Document current as of . We may publish minor clarifications without changing the substance of your rights.
This Privacy Policy explains how Marketplacetopae.world (“we”, “us”, “our”) processes personal data when you visit marketplacetopae.world, interact with the Comfora brand, place orders, or communicate with us. We act as the data controller for the processing activities described here unless we explicitly state that a partner acts as an independent controller.
Marketplacetopae.world operates from Korkeavuorenkatu 2, 00140 Helsinki, Finland. For privacy-specific correspondence, email talk@marketplacetopae.world. We aim to acknowledge substantive requests within a few business days and to conclude them within statutory timelines under the GDPR.
This policy covers browsing data, form submissions, customer service exchanges, and optional marketing where you opt in. It should be read together with the Cookie Policy for storage technologies and with the Terms of Service for contractual limits.
We rely on Article 6 GDPR as follows: Contract when processing is necessary to take steps at your request before a contract or to perform a contract (for example, fulfilling an order). Legitimate interests when we secure our website, prevent abuse, measure aggregate interest in content, or improve documentation—balanced against your rights and freedoms. Consent for non-essential cookies and for certain marketing communications where required. Legal obligation where bookkeeping, tax, or regulatory duties require retention.
Data is collected when you load pages (technical logs), submit forms (content you type), or authenticate flows with payment partners (references we receive back).
We use data to respond, deliver, secure, analyse in aggregate (where permitted), and comply with law—never for automated decisions with legal or similarly significant effects based solely on profiling for this marketing site.
When retention periods end or when you successfully exercise erasure subject to exceptions, we delete or irreversibly anonymise data.
Customer inquiries: up to twenty-four months after the last message unless a dispute or legal hold requires longer. Contracts and invoices: for the duration mandated by Finnish accounting and tax rules. Security logs: rotated on a short technical cycle, typically weeks, unless needed for incident investigation. Consent records for cookies: aligned with the Cookie Policy, often up to twelve months unless you reset earlier.
We use hosting, email delivery, analytics (only if you consent), and payment infrastructure providers. They process data under documented instructions and confidentiality terms. We do not sell personal data. If corporate structure changes, we will inform you where required before new controllers apply their policies.
If personal data is transferred outside the European Economic Area, we implement safeguards recognised under Chapter V GDPR, including adequacy decisions or Standard Contractual Clauses with supplementary measures where appropriate.
We apply HTTPS transport encryption, access control, role separation, vendor due diligence, and staff confidentiality expectations. No system is perfectly secure; please protect your devices and use unique passwords.
You may request access, rectification, erasure, restriction, data portability (where technically feasible), and object to processing based on legitimate interests or for direct marketing. You may withdraw consent at any time for processing that relies on it. You may lodge a complaint with the Office of the Data Protection Ombudsman in Finland or, where applicable, another EU supervisory authority.
Our services target adults. We do not knowingly collect personal data from children without verifiable parental authority. If you believe we received a child’s data, contact us so we can delete it promptly where the law allows.
We revise this document when features, partners, or laws change. Material updates will be reflected by changing the dynamic “current as of” date at the top through our publishing process and, where appropriate, an additional notice on the site.
Data controller: Marketplacetopae.world
Address: Korkeavuorenkatu 2, 00140 Helsinki, Finland
Email: talk@marketplacetopae.world