Privacy policy.

Privacy Policy
Last updated: [2026-02-11]

1. Controller

Alignment Studios Oy (“we”, “us”)
Business ID: 3477835-5
Address: Hämeentie 27 A 29 00500 Helsinki, Finland
Email: martta.norvanto@gmail.com

2. Personal data we process

We may process:

  • Identity & contact: name, email, phone (if provided)

  • Intake/application materials: texts, images, links and other materials you submit

  • Order & billing: purchases, invoices/receipts, VAT info if applicable

  • Payment status: payment confirmations and transaction references (we do not store full card details)

  • Scheduling data: booking times, notes you submit during booking

  • Communications: emails/messages/voice notes you send us and our replies

  • Website usage: IP address, device/browser info, pages viewed, approximate location, cookie identifiers (where enabled)

3. Purposes and legal bases (GDPR)

We process data to:

  • Deliver services and digital products (Contract)

  • Handle applications/onboarding and support (Contract / Legitimate interests)

  • Process payments and manage subscriptions (Contract / Legal obligation)

  • Accounting and compliance (Legal obligation)

  • Improve website performance and prevent abuse (Legitimate interests)

  • Analytics/marketing cookies (Consent, where enabled)

4. Payments and service providers

We use:

  • Squarespace (website hosting, forms, ecommerce/membership features where enabled)

  • Stripe and PayPal (payment processing)

  • Email and messaging platforms (e.g., Telegram, WhatsApp, email) only to deliver support if you choose those channels

These providers act as processors/controllers according to their own terms. Payment providers receive necessary payment data to complete transactions.

5. Cookies

We use necessary cookies for site functionality. If we enable analytics/marketing tools, we will request your consent via the cookie banner. You can change cookie preferences anytime via the cookie settings/link on the site (if enabled).

6. Data retention

We keep personal data only as long as needed for:

  • service delivery and support

  • legal/accounting requirements (typically 6+ years under Finnish accounting rules, as applicable)

  • resolving disputes

7. International transfers

Some service providers may process data outside the EU/EEA. Where relevant, transfers rely on appropriate safeguards (e.g., EU Standard Contractual Clauses) provided by the service provider.

8. Your rights

You may have the right to:

  • access, correct, delete your data

  • restrict or object to processing

  • withdraw consent (for consent-based processing)

  • data portability

  • lodge a complaint with your supervisory authority (Finland: Office of the Data Protection Ombudsman)

To exercise rights: email martta.norvanto@gmail.com.

9. California privacy notice (CPRA/CCPA)

We do not “sell” personal information in the traditional sense. If we use marketing/advertising cookies in the future, some may be considered “sharing” under California law. You can opt out via cookie settings (where enabled) or by emailing us.

10. Security

We use reasonable administrative and technical safeguards, but no online transmission is 100% secure.