Last updated: 7 June 2026 · Version: 1.0
Privacy Policy
This policy explains what personal data Pork Mafia EU collects through this website, why we collect it, how long we keep it, and the rights you have over it. It applies to porkmafiaeu.fi and to anyone who contacts us, browses the site, or otherwise shares information with us.
We keep data collection to what we actually need. Most visitors can use the site without giving us any personal information at all — you only share details with us if you choose to, for example by sending an enquiry.
Who we are
Pork Mafia EU is the exclusive EU producer and distributor of the Pork Mafia seasoning and dry rub range. We are the controller responsible for the personal data described in this policy, which means we decide why and how it is processed.
Porkmafia EU Oy
Käsityöläisenkatu 36 B, 06100 Porvoo, Finland
Business ID (Y-tunnus): [ registration pending — insert once issued ]
Email: info@porkmafiaeu.fi
Website: porkmafiaeu.fi
If you have any question about this policy or about how we handle your data, email us at info@porkmafiaeu.fi and we’ll help.
What we collect and why
Below is each way the site may collect personal data, what it involves, and why. If a feature listed here isn’t enabled on the live site, it doesn’t apply.
Enquiries and the contact form
The contact form runs on Contact Form 7. When you submit it, we collect your name and email address (both required), and the subject and message you write (the message is optional). Your message is emailed to us and is also saved in the site’s own database (using the Flamingo plugin), so we can keep track of enquiries and reply to them. We use this only to read your enquiry, respond, and carry on any conversation that follows — for example discussing a wholesale or retail partnership. Each stored message also includes basic technical details, such as the time it was sent and the sender’s IP address and browser.
Media you upload
If you’re able to upload images to the site, please avoid uploading images that contain embedded location data (EXIF GPS). Visitors can download and read location data from images on a website.
Embedded content from other sites
Articles or pages on this site may include embedded content — videos, images, posts and so on. Embedded content from other websites behaves exactly as if you had visited that other website. These sites may collect data about you, use cookies, embed third-party tracking, and monitor your interaction with that content, including tracking your interaction if you have an account and are logged in to that site.
Cookies
We use cookies for the site to work and, where you allow it, for additional features. The full breakdown — what each cookie does and how long it lasts — is in our separate Cookie Policy.
Server logs and security
Like most websites, our hosting environment automatically records technical information when you visit — such as your IP address, browser type, the pages you view and the time of access. We use this to keep the site running, diagnose problems and protect against misuse. We don’t use it to identify individual visitors.
Account holders and password resets
If the site offers user accounts and you register, we store the profile information you provide. Registered users can see, edit or delete their profile information at any time, except the username. If you request a password reset, your IP address will be included in the reset email.
Where your information comes from
We collect personal data directly from you — when you fill in the contact form or email us. For business enquiries, we may also check public business registers (such as the Finnish Trade Register kept by the PRH) to confirm a company’s details or that the person signing an agreement is authorised to do so. We don’t buy personal data for marketing.
Do you have to provide your data?
No — sharing your details is voluntary. But if you don’t give us a name and an email address, we can’t reply to an enquiry or set up a wholesale account, because we’d have no way to reach you.
Our legal bases for processing
Under the GDPR we need a lawful basis for each purpose. Ours are set out below.
| What we do | Legal basis | Notes |
|---|---|---|
| Reply to enquiries sent via the contact form or by email | Legitimate interests (Art. 6(1)(f)); and, where the enquiry concerns a possible order or partnership, steps taken at your request before entering a contract (Art. 6(1)(b)) | Our interest is in responding to people who get in touch and in pursuing legitimate B2B relationships |
| Run and secure the website (server logs, spam filtering) | Legitimate interests (Art. 6(1)(f)) | Keeping the site available, reliable and free of abuse |
| Use non-essential cookies and any embedded or analytics features | Consent (Art. 6(1)(a)) | Set only after you agree via the cookie banner; you can withdraw at any time |
| Account features (only if user accounts are enabled) | Consent (Art. 6(1)(a)) and/or legitimate interests (Art. 6(1)(f)) | Applies only if this feature is switched on |
Who we share your data with
We don’t sell your personal data, and we don’t share it for anyone else’s marketing. We do rely on a small number of trusted service providers who process data on our behalf, under contract and only on our instructions:
- Zoner Oy (Pakkalankuja 6, 01510 Vantaa, Finland) — our website host and email provider. Zoner stores the site and its data, runs the mailboxes we use to receive and reply to enquiries, and keeps server logs.
- Providers of embedded content (such as video platforms), which receive data directly from your browser when their content loads.
If you ask for a password reset, your IP address is included in the reset email. We may also disclose data where we’re legally required to, or to establish, exercise or defend legal claims.
International transfers
Your personal data is held within the EU. Our host and email provider, Zoner Oy, is a Finnish company, and the site and mailboxes run on its infrastructure in Finland. We don’t transfer your data outside the European Economic Area (EEA) ourselves.
The one exception is embedded content. If a page loads content from a provider outside the EEA — for example a video — your browser contacts that provider directly, and any resulting transfer is governed by that provider’s own safeguards, typically the European Commission’s adequacy decisions (including the EU–US Data Privacy Framework) or Standard Contractual Clauses. You can ask us for more detail on the safeguards that apply.
How long we keep your data
We keep personal data only as long as we need it for the purpose it was collected, then delete it or anonymise it.
- Enquiries: kept while we’re in contact with you and for up to [ 24 months ] after our last exchange, so we can follow up — unless it leads to an ongoing business relationship, in which case we keep what’s needed for that. This includes the copy stored in the site database via Flamingo, which we clear on the same basis.
- Registered user profiles (if enabled): kept until the account is deleted.
We may keep certain information longer where the law requires it — for example, records that form part of our accounts must be kept for six years under the Finnish Accounting Act — or where we need it to handle a legal claim.
How we protect your data
We take reasonable technical and organisational measures to protect personal data against loss, misuse and unauthorised access — including encrypted connections (HTTPS), access controls, and keeping the site and its software up to date. No website can promise perfect security, but we work to keep the risk low and review our measures as the site grows.
Your rights
If you’ve sent us an enquiry (or have an account on this site, where accounts are enabled), you have rights over your personal data under the GDPR:
- Access — ask for a copy of the personal data we hold about you, including everything you’ve given us.
- Rectification — have inaccurate or incomplete data corrected.
- Erasure — ask us to delete your data. This doesn’t cover information we have to keep for administrative, legal or security reasons.
- Restriction — ask us to limit how we use your data in certain circumstances.
- Objection — object to processing based on our legitimate interests.
- Portability — receive certain data in a portable, machine-readable format.
- Withdraw consent — where we rely on consent (such as non-essential cookies), withdraw it at any time, without affecting processing already carried out.
To exercise any of these, email info@porkmafiaeu.fi. We’ll respond within one month. We don’t make any decisions about you by automated means alone, and we don’t profile you.
Complaints
We’d always prefer to put things right ourselves, so please contact us first. You also have the right to lodge a complaint with the Finnish supervisory authority:
Office of the Data Protection Ombudsman (Tietosuojavaltuutetun toimisto)
Visiting address: Lintulahdenkuja 4, 00530 Helsinki
Postal address: P.O. Box 800, 00531 Helsinki, Finland
Switchboard: +358 29 566 6700
Email: tietosuoja(at)om.fi
Website: tietosuoja.fi
Children
This website is aimed at retailers and adult consumers, not children. We don’t knowingly collect personal data from children. Under Finnish law, the minimum age for a child to consent to online services on their own is 13. If you believe a child has given us personal data, contact us and we’ll delete it.
Cookies
This site uses cookies, and you control the non-essential ones through the cookie banner. For the full list — what each cookie is for, whether it’s strictly necessary, and how long it stays on your device — see our Cookie Policy.
Changes to this policy
We may update this policy from time to time as the site or the law changes. When we do, we’ll revise the ”last updated” date at the top. If a change is significant, we’ll make it clear on the site. Please check back now and then to stay informed.