This data protection statement applies to Scandinavian Teak Deck Ab and the realisation of electronic services.
In this data protection statement, we explain why we process your personal data and what your rights are when you visit our websites, contact us, or use our products.
We respect your privacy and undertake to protect your personal data in accordance with the EU General Data Protection Regulation (GDPR) and the Data Protection Act.
This privacy statement was most recently updated on 25 June 2026.
Scandinavian Teak Deck Ab (hereinafter “we”, “us” or “Scandinavian Teak Deck”)
1865158–1
Fabriksvägen 5
68700 Terjärv
Finland
Phone number:
+358 44 72 35 401
Website:
https://stdeck.fi/
The contact person for the personal data controller is Johanna Joutsen (info@stdeck.fi).
Scandinavian Teak Deck’s customer and user register (hereinafter “Register”).
We collect, store, and process personal data in our Register only for the purposes we have defined in advance. We always ensure we have a legal basis for storing and processing personal data.
The personal data in our Register is primarily used to offer products, conduct customer communication, support business planning and development, manage, maintain, and develop customer relationships, and improve user experiences. Regarding user experience, this primarily refers to maintaining and developing the webpages to ensure they are functional (more information about cookies can be found further down).
Processing of personal data is carried out based on your consent, to fulfil your order and our contract, to comply with statutory obligations (such as accounting and taxation), and based on our legitimate interests.
When it comes to marketing our products or other information about our company, we process personal data based on our legitimate interest in promoting our business, attracting new customers, and nurturing customer relationships.
In connection with contact requests via, for example, various social media channels such as Facebook and Instagram as well as via email, text messages, and the communication tool WhatsApp, we undertake not to process any sensitive data through these various social media channels.
When you, as a user of different channels on social media, have accepted the terms of use for the respective channel and use the channel in question, you are the data controller. We are not responsible for your personal data as a registered user of one or more social media channels, and we do not commit to protecting such information.
A large part of the data in our Register consists of information provided by the registered subjects themselves, for example, through orders or emails in the context of the customer relationship.
Please note that the personal data processed, and the extent to which it is processed, depend on your relationship with us, for example, whether you are a customer or merely visiting our websites.
On our website, we collect personal data when certain features are used. We process the following categories of personal data in our Register for the purposes referred to in paragraph 3 above:
To send information via form on the website, you must consent to the processing of the information you provide (e.g., name, email address, messages, and other information you enter in the form) in accordance with what is stated in this document. You provide your consent by ticking the checkbox associated with the form, which links to this Privacy Policy/Data Protection Statement.
When you visit our website, an encrypted connection (HTTPS) is established between your browser and the website. This means that any information submitted, for example via a form, cannot be accessed by unauthorised parties while it is being transmitted from your browser to the website.
Our website and the third-party services we use store cookies in your browser, provided that you have chosen to accept them. You can still access the information on the website even if you decline cookie storage, but some features may not function as intended. More information about the cookies collected can be found under the “Cookie Declaration” tab in CookieHub. Most browsers accept cookies automatically. Please refer to your browser’s help menu for information on how to turn off cookies.
Google Analytics is only activated if the user has permitted us to store cookies in their browser. Here you can read about the cookies that Google stores in your browser.
Google Ads Conversion Tracking is only activated if the user has permitted us to store cookies in their browser. Here you can read about how Google Ads tracks website conversions.
LinkedIn Insight Tag is only activated if the user has permitted us to store cookies in the browser. Here you can read about the cookies that LinkedIn Insight Tag stores in your browser.
Meta Pixel is only activated if the user has permitted us to store cookies in the browser. Here you can read about the cookies that Meta stores in your browser.
With the visitor’s permission, we collect anonymous data to help us understand how the website is used. This also enables us to improve our services. This data is collected using Google Analytics, Google Ads Conversion Tracking, LinkedIn Insight Tag, and Meta Pixel. You can read more about this further down.
The data provided via any form is not shared with any third party. A very small number of people have been trusted to read and process the data that visitors submit through the website.
When a user sends data, it is transmitted over an encrypted connection between the browser and the website (HTTPS). The website then encrypts the data and stores it. The data stored on the website can only be read by those with a login and an additional password for decryption. You can read more about the cookies we use under the “Cookie Declaration” tab in CookieHub.
We use Google reCAPTCHA to assess if our visitors are people. This is to avoid robots sending spam via our forms. This means that Google’s Privacy Policy and Terms of Service apply.
We use Google Analytics to collect statistics on our visitors. Google Analytics creates a profile of the visitor by gathering anonymous data, such as the browser used and the type of device type.
When you visit the website, information is transferred to Google, which processes the information as an independent data controller. Data relating to website visitors is transferred to Google, which processes the data as a data controller for its own purposes and may combine the data with other information relating to the visitor. For indirect identification, Google uses the visitor’s unique identifier (IP address), but the IP address may also be directly linked to a natural person, for example, in connection with logging into a Google account.
Please note that when you are logged into a Google account, Google collects even more unique identifiers about you, such as identifiers that identify your device, information about the browser or application you use, advertising identifiers for Android or IOS mobile users, language choice, your network of friends, and your most popular YouTube videos.
Google uses data collected about website visitors for at least the following purposes:
To carry out retargeting, Google supplements your IP address with information based on how it is used. On this basis, Google classifies users based on, among other things, location, address, and age. You can find Google’s privacy policy and terms of use at https://policies.google.com/privacy.
Blocking cookies: The customer can block cookie use by changing their browser settings. Blocking the use of cookies may affect the functioning of our services.
Clearing cookies: The registered user can clear cookies from the browser settings. Periodically clearing cookies changes the data used to form the user’s profile. However, clearing cookies does not stop data collection completely; instead, it resets the profile based on previous behavioural data.
We use Google Ads Conversion Tracking to measure conversions from our advertisements and to understand what actions users take on the website after clicking an advertisement.
Read Google’s Privacy Policy and Terms of Service to learn how Google uses the data we share with them.
We use the LinkedIn Insight Tag to collect visitor data and target our marketing.
LinkedIn Insight Tag collects no personally identifiable information.
Read LinkedIn’s Privacy Policy to learn how they use the data we share with them.
We use Meta Pixel to collect visitor statistics and target our marketing.
No personally identifiable information is collected by Meta Pixel.
Read Meta’s Privacy Policy and Terms of Service to learn how they use the data we share with them.
Any transfer of your personal data to third parties is based on written agreements that ensure your personal data is protected.
If personal data is transferred to parties outside the EU/EEA, it occurs only with companies in countries that the European Commission has found to provide an adequate level of protection under Article 45 of the GDPR, or with companies that have committed to the EU–US Data Privacy Framework.
Personal data is mainly stored and processed within the EU/EEA, but certain services from US-based companies (e.g., Google, Meta, and LinkedIn) may involve the transfer of data outside the EU/EEA. These companies have committed to the EU–US Data Privacy Framework, ensuring that your data is adequately protected.
You can read more about adequacy decisions and see which countries are covered here: European Commission – Adequacy Decisions (Article 45 GDPR).
We disclose personal data to authorities in accordance with the legal obligations imposed on us.
Your personal data is only stored as long as necessary to fulfil the purpose for which it was collected, or as long as we are legally required to store it.
The storage period is determined according to the following principles:
When the data is no longer required for these purposes, it is securely deleted or anonymised.
However, we may be obliged to retain some of our customers’ personal data to comply with the Accounting Act or other mandatory legislation, even after the customer or user relationship, or any other basis for processing personal data, has ended.
The users have complete control over their data. This means that:
As a general rule, there is no cost attached to exercising the rights you have as a data subject. However, we reserve the right to charge a reasonable fee if the request is repetitive, manifestly unfounded, or unreasonable.
If you wish to exercise your rights as a data subject, please contact Johanna Joutsen (info@stdeck.fi).
By taking organisational and technical measures, we ensure that all your data is safe, protected from unauthorised processing, and not destroyed, deleted, altered, or unlawfully transferred. The software powering the site is continually updated to address security vulnerabilities as they are discovered. The traffic between the visitor’s browser and our server is encrypted.
Individuals who process personal data are bound by confidentiality and secrecy. The data is stored in databases protected by usernames and passwords, and technically protected by firewalls.
Enquiries relating to this data protection statement/privacy policy may be sent to the person named at the beginning of this document.
Contact details of the supervisory authority:
Office of the Data Protection Ombudsman
Visiting address: Lintulahdenkuja 4, 00530 Helsinki
Postal address: P.O. Box 800, 00531 Helsinki, Finland
Switchboard: 029 566 6700
Registry Office: 029 566 6768
Email: tietosuoja@om.fi