Privacy & Cookie Policy — Funzilife Oy (funzi.fi)
Effective date: November 3, 2025
1) Who we are (Data Controller)
Funzilife Oy (Y‑tunnus: 2603559‑4)
Sturenkatu 4, 00510 Helsinki, Finland
Email: [email protected]
This policy applies to visits to funzi.fi.
2) What data we process and why
a) Basic website operations (necessary)
When you browse our site, our website platform processes limited technical data (e.g., IP address, user‑agent and page requests) and sets strictly necessary cookies so pages load securely, pop‑ups can be dismissed, and redirects work correctly.
Legal basis: legitimate interests in running a secure, functional website (GDPR Art. 6(1)(f)).
b) Analytics (only with your consent)
If you accept analytics cookies on our banner, we measure how visitors use the site (e.g., page views, referral sources, general device information) to improve content.
Legal basis: consent (GDPR Art. 6(1)(a)). You can withdraw consent at any time via Cookie settings in the footer.
c) Contact & recruitment
If you email us or submit a form, we process the data you provide (name, email, message contents, and—if applicable—CV/attachments) to respond and manage your request.
Legal bases: contract/steps prior (GDPR Art. 6(1)(b)) and legitimate interests (GDPR Art. 6(1)(f)).
We do not sell personal data and we do not run advertising pixels on funzi.fi.
3) Cookies on funzi.fi
Cookie consent is managed through Squarespace’s native consent mechanism compliant with EU ePrivacy guidelines. We use a consent banner that lets you Accept, Reject, or Customize non‑essential cookies. Non‑essential cookies are off by default until you consent. You can change your choices anytime via Cookie settings in the footer.
A) Strictly necessary cookies (always on)
These enable core site features and security and cannot be switched off.
| Cookie | Purpose | Typical retention |
|---|---|---|
| Crumb | Prevents cross‑site request forgery (CSRF). | Session |
| RecentRedirect | Prevents redirect loops after URL changes. | ~30 minutes |
| squarespace-popup-overlay (localStorage) | Remembers that you dismissed a pop‑up. | Persistent |
| squarespace-announcement-bar (localStorage) | Remembers that you dismissed the announcement bar. | Persistent |
B) Analytics cookies (set only if you consent)
| Cookie | Purpose | Typical retention |
|---|---|---|
| ss_cid | Unique visitor ID; tracks sessions. | 2 years |
| ss_cvr | Unique visitor ID; tracks sessions. | 2 years |
| ss_cpvisit | Tracks repeat visits. | 2 years |
| ss_cvisit | Session tracking. | 30 minutes |
| ss_cvt | Session tracking. | 30 minutes |
Note: Exact cookies can vary if we enable or disable site features (e.g., pop‑ups or embeds). Your current choices always apply.
4) Recipients and processors
We use the following service providers that process personal data on our behalf under data‑processing terms consistent with GDPR:
Squarespace, Inc. — website hosting and platform services (core site operations, security, built‑in analytics).
Google Analytics — aggregated website analytics (enabled only with your consent).
Segment — customer data platform used to route and standardize analytics events (enabled only with your consent).
We do not otherwise disclose personal data unless required by law or to protect our rights.
5) International transfers
Our service providers may process data outside the EEA. Where this occurs, appropriate safeguards are used (e.g., Standard Contractual Clauses or equivalent safeguards). You can contact us for more information.
6) Retention
Cookies: per the tables above (or as configured in our platform).
Contact/recruitment data: kept as long as needed to handle your request and for up to 24 months afterward (or longer if required by law or to establish/defend legal claims).
Operational logs: retained for short periods for security/troubleshooting unless needed to investigate incidents.
7) Your rights
You have the right to access, rectify, erase, and port your data, as well as to restrict or object to processing in certain cases. Where we rely on consent, you may withdraw it at any time via Cookie settings (withdrawal does not affect the lawfulness of processing before withdrawal).
You also have the right to lodge a complaint with the Office of the Data Protection Ombudsman (Tietosuojavaltuutetun toimisto) in Finland.
To exercise your rights, contact [email protected].
8) Security
We use industry‑standard technical and organizational measures (including HTTPS, platform‑level protections, and access controls) to protect your data against unauthorized access, alteration, and loss.
9) Children
This website is not directed to children. Please do not submit personal data of minors via our contact forms.
10) Changes to this policy
We will update this page whenever our practices or providers change. The Effective date above shows the latest revision.