top of page

Privacy Policy

Last updated: March 16, 2026

 

1. Introduction

Welcome to ART OF ELSE
We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and protect your information when you visit our website or purchase products from our online store.

Our store sells physical products such as clothing, dice, prints, and mystery boxes.

This policy complies with the General Data Protection Regulation (GDPR) and other applicable privacy laws.

 

2. Data Controller

The data controller responsible for your personal data is: ART OF ELSE/ Joel Levänen
Email: artofelse@gmail.com
Address: Hiihtäjäntie 8, 00810 Helsinki

If you have any questions about this policy or your personal data, please contact us using the information above.

 

3. Personal Data We Collect

Since our website does not require account registration, we only collect personal data necessary to process orders and operate the website.

This may include:

Information you provide when placing an order

  • Full name

  • Shipping address

  • Billing address

  • Email address

  • Phone number (if required for delivery)

Payment information
Payments are processed through secure third-party payment providers. We do not store full payment card information on our servers.

Technical information
When visiting the website we may automatically collect:

  • IP address

  • Browser type and version

  • Device information

  • Website usage data

 

4. How We Use Your Data

We use your personal data only when legally permitted.

Your data may be used for:

  • Processing and delivering your orders

  • Customer support and communication regarding orders

  • Fraud prevention and security

  • Improving website functionality and performance

  • Complying with legal obligations such as accounting and tax laws

 

5. Legal Basis for Processing (GDPR)

Under GDPR we process personal data based on the following legal grounds:

Contract performance
Processing your data is necessary to fulfill your order.

Legal obligations
We must keep certain data for accounting and tax regulations.

Legitimate interests
To maintain website security, prevent fraud, and improve our services.

 

6. Sharing Your Data

We only share personal data when necessary to operate the store.

Your data may be shared with:

Payment service providers
To securely process payments.

Shipping and logistics providers
To deliver your orders.

Website hosting and technical service providers
To maintain and operate the website.

These providers process data only as required to perform their services and must comply with applicable data protection laws.

We do not sell personal data to third parties.

 

7. Data Retention

We store personal data only as long as necessary.

Typical retention periods:

  • Order and invoice data: retained according to legal accounting requirements (usually up to 6 years in many jurisdictions).

  • Customer support communications: retained only as long as necessary to resolve the request.

 

8. Cookies

Our website may use cookies and similar technologies to:

  • Enable essential website functionality (such as shopping cart features)

  • Improve website performance

  • Analyze website usage

You can manage or disable cookies through your browser settings.

 

9. Mystery Products and Randomized Items

Some products sold in our store may include randomized elements, such as:

  • Mystery boxes

  • Random color variations of products

  • Limited or rare items included randomly

Product descriptions clearly explain when an item contains randomized content. Purchasing such products means the exact variation received may differ.

This does not affect how personal data is processed, but it clarifies product expectations.

 

10. Your Rights Under GDPR

If you are located in the European Economic Area (EEA), you have the following rights:

  • The right to access your personal data

  • The right to correct inaccurate data

  • The right to request deletion of your data

  • The right to restrict processing

  • The right to object to data processing

  • The right to data portability

To exercise any of these rights, please contact us at [EMAIL].

You also have the right to lodge a complaint with your local data protection authority.

 

11. Data Security

We implement appropriate technical and organizational security measures to protect personal data against unauthorized access, loss, or misuse.

However, no internet transmission can be guaranteed to be completely secure.

 

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

Any updates will be posted on this page with a revised "Last updated" date.

bottom of page