Legal

Privacy Policy

How Sleek Auto collects, uses, and protects your personal information.

Last updated: 28 April 2026

1. Who We Are

Sleek Auto is a premium car wash and detailing service based in Oulu, Finland. We are committed to protecting the privacy and personal data of our customers in accordance with the EU General Data Protection Regulation (GDPR) and applicable Finnish data protection law.

Data controller: Sleek Auto, Oulu, Finland
Contact: hello@sleekauto.fi  |  +358 40 123 4567

2. What Data We Collect

We collect only the information that is necessary to deliver our services and communicate with you:

  • Identity data: your first and last name.
  • Contact data: phone number and email address.
  • Vehicle data: make, model, colour, and registration plate — required to identify your car during service.
  • Booking data: selected service package, appointment date, and time slot.
  • Payment data: we do not store card details. Payments are processed in-person at pickup; no card data passes through our systems.
  • Usage data: basic browser and device information collected automatically when you visit our website (e.g. browser type, pages visited, time spent). This data is anonymised and cannot identify you personally.

3. How We Use Your Data

Your data is used solely for the following purposes:

  • Confirming and managing your car wash or detailing appointment.
  • Notifying you by email or SMS when your vehicle is ready for collection.
  • Sending appointment reminders before your scheduled slot.
  • Responding to enquiries or complaints you submit through our contact form or by email.
  • Maintaining service and accounting records as required by Finnish law.
  • Improving website performance and user experience using aggregated, anonymised analytics.

We will never sell, rent, or trade your personal data to third parties for marketing purposes.

4. Legal Basis for Processing

We process your personal data under the following legal bases as defined in GDPR Article 6:

  • Contract performance (Art. 6(1)(b)): processing is necessary to fulfil your appointment booking and deliver the service you have requested.
  • Legal obligation (Art. 6(1)(c)): we are required to retain certain records for accounting and tax purposes under Finnish law.
  • Legitimate interests (Art. 6(1)(f)): we use anonymised website analytics to maintain and improve our online services.
  • Consent (Art. 6(1)(a)): where we send optional promotional communications, we will always ask for your explicit consent first.

5. Cookies

Our website uses a small number of cookies to ensure proper functionality:

  • Essential cookies: required for the booking system and navigation to work correctly. These cannot be disabled.
  • Analytics cookies: anonymised data used to understand how visitors interact with our site (e.g. Google Analytics). You may opt out of analytics cookies at any time via your browser settings.

We do not use advertising or tracking cookies.

6. Data Sharing

We only share your data with trusted parties who help us operate our service:

  • Email / SMS providers: used solely to deliver appointment confirmations and reminders on our behalf, bound by data processing agreements.
  • Accounting and legal advisors: where legally required for financial or compliance purposes.
  • Regulatory authorities: if required by Finnish law or a valid court order.

All third-party processors are contractually obligated to handle your data securely and only as instructed by us.

7. Data Retention

We keep your data only for as long as necessary:

  • Booking records: retained for 2 years to support service history and customer enquiries.
  • Accounting records: retained for 7 years as required by Finnish accounting law (Kirjanpitolaki).
  • Marketing consent records: retained until you withdraw consent.
  • Website analytics: anonymised and aggregated; no personal identifiers are retained.

After the applicable retention period, your data is securely deleted or anonymised.

8. Your Rights

Under GDPR, you have the following rights regarding your personal data:

  • Right of access: request a copy of the data we hold about you.
  • Right to rectification: ask us to correct inaccurate or incomplete data.
  • Right to erasure ("right to be forgotten"): request deletion of your data where there is no legitimate reason for us to continue processing it.
  • Right to restriction: ask us to pause processing of your data in certain circumstances.
  • Right to data portability: receive your data in a structured, machine-readable format.
  • Right to object: object to processing based on legitimate interests or for direct marketing.
  • Right to withdraw consent: where processing is based on consent, withdraw it at any time without affecting prior processing.

To exercise any of these rights, contact us at hello@sleekauto.fi. We will respond within 30 days. You also have the right to lodge a complaint with the Finnish Data Protection Ombudsman (tietosuoja.fi).

9. Data Security

We take the security of your personal data seriously. Our measures include:

  • HTTPS encryption for all data transmitted through our website.
  • Access to personal data restricted to authorised staff only.
  • Regular review of data handling practices.
  • No storage of payment card information on our systems.

In the unlikely event of a data breach that poses a risk to your rights, we will notify the relevant supervisory authority within 72 hours and inform affected individuals without undue delay.

10. Changes to This Policy

We may update this Privacy Policy from time to time. The most current version will always be published on this page with the updated date. If we make significant changes, we will notify you by email where we hold your contact details.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your data, please get in touch: