DigitalFlowKit

Shopify Email Flows

Privacy Policy

Last updated: 24th of January 2026

This Privacy Policy explains how DigitalFlowKit (“we”, “us”, “our”) collects, uses, and shares personal data when you visit digitalflowkit.com (and related domains) and when you purchase our digital products.

DigitalFlowKit is operated from Finland.

1. Data Controller (Who is responsible for your data)

Controller: Suunta Digital Oy (operating under the brand name “DigitalFlowKit”)
Business ID: 3566700-8
Address: Rehtorintie 1, 02360 Espoo, Finland
Email: support@digitalflowkit.com

If you are purchasing through our checkout, payment processing and digital delivery are handled by our merchant platform provider (see Section 5).

2. What personal data we collect

Depending on how you interact with us, we may collect:

a) Website and analytics data

  • Device and browser information
  • IP address (may be logged by servers and security tools)
  • Pages viewed, approximate location, and referral source
  • Cookie identifiers (if cookies/analytics are enabled)

b) Purchases and customer support

When you purchase or contact us, we may receive:

  • Name
  • Email address
  • Billing country and basic transaction details
  • Purchase details (product purchased, time/date, order ID)
  • Support messages and any information you provide to us

Payment details: We do not receive or store full card numbers. Payments are processed by our checkout/payment partners.

c) Email marketing (if you subscribe)

If you sign up to our email list, we collect:

  • Email address
  • Optional name (if provided)
  • Subscription preferences and email engagement data (opens/clicks), depending on email provider settings

3. Why we process your data (purposes)

We use personal data to:

  • Comply with legal, tax, and accounting obligations
  • Provide access to purchased digital products and order receipts
  • Process payments and prevent fraud
  • Provide customer support and respond to requests
  • Maintain, secure, and improve our website and customer experience
  • Send product updates or marketing emails (only if you opt in; you can unsubscribe anytime)

4. Legal basis (GDPR)

If you are in the EEA/UK, our legal bases include:

  • Contract: to deliver your purchase and provide support
  • Legitimate interests: to secure our services, prevent fraud, and improve our website
  • Consent: for marketing emails and certain cookies (where required)
  • Legal obligation: for accounting, tax, and compliance requirements

5. Who we share data with (processors)

We share data only as needed to operate our business:

  • Checkout, payment processing, and digital delivery: Lemon Squeezy (our merchant-of-record/ecommerce platform provider), including their payment processing partners, for completing purchases and delivering downloads.
  • Email service provider: Lemon Squeezy for sending email subscriptions and transactional messages (if applicable).
  • Website hosting and security: SpeedZone to run and protect our site.
  • Analytics: Google Analytics to understand site performance (if enabled).
  • WordPress plugins and website tools: We may use standard WordPress plugins to run forms, security, and performance features on our site (only as needed). We only use reputable plugins and keep them updated.

These providers process data under their own privacy terms and/or data processing agreements.

Lemon Squeezy may process certain data as an independent controller for payment, tax, and compliance purposes.

6. International transfers

Some service providers may process data outside Finland and/or the EEA. Where required, we use Standard Contractual Clauses (SCCs) or other lawful safeguards to protect personal data transferred outside the EEA.

7. Data retention

We keep personal data only as long as necessary for the purposes described above:

  • Marketing subscribers: retained until you unsubscribe or request deletion (subject to legal requirements).
  • Purchase records: retained as required for accounting/tax/compliance.
  • Support messages: kept as long as needed to resolve issues and maintain service history.

8. Your rights

Depending on your location, you may have rights to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion (where applicable)
  • Object to or restrict processing
  • Data portability
  • Withdraw consent (for marketing/cookies) at any time

To make a request, contact: support@digitalflowkit.com

We may need to verify your identity before fulfilling requests. You also have the right to lodge a complaint with your local data protection authority.

9. Cookies and tracking

We may use cookies or similar technologies to operate the website and understand how it is used.

  • You can control cookies through your browser settings.
  • If we use analytics or marketing cookies, we will request consent where legally required.

10. Children’s privacy

Our products and services are not intended for children, and we do not knowingly collect personal data from children.

11. Security

We use reasonable administrative, technical, and organizational safeguards to protect personal data. No method of transmission or storage is 100% secure, but we work to reduce risk.

12. Changes to this policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top indicates when changes were made.

13. Contact

For privacy-related questions, contact:
support@digitalflowkit.com