Updated 1/2026
The Villa Mairea Foundation complies with data protection legislation in its operations. This page brings together important information on how we process and protect personal data. The statement describes
- how customers’ personal data are processed
- what kind of personal data may be collected about customers
- for what purposes customers’ personal data may be used
- customers’ rights regarding the personal data collected
- information about the operation of the website in relation to the protection of personal data (cookies and tracking tools)
Registers
Customer register statement
Data controller
Villa Mairea Foundation
Pikkukoivukuja 20, 29600 Noormarkku
For matters related to privacy and personal data, you may contact us by email: info@villamairea.fi
We collect personal data for the purpose of managing customer relationships. The legal basis for processing personal data is consent. We do not collect data for marketing purposes. We do not carry out profiling or automated decision-making concerning you. We store your personal data in our email archive until the end of the year following your visit.
Purpose of the register
The purpose of the register is to enable contact required for customer service, to maintain customer relationships, and to provide information about services. When you make purchases in our ticket shop or online shop, we collect your personal data in order to manage the customer relationship. The legal basis for processing personal data is the contract between us and the statutory obligations arising from it. Providing personal data is a prerequisite for entering into the contract. In other words, you cannot place an order in our online shop without providing your personal data.
We do not collect personal data for marketing purposes. We do not carry out profiling or automated decision-making concerning you.
Recipients of personal data
- the Foundation and its employees
- the payment service provider that receives your payment
- the transport company that delivers the goods to you
- the accountant who records the order in our accounts
- the auditor who audits our accounts
- the IT company that maintains our website
- the right to access your personal data
- the right to rectification of data
- the right to restrict processing
- the right to object to processing
- the right to withdraw consent
- the right to lodge a complaint with a supervisory authority
Regular disclosures of data and transfer of data outside the EU or the European Economic Area
Data are not disclosed.
Security of the register
The data in the customer register are transferred via an SSL-protected connection. Electronic data are protected by a firewall, user IDs and passwords. Access to the data is limited to the data controller and the server administrator, and only in exceptional cases when it is necessary for technical operation. All parties processing the register are bound by confidentiality obligations with regard to all data. With regard to accounting material, the company’s accountant has access to the relevant data, such as invoices. The accounting material is stored in electronic software and protected by a firewall, user IDs and passwords.
Automated decision-making
No automated individual decisions (Article 22 of the EU General Data Protection Regulation) are made.
Rights of the data subject
The data subject has the right to check what personal data concerning them have been stored in the personal data register. A written request for access must be sent, signed, to the person responsible for register matters. The individual must be identified with an official identity document in person when collecting the data. Please note that you have the “right to be forgotten” only if we do not have statutory obligations to continue processing your personal data.
The right of access is free of charge when exercised no more than once per year. The data subject has the right to request the rectification or erasure of incorrect or outdated data, or the transfer of data from one system to another. The data subject also has the right to restrict or object to the processing of their data in accordance with Articles 18 and 21 of the EU General Data Protection Regulation. The data subject has the right to withdraw previously given consent to the processing of data or to lodge a complaint with a supervisory authority regarding the processing of personal data. The data subject also has the right to prohibit the use of their data for direct marketing purposes.
Use of cookies
Our website www.villamairea.fi uses cookies. Cookies are small text files that are stored on your device when you visit our website. Cookies are used on almost all websites, and some website functions may not work without them. Our website stores two types of cookies on your device: technical cookies and third-party cookies. Technical cookies improve the functionality of our online service and help us tailor our services. For example, cookies enable our website to remember the language you wish to use. Third-party cookies refer to cookies related to services provided by external service providers we use (such as Google and Facebook). These cookies also allow us to monitor, for example, the number of visitors to the site, and guide us in developing our online services. A cookie contains a randomly generated unique identifier that allows us, for example, to track which pages you use. Cookies do not contain malware and do not harm your device. Individual users cannot be identified solely on the basis of cookies.
By using our website, you accept the use of cookies. Cookies can be restricted or blocked by changing the settings of the browser you use. However, this may affect the usability of the website.
Third-party cookies used on the website
The website uses Google Analytics, through which we collect statistical information about visitors’ activity. The data are used to develop services and marketing. IP addresses are anonymised, and the data are not used to identify individual persons.
The website uses the Facebook Pixel service. The cookie is used to target advertising on Facebook.
You can manage cookies in your browser settings and give or withdraw your consent to the use of analytics and marketing cookies via the cookie settings.
