Privacy Policy

Pexi’s Custom Guitars processes personal data in full compliance with the EU General Data Protection Regulation (GDPR).

This Privacy Policy describes how we collect, store, use, and protect your data when you use our online store.

1. Data Controller

Nth Sense Oy / Pexi’s Custom Guitars

Business ID: ___

Email: pexi@pexiscustomguitars.fi

Location: Helsinki, Finland

Studio visits by appointment only.

2. Person Responsible for Register Matters

Pekka Laaksonen

Email: pexi@pexiscustomguitars.fi

3. Name of the Register

Pexi’s Custom Guitars Customer Register

4. Legal Basis and Purpose of Processing

We process personal data based on contract, legitimate interest, legal obligation, and consent (newsletter).

The register is used for handling orders, communication, customer support, delivery logistics, and maintaining essential website functionality.

A customer account is optional. Orders can be placed without registration.

5. Data Collected

First and last name

Address, postal code, city, country

Email address, phone number

Order history and processing steps

Delivery tracking information

IP address (security, fraud prevention, analytics)

6. Sources of Data

Customer account creation (optional)

Checkout and order placement

Customer service interactions

Website functionalities and analytics

7. Regular Disclosure and Transfers

Data is not sold or disclosed to external parties.

Data is shared only with logistics partners, payment providers, and essential service providers.

Data is not transferred outside the EU/EEA, except when required by GDPR-compliant service partners.

8. Data Protection Principles

Only authorised personnel can access customer data.

Data is stored securely on GDPR-compliant servers.

All systems are accessed via secure passwords and encrypted connections.

9. Right to Access and Rectification

Customers may request access to their data and correction of incorrect or incomplete information.

Requests must be made in writing and may require identity verification.

10. Right to Erasure

Customers may request deletion of their data when legally possible.

Some information may need to be retained due to accounting or legal regulations.

Requests are processed within one month (GDPR requirement).

11. Other GDPR Rights

Restriction of processing

Objection to processing

Withdrawal of consent

Data portability

12. Cookies

We use essential cookies for website functionality and analytical cookies for improving user experience.

By using the website, customers accept cookie usage.

Cookie preferences may be modified through browser settings.