Privacy Policy

Welcome to PanicFree ("Company," "we," "us," or "our"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and purchase our products.

Please read this Privacy Policy carefully. By accessing or using our services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

We collect information that you provide directly to us, including:

• Contact Information: Email address when you make a purchase or contact us.
• Payment Information: Payment details are processed securely through Stripe. We do not store your full credit card number on our servers.
• Transaction Information: Records of products purchased, order history, and download activity.
• Communications: Any correspondence you send to us, including support requests.

When you visit our website, we automatically collect certain information, including:

• Device Information: Browser type, operating system, device type, and screen resolution.
• Usage Data: Pages visited, time spent on pages, click patterns, and referring URLs.
• IP Address: Your internet protocol address, which may indicate your general geographic location.
• Cookies and Tracking Technologies: We use cookies and similar technologies to analyze trends, administer the website, and gather demographic information. See Section 7 for a detailed breakdown of the cookies we use.

We process your personal information based on the following legal grounds under the GDPR and applicable law:

• Contract Performance (Art. 6(1)(b) GDPR): Processing and fulfilling your orders, delivering purchased digital products, and sending transactional emails such as order confirmations and download links.
• Consent (Art. 6(1)(a) GDPR): Setting advertising cookies, such as the Meta (Facebook) Pixel, and delivering targeted advertisements based on your website activity. You may withdraw your consent at any time through the cookie settings.
• Legitimate Interest (Art. 6(1)(f) GDPR): Analyzing website usage to improve our products and services, preventing fraud and ensuring the security of our services, and providing customer support.
• Legal Obligation (Art. 6(1)(c) GDPR): Retaining transaction records for tax and accounting purposes as required by Finnish bookkeeping law, and responding to lawful requests from authorities.

We use the information we collect to:

• Process and fulfill your orders and deliver purchased products
• Send transactional emails (order confirmations, download links)
• Respond to your inquiries and provide customer support
• Analyze website usage to improve our products and services
• Prevent fraud and enhance the security of our services
• Comply with legal obligations

We use third-party advertising and analytics services, including Meta (Facebook) Pixel, to understand how visitors interact with our website and to deliver relevant advertisements. These services may collect information about your online activities over time and across different websites.

Meta (Facebook) Pixel: We use the Meta Pixel to measure the effectiveness of our advertising, understand actions people take on our website, and deliver targeted advertisements. Advertising cookies are only set with your consent. You can learn more about how Meta uses your data at Meta's Privacy Policy.

We use cookies and similar technologies on our website to enhance your experience and analyze site usage. Visitors in the EU/EEA are shown a cookie consent banner to manage their preferences.

Necessary Cookies

These cookies are essential for the website to function properly. They cannot be disabled.

Analytics

We use Vercel Analytics to understand how visitors interact with our website. Vercel Analytics is privacy-friendly and does not use cookies. It collects aggregated, non-personally-identifiable data such as page views, visit duration, and general geographic location (country/city level).

Advertising Cookies

These cookies are set only with your consent and are used for targeted advertising and measuring ad effectiveness.

You can change your cookie preferences at any time via the "Cookie Settings" link in the website footer, or by contacting us. Visitors outside the EU/EEA are not shown a cookie banner, as explicit consent is not legally required in those regions; however, you may use the footer link or contact us to opt out of advertising cookies at any time.

We may share your information with:

• Service Providers: Third parties that perform services on our behalf, such as payment processing (Stripe), email delivery (Resend), and hosting (Vercel).
• Advertising Partners: As described in the Advertising and Analytics section. Advertising data is only shared with your consent.
• Legal Requirements: When required by law, court order, or governmental authority.
• Business Transfers: In connection with a merger, acquisition, or sale of assets.

We do not sell your personal information to third parties.

We primarily aim to use service providers within the EU/EEA. However, some of our service providers are based in the United States:

• Stripe: Payment processing. Transfers are protected under Standard Contractual Clauses (SCCs) and the EU-U.S. Data Privacy Framework.
• Vercel: Website hosting and analytics. Transfers are protected under Standard Contractual Clauses (SCCs).
• Meta (Facebook): Advertising pixel. Data is transferred only with your consent and is protected under Standard Contractual Clauses (SCCs) and the EU-U.S. Data Privacy Framework.
• Resend: Email delivery service. Transfers are protected under Standard Contractual Clauses (SCCs).

We ensure that all international data transfers comply with applicable data protection legislation and that appropriate safeguards are in place.

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. Transaction records are retained for at least 7 years for tax and legal compliance as required by Finnish bookkeeping law.

Under the GDPR and applicable data protection laws, you have the following rights regarding your personal information:

• Right of Access: You have the right to request confirmation of whether we process your personal data and to obtain a copy of that data.
• Right to Rectification: You have the right to request correction of inaccurate or incomplete personal data.
• Right to Erasure: You have the right to request deletion of your personal data under certain conditions, such as when the data is no longer necessary for its original purpose. Legal obligations (such as bookkeeping requirements) may limit this right.
• Right to Restrict Processing: You have the right to request restriction of processing of your personal data in certain circumstances, such as while we verify the accuracy of your data.
• Right to Data Portability: You have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format, and to transmit that data to another controller.
• Right to Object: You have the right to object to the processing of your personal data based on legitimate interest. You have an absolute right to object to processing for direct marketing purposes at any time.
• Right to Withdraw Consent: Where processing is based on your consent (such as advertising cookies), you have the right to withdraw your consent at any time through the cookie settings.

To exercise these rights, please contact us at the email address provided in the Data Controller section below. We may need to verify your identity before processing your request.

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

• The right to know what personal information is collected, used, shared, or sold
• The right to delete personal information held by businesses
• The right to opt-out of the sale of personal information
• The right to non-discrimination for exercising your CCPA rights

We do not sell personal information as defined by the CCPA.

If you believe that the processing of your personal data violates data protection legislation, you have the right to lodge a complaint with a supervisory authority.

In Finland, the supervisory authority is:

Office of the Data Protection Ombudsman
Lintulahdenkuja 4, 00530 Helsinki
P.O. Box 800, 00531 Helsinki
Email: tietosuoja(at)om.fi
Phone: +358 29 56 66700

EU/EEA residents may also lodge a complaint with the supervisory authority in their country of residence.

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. All data in transit is encrypted using SSL/TLS. However, no method of transmission over the internet or electronic storage is 100% secure.

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. Your continued use of our services after any changes constitutes acceptance of the updated policy.

The data controller responsible for your personal information is:

Jocanen Oy
Business ID: 3352342-2
Tuulitie 2 A
00700 Helsinki, Finland
Email: support@panic-free.com

If you have any questions about this Privacy Policy or our privacy practices, please contact us at the email address above.