Söderholms IT-tjänster – virtualhouse.fi
Last updated: 3.2.2026
1. Controller Information
Data Controller:
Söderholms IT-tjänster
Website: https://www.virtualhouse.fi
Email:
Söderholms IT-tjänster is responsible for the processing of personal data in accordance with the EU General Data Protection Regulation (GDPR).
2. Personal Data We Collect
We may collect and process the following personal data:
- Name
- Company name
- Business ID (FO/Social security number), where applicable
- Postal address
- Postal code and city
- Email address
- Domain name and service-related information
- IP address (for security and consent logging)
- Communication and correspondence related to services and support
3. Purpose and Legal Basis for Processing
Personal data is processed for the following purposes:
| Purpose | Legal basis |
|---|---|
| Providing hosting and domain services | Contract |
| Customer communication and support | Contract |
| Invoicing and accounting | Legal obligation |
| Handling service requests via forms | Consent |
| Security and abuse prevention | Legitimate interest |
Personal data is only processed to the extent necessary for these purposes.
4. Service Orders and Consent
When you submit a service request via our website form:
- You must explicitly accept the Terms and Conditions.
- Email confirmation (double opt-in) is used to verify the submission.
- The submission is processed only after confirmation.
This ensures documented consent and prevents misuse.
5. Data Storage and Processing Location
- Hosting servers are physically located in Sweden.
- Personal data is processed and stored within the EU/EEA.
- No personal data is transferred outside the EU/EEA.
6. Data Retention
Personal data is retained only as long as necessary:
- Customer and contract data: for the duration of the agreement and required accounting periods
- Invoicing data: retained according to Finnish accounting law
- Form submissions: retained until no longer necessary for service provision
7. Data Sharing
Personal data may be shared only when required to deliver services, including:
- Domain registrars
- Hosting infrastructure providers
- Accounting or legal authorities when required by law
No personal data is sold or shared for marketing purposes.
8. Cookies and Website Analytics
The website may use necessary cookies to ensure basic functionality and security.
If analytics or non-essential cookies are used, consent will be requested where required by law.
9. Data Subject Rights
Under GDPR, you have the right to:
- Request access to your personal data
- Request correction of inaccurate data
- Request deletion of personal data (where legally permitted)
- Restrict or object to processing
- Request data portability
- Lodge a complaint with a supervisory authority
Requests can be sent via email to the contact address listed above.
10. Security Measures
We apply appropriate technical and organizational measures to protect personal data, including:
- Access control
- Secure hosting environments
- Regular system maintenance
Despite security measures, no system can guarantee absolute security.
11. Changes to This Policy
This Privacy Policy may be updated when necessary.
Material changes will be published on the website.
12. Contact
For privacy-related questions or requests, contact: