Privacy Policy
Last updated: May 2026
1. Who We Are
Artome is the data controller responsible for this website and the personal data collected through it.
Artome Oy
Syrjäläntie 81
Finnland
Contact for privacy matters: []
2. What Data We Collect and Why
2.1 When you submit a support ticket
When you contact us through our support form we collect your name, email address, the product you’re using, and the description of your issue, along with any files you choose to attach. This data is used solely to respond to and resolve your request.
Legal basis: Legitimate interest (responding to a customer inquiry) and, where applicable, performance of a contract.
2.2 When you create an account
If you create an account on artome.fi — either to submit and track support tickets or as an invited partner — we collect your first name, last name, email address, and password (stored as a secure hash, never in plain text). You may optionally add your company name and phone number to your profile.
Legal basis: Performance of a contract / legitimate interest.
2.3 Partner portal users
Partners invited by Artome receive a dedicated account. In addition to the basic account data above, we record:
- Login activity — total number of logins and timestamps of recent sessions, used to show you content that is new since your last visit.
- Download activity — which materials you have downloaded and when, used to display download counts and help Artome understand which materials are most useful.
- Company association — your account is linked to your partner company, which determines which materials are visible to you.
Legal basis: Legitimate interest (operating the partner portal and improving the material library).
2.4 When you use the contact or demo booking form
We collect the information you submit (typically name, email, company and your message) to respond to your enquiry or arrange a product demonstration.
Legal basis: Legitimate interest / pre-contractual steps.
3. Cookies
This website uses cookies to function correctly. We do not use third-party advertising cookies.
| Cookie | Purpose | Duration |
|---|---|---|
wordpress_angemeldet_* | Keeps you signed in | Session / 14 days if “Remember me” is selected |
wordpress_sec_* | Security token for the admin area | Session |
wp-einstellungen-* | Stores your UI preferences | 1 year |
If you decline optional cookies when prompted, only the strictly necessary cookies above are set.
Gravatar: If you have a Gravatar account, your profile picture is loaded from gravatar.com using a hash of your email address. This is a request to a third-party server (Automattic). If you prefer not to use Gravatar, you can leave the profile picture field empty.
4. How We Share Your Data
We do not sell your personal data. We may share it with:
- Hosting provider — our website and its database are hosted on servers operated by [hosting provider name]. Data is processed within the EU/EEA.
- Email delivery — transactional emails (account confirmation, ticket replies, password reset) are sent via [email provider, e.g. SMTP/SendGrid].
- Fluent Support — the helpdesk software we use to manage support tickets. All data is stored on our own server, not transmitted to a third party.
5. How Long We Keep Your Data
| Data | Retention period |
|---|---|
| Support tickets and correspondence | 3 years from the date the ticket is closed |
| Account data (active account) | For as long as your account is active |
| Account data (after deletion request) | Processed and deleted within 5 business days of your request |
| Partner activity logs (logins, downloads) | 12 months rolling |
| Contact/demo form submissions | 12 months, or for as long as the sales process is ongoing |
6. Your Rights
Under the EU General Data Protection Regulation (GDPR) you have the right to:
- Access — request a copy of the personal data we hold about you.
- Rectification — correct inaccurate data. You can update your name, email, company and phone number yourself at any time via My Account → Edit profile.
- Erasure — request deletion of your account and associated data via My Account → Delete account. We will process the request within 5 business days and confirm by email.
- Restriction — ask us to pause processing of your data while a dispute is resolved.
- Portability — receive your data in a structured, machine-readable format.
- Object — object to processing based on legitimate interest.
To exercise any of these rights, email us at []. We will respond within 30 days.
You also have the right to lodge a complaint with the Finnish data protection authority:
Tietosuojavaltuutetun toimisto (Office of the Data Protection Ombudsman)
tietosuoja.fi | +358 29 566 6700
7. Data Security
Passwords are stored using WordPress’s bcrypt hashing — we cannot see your password. All data transmission between your browser and our server uses TLS encryption (HTTPS). Partner materials are stored in a private directory that is not publicly accessible — files can only be downloaded by authenticated users who belong to the correct partner company.
8. Changes to This Policy
We may update this policy as the website evolves. The “Last updated” date at the top of this page will always reflect the most recent version. For significant changes we will notify active users by email.
Questions? Contact us at []