Privacy Policy – Helsinki Cyclo Tour

Last updated: 10 March 2026

1. Who we are

Helsinki Cyclo Tour (“we”, “us”, “our”) offers guided (e)bike tours, BBQ and sauna experiences in Helsinki, Finland. This privacy policy explains how we collect, use and protect your personal data when you visit our website helsinkicyclotour.com or contact us about our tours.

If you have any questions, you can contact us at:
Email: info@helsinkicyclotour.com

2. Personal data we collect

We may collect the following information:

• Contact details: name, email address, phone number.
  
  

• Booking details: tour date, time, number of participants, special requests.
  
  

• Payment‑related information: handled securely by our payment/booking provider; we do not store full card details on our servers.
  
  

• Technical data: IP address, browser type, device information and pages visited (via cookies and analytics tools).
  
  

If you complete a form or contact us by email or phone, we collect the information you choose to provide.

3. How we use your data

We use your personal data to:

• Process and manage your tour bookings and payments.
  
  

• Communicate with you about your reservation (confirmations, updates, questions).
  
  

• Respond to your enquiries and provide customer support.
  
  

• Improve our website, services and marketing based on anonymous or aggregated statistics.
  
  

• Comply with legal obligations (for example accounting rules, safety requirements).
  
  

We do not sell your personal data to third parties.

4. Legal bases for processing (EU / GDPR)

We process your personal data based on:

• Contract: when you book a tour or ask us to take steps before booking (e.g. availability enquiries).
  
  

• Consent: when you sign up for optional communications such as a newsletter or agree to cookies that are not strictly necessary.
  
  

• Legitimate interests: to improve our services, keep our website secure and prevent fraud, in a way that does not override your rights.
  
  

• Legal obligation: to keep certain records for tax, accounting or safety reasons.
  
  

5. Who we share data with

We may share your data with:

• Booking and payment providers that help us manage reservations and process payments (for example, booking systems or payment gateways).
  
  

• Analytics and advertising tools (such as Google Analytics or Google Ads) to understand website usage and show relevant ads. These tools typically receive anonymised or pseudonymised data.
  
  

• Service providers who host our website or provide IT support, only as needed to provide the service and under confidentiality obligations.
  
  

• Public authorities if we are required to do so by law or to protect our rights and the safety of our guests.
  
  

We require all third parties to protect your data and use it only for the purposes we specify.

6. Cookies and similar technologies

Our website may use cookies and similar technologies to:

• Make the site function properly (for example remembering your preferences).
  
  

• Collect anonymous statistics about visits and traffic (for example via Google Analytics).
  
  

• Support marketing and advertising, such as measuring the performance of Google Ads campaigns.
  
  

When required by law, we will ask for your consent before placing non‑essential cookies. You can usually manage or delete cookies through your browser settings.

7. Data retention

We keep your personal data only as long as necessary for the purposes described above:

• Booking and customer information: typically kept for up to 6 years after your tour, to comply with accounting and legal obligations and to handle any potential claims.
  
  

• Marketing data (for example newsletter subscriptions): kept until you unsubscribe or withdraw your consent.
  
  

• Analytics data: kept in accordance with the retention settings of our analytics tools.
  
  

When data is no longer needed, we will delete or anonymise it.

8. Your rights

Under the EU General Data Protection Regulation (GDPR), you have the right to:

• Access the personal data we hold about you.
  
  

• Request correction of inaccurate or incomplete data.
  
  

• Request deletion of your data in certain circumstances (“right to be forgotten”).
  
  

• Restrict or object to certain types of processing.
  
  

• Withdraw consent at any time when processing is based on consent (for example email marketing).
  
  

• Request data portability in some cases.
  
  

To exercise any of these rights, please contact us at info@helsinkicyclotour.com

. We may need to verify your identity before we can act on your request.

You also have the right to lodge a complaint with your local data protection authority if you believe your data has been handled unlawfully.

9. International transfers

Our website and tools may involve transferring data to countries outside the European Economic Area (EEA), for example when we use service providers such as Google. When this happens, we aim to ensure that appropriate safeguards are in place, such as standard contractual clauses or equivalent protections required by law.

10. Security

We take reasonable technical and organisational measures to protect your personal data from loss, misuse, unauthorised access, disclosure, alteration or destruction. However, no system can be 100% secure, so you should also take care when sending information over the internet.

11. Changes to this policy

We may update this privacy policy from time to time. The “Last updated” date at the top of this page indicates when the latest changes were made. Significant changes will be highlighted on our website where appropriate.