Privacy Policy

1. Who we are

This website and its services are operated by Prio1 Ltd (Prio1 Oy, Finland).

Prio1 Foundation is a planned independent foundation and is not yet formally registered. Until formal registration, Prio1 Ltd operates the site, memberships, payments, and publications.

2. Scope

This Privacy Policy applies to personal data processed when you:

  • visit this website

  • contact us through forms or email

  • create an account

  • purchase Supporting Membership

  • make a one time contribution

  • use the members community when it is available

3. What personal data we collect

3.1 Data you provide

Depending on how you use the site, we may collect:

  • name

  • email address

  • organization or outlet (optional)

  • role or title (optional)

  • country or time zone (optional)

  • messages you send to us through forms or email

  • account credentials (password is stored in hashed form)

  • membership status and account related data (for example level, renewal date, billing status)

  • community content you submit (posts, comments, uploads, profile information you choose to add)

3.2 Payments

Payments are processed by Stripe. We do not store full payment card details on our servers.

We may receive payment related metadata such as:

  • payment status and amount

  • currency

  • timestamps

  • limited billing information needed for receipts and accounting

  • Stripe transaction identifiers

3.3 Data collected automatically

When you visit the site, we may collect:

  • IP address

  • device and browser information

  • pages viewed and interactions

  • referral source

  • approximate location derived from IP (country or region level)

  • log and security data (to prevent abuse and protect the site)

4. Why we use personal data

We process personal data for the following purposes:

  • to operate the website and provide requested services

  • to create and manage accounts and memberships

  • to process payments, confirm transactions, and provide receipts

  • to provide member updates and service communications

  • to enable community features and moderation when the members area is available

  • to respond to enquiries and support requests

  • to maintain security, prevent fraud, and protect the integrity of the site

  • to improve site reliability and usability

5. Legal bases for processing

Where applicable under privacy law, we rely on the following legal bases:

  • Contract: to provide membership and account services you request

  • Legitimate interests: to secure and improve the site, prevent abuse, and communicate about service matters

  • Consent: where required for optional cookies or marketing communications

  • Legal obligation: to meet tax, accounting, and compliance requirements

6. Sharing and processors

We share personal data only as needed to operate the services.

Typical categories of recipients include:

  • Payment processing: Stripe

  • Website hosting and infrastructure providers

  • Email delivery or messaging providers used for service communications

  • Membership and community software providers used on the site

  • Security and anti abuse services if enabled

  • Professional advisers (accounting, legal) where necessary

  • Authorities when required by law

We do not sell personal data.

7. International transfers

Some service providers may process data outside your country. Where applicable, we use appropriate safeguards for international transfers, such as contractual protections and other measures required by law.

8. Data retention

We retain personal data only for as long as necessary for the purposes described in this policy.

Typical retention periods:

  • contact messages: as long as needed to handle the enquiry and maintain records

  • account and membership records: for the duration of the account and as required for accounting and legal compliance

  • payment records: as required by tax and accounting obligations

  • security logs: for a limited period appropriate for security and abuse prevention

  • community content: retained until deleted by you, removed by moderation, or as required for integrity and compliance

9. Security

We use reasonable technical and organizational measures to protect personal data. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

10. Your rights

Depending on your location, you may have rights to:

  • access your personal data

  • correct inaccurate data

  • delete your data

  • restrict or object to certain processing

  • withdraw consent where processing is based on consent

  • receive a copy of your data in a portable format

  • lodge a complaint with a data protection authority

You can usually manage account information through your account page. For requests you cannot complete through the site, contact us using the Contact and Media page.

11. Children

This site is not intended for children. We do not knowingly collect personal data from children. If you believe a child has provided personal data, contact us and we will take appropriate steps.

12. Cookies and similar technologies

We use cookies and similar technologies for essential site functions, security, and performance. Details are provided in the Cookie Policy.

13. Third party links

This website may link to third party websites or services. Their privacy practices are governed by their own policies.

14. Changes to this policy

We may update this Privacy Policy from time to time. The latest version will be posted on this page.

15. Contact

For privacy related enquiries or requests, contact us via the Contact and Media page.

Controller: Prio1 Ltd (Prio1 Oy, Finland)

Scroll to Top