Privacy & Cookie Policy

Last updated: 1 November 2025

This Privacy & Cookie Policy explains how snor.fi (the “Website”) collects, uses, stores, and shares personal data and how we use cookies and similar technologies.

The Website is owned and operated by Trident Web Solutions SRL (“Trident Web Solutions”, “we”, “us”, “our”), a company registered in Romania. Under EU data protection law (the General Data Protection Regulation, “GDPR”), Trident Web Solutions SRL is the data controller for personal data processed through snor.fi.

1. Who is responsible for your data

Data controller:
Trident Web Solutions SRL
Registered office: [Company Address, Romania]
Email for privacy matters: [privacy@snor.fi]

If we appoint a Data Protection Officer (DPO), we will publish their contact details here. Under GDPR, where a DPO exists, you may write directly to the DPO for any request about your data.

2. Scope of this policy

This policy applies to:

  • visits to snor.fi;
  • contact forms, newsletter sign-ups (if offered), and other direct messages you send us;
  • analytics and advertising technologies we use when you browse.

This policy does not apply to third-party websites or services that we link to. Those services have their own policies.

3. What personal data we collect

A. Data you provide directly

  • Email address, name, and message content when you contact us or subscribe to a newsletter.
  • Any information you choose to include in a tip, correction request, or right-of-reply message.

B. Data collected automatically (cookies and similar technologies)

When you access snor.fi, we may store and read small text files on your device (“cookies”) and use similar technologies such as local storage or pixels. These can include:

  • Essential cookies: needed for basic site functions such as page navigation, load balancing, fraud prevention, or remembering that you rejected non-essential cookies.
  • Analytics / performance cookies: help us understand how readers use the site (for example, which pages are most read), so we can improve structure and usability.
  • Personalisation / advertising cookies: used to measure marketing performance or deliver advertising that is more relevant.

Under Finnish rules implementing EU ePrivacy law, any cookies that are not strictly necessary require your prior, informed, freely given, and specific consent before we set them. You must be able to refuse just as easily as you accept, and consent cannot be assumed from browser settings alone.

We show a cookie banner / cookie panel where you can:

  • Accept all non-essential cookies,
  • Reject all non-essential cookies,
  • Choose detailed settings.

We will not place non-essential cookies until you have given consent through that banner/panel.

C. Data from third parties

We may receive limited technical or analytics data from service providers (for example, aggregated audience metrics). We may also receive public or media contact details from PR agencies or public authorities when you act as a spokesperson. When we obtain personal data from a source other than you, GDPR requires us to tell you what we collected, why, and from where, unless doing so would be impossible or require disproportionate effort.

4. Why we process your data (legal bases)

We process personal data for the following purposes:

1) To operate the Website and deliver content
Legal basis: our legitimate interest in running a functional news and information service, and (for essential cookies) the technical necessity to provide the service you requested.

2) To respond when you contact us
Legal basis: performance of a contract or steps prior to entering into a contract (answering your request), or our legitimate interest to reply to reader questions and corrections.

3) To send newsletters or alerts (if you opt in)
Legal basis: your consent. You can withdraw consent at any time.

4) To measure audience reach and improve usability
Legal basis: consent for analytics cookies and similar technologies that are not strictly necessary under Finnish and EU rules.

5) To comply with law
We may process or retain certain information if needed to meet EU or Member State legal obligations (for example, handling legal claims or complying with data protection requests).

We do not engage in fully automated individual decision-making that produces legal effects about you or similarly significant effects about you. If we ever introduce such processing, we will update this policy and explain the logic and consequences as required by GDPR.

5. Cookies and similar technologies

Cookies are stored on your device. You can control them in two ways:

  • Through our on-site cookie banner / settings panel (recommended).
  • Through your browser or device settings, where you can delete cookies and block categories.

However, relying only on browser settings is not considered valid consent for non-essential cookies. We must collect explicit consent before using analytics/marketing cookies, and you must have a genuine option to refuse them.

If you withdraw consent, we will stop (or stop further) non-essential cookies and related tracking going forward. This does not affect processing that already took place lawfully based on consent before withdrawal.

6. How long we keep data

We keep personal data only as long as needed for the purpose we collected it for. Examples:

  • Contact emails: normally up to 12 months after we resolve your request, unless we need them longer for legal reasons.
  • Newsletter data: until you unsubscribe or we stop the newsletter.
  • Cookie-level analytics data: according to the retention period stated in the cookie banner.

GDPR requires us either to define a storage period or explain the criteria we use to decide it, and to delete data once it is no longer necessary for the stated purpose.

7. Your rights under EU law

Because Trident Web Solutions SRL is established in the EU and serves users in Finland, you have EU data protection rights, including:

  • Right to be informed about how your data is used.
  • Right of access: ask if we process your data and get a copy.
  • Right to rectification: ask us to fix inaccurate or incomplete data.
  • Right to erasure (“right to be forgotten”): ask us to delete your data in certain cases.
  • Right to restrict processing in certain situations.
  • Right to data portability: receive certain data in a structured, commonly used, machine-readable format and transfer it to another controller.
  • Right to object to certain processing, including direct marketing.
  • Rights related to automated decision-making and profiling, if we ever rely on it.

How to exercise your rights:
Email us at [privacy@snor.fi]. We may ask you to confirm your identity to protect your data from unauthorised access.

Response time:
We will answer without undue delay and, in any case, within one (1) month of receiving your request. We may extend this by up to two (2) further months if the request is complex or if you have made several requests, but we will tell you within the first month if we need more time and why.

If we decline your request (for example, if a legal obligation prevents deletion), we will explain why and inform you of your right to complain to a Data Protection Authority.

You also have the right to lodge a complaint with your national Data Protection Authority (for example, the Finnish Data Protection Ombudsman) or with the Romanian data protection authority, and to seek a judicial remedy.

8. Sharing your data

We may share personal data with:

  • Service providers that host our site, provide analytics, security, email delivery, or customer support tools.
  • Legal advisers or authorities if required to defend legal claims, prevent abuse, or comply with law.

We do not sell your personal data.

When we work with a service provider, we require contractual safeguards so that they process personal data only on our instructions and with appropriate security, as required by GDPR.

9. International transfers

Our service providers may be located in the European Economic Area (EEA) or, in some cases, outside the EEA. If personal data is transferred outside the EEA, we will rely on a valid transfer mechanism permitted by EU law (for example, adequacy decisions or standard contractual clauses). We will communicate the relevant safeguards if such transfers occur.

10. Security

We use technical and organisational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access. These measures include access controls, limited retention, and internal policies.

No website or transmission is 100% secure. If we detect a personal data breach that is likely to pose a risk to your rights and freedoms, GDPR may require us to notify the competent supervisory authority without undue delay and, where feasible, within 72 hours. In some cases we may also be required to notify you.

11. Children

snor.fi is not directed at children under 16. If you are a parent or guardian and believe we have collected personal data from a child without proper consent, please contact us at [privacy@snor.fi]. We will take steps to investigate and, if needed, delete that data.

12. Updates to this Policy

We may update this Privacy & Cookie Policy if our practices change or if laws change. When we make material changes, we will update the “Last updated” date at the top of this page. If changes are significant, we may also show a notice on the site.

13. How to contact us about privacy

Email: [privacy@snor.fi]
Postal address: Data Protection Request, Trident Web Solutions SRL, [Company Address, Romania]