 2026

This policy describes how FinKeeper ("we", "us") handles personal data when you use our website (finkeeper.fi), contact us, or register interest in our services. It is designed for users in Finland and the European Economic Area. You should have important documents reviewed by a qualified lawyer for your specific situation.

1. Data controller

The data controller responsible for personal data processed in connection with this website and related communications is the entity operating FinKeeper. Contact: hello@finkeeper.fi. If you trade through a Finnish company (e.g. osakeyhtiö), please add your official business name and Y-tunnus in correspondence so we can identify your account or enquiry correctly.

2. Legal framework

We process personal data in accordance with:

  • Regulation (EU) 2016/679 (the General Data Protection Regulation, "GDPR")
  • The Finnish Data Protection Act (tietosuojalaki, implementing and supplementing the GDPR in Finland)
  • Where applicable, the ePrivacy Directive (2002/58/EC) as transposed into Finnish law (e.g. cookies and electronic communications)

3. Categories of personal data

Depending on how you interact with us, we may process:

  • Identity and contact data: name, email address, phone number, business or company name, Finnish Business ID (Y-tunnus) where you provide it
  • Communication content: messages you send via contact or registration forms
  • Registration and service-related data: choices you submit (e.g. company type, VAT period, income source categories) as described at collection
  • Technical data: IP address, browser type, device information, and similar data collected automatically for security and basic website operation

4. Purposes and legal bases (GDPR Article 6)

We rely on the following bases, as appropriate:

  • Contract and pre-contract steps (Art. 6(1)(b)): to respond to enquiries, process registration requests, and provide or prepare the FinKeeper service
  • Legitimate interests (Art. 6(1)(f)): to secure our website, prevent abuse, analyse aggregate use of the site, and improve our services, where not overridden by your rights
  • Legal obligation (Art. 6(1)(c)): where Finnish or EU law requires us to retain or disclose certain information (e.g. accounting or tax-related obligations, where applicable)
  • Consent (Art. 6(1)(a)): where we ask for consent (e.g. non-essential cookies or marketing), you may withdraw consent at any time

5. Retention

We keep personal data only as long as necessary for the purposes above, including legal, accounting, or complaint-handling needs. Enquiry and marketing data are typically retained for a limited period unless a longer period is justified (e.g. ongoing customer relationship). Technical logs may be kept for security for shorter, defined periods.

6. Recipients and processors

We may share data with trusted service providers who process data on our instructions (e.g. hosting, email delivery, analytics if used). Those providers are bound by appropriate data processing agreements under Article 28 GDPR. We do not sell your personal data.

7. Transfers outside the EEA

If we use tools hosted outside the European Economic Area, we ensure appropriate safeguards under GDPR Chapter V (e.g. Standard Contractual Clauses or adequacy decisions), unless a specific derogation applies.

8. Your rights

Under the GDPR, you have the right to:

  • Access your personal data and receive a copy
  • Rectify inaccurate data
  • Request erasure ("right to be forgotten") in certain cases
  • Restrict processing in certain cases
  • Data portability, where processing is based on consent or contract
  • Object to processing based on legitimate interests
  • Not be subject to solely automated decisions with legal or similar significant effects, where applicable
  • Lodge a complaint with a supervisory authority—in Finland, the Office of the Data Protection Ombudsman (Tietosuojavaltuutettu), tietosuoja.fi

To exercise your rights, contact hello@finkeeper.fi. We will respond within one month where required by law (extensions may apply for complex requests).

9. Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, or misuse. No method of transmission over the internet is completely secure; we encourage you to use strong passwords and protect your credentials once a customer account is available.

10. Cookies and similar technologies

Our website may use cookies or similar technologies that are strictly necessary for operation, and, where applicable, analytics or preference cookies. Where Finnish and EU law requires consent for non-essential cookies, we will obtain it through a suitable mechanism. You can control cookies through your browser settings.

11. Children

Our services are aimed at businesses and adult entrepreneurs. We do not knowingly collect personal data from children under 16 without appropriate grounds under local law.

12. Changes

We may update this Privacy Policy to reflect legal, technical, or business changes. The "Last updated" date at the top will be revised when we do. Material changes may be communicated by email or a notice on the website where appropriate.

13. Contact

Questions about this policy or your personal data: hello@finkeeper.fi