Cookie policy and privacy statement NoHo Partners Oyj’s websites use cookies. By using NoHo Partners Oyj’s websites, you accept this policy and consent to the use of cookies. Cookies are text files that a web browser stores on a user’s device. Cookies store information about a user’s behavior on a website. When a user returns to the site later, the browser sends the cookies belonging to that site back to it. Cookies help the site recognize the user and utilize information collected during previous sessions. Such information includes name, email address, home or work address, or phone number. The site only has the information that the user has provided themselves. For example, the site cannot deduce a user’s email address unless it has been entered. The site cannot access other information found on the computer. NoHo Partners Oyj’s website uses its own and third-party cookies for the following purposes: To identify the user when visiting the site. The cookie is valid for 90 days from the last visit. To store the selected language in a cookie, so that the user is automatically directed to the correct page. Blocking cookies In most browsers, cookies can be blocked. Below are instructions for blocking cookies in different browsers: Internet Explorer: Click Tools > Internet Options > Privacy > Advanced Settings > Block all cookies Firefox: Click the three-line icon > Settings > Privacy & Security Safari: Click Settings > Privacy Google Chrome: Click the three-dot icon in the upper right corner > Settings > Advanced > Privacy and security Blocking cookies may impair the usability of some websites. For more information: If you would like more information about NoHo Partners Oyj’s website’s cookie policy or the information we store, please contact us by email: GDPR@noho.fi PRIVACY STATEMENT In this privacy statement, we explain what information we collect, how we use and protect it, and your rights to influence the use of your personal data. Last modified: May 15, 2025Effective date: October 31, 2019 Summary Noho.fi, as the data controller, is a Finnish restaurant group NoHo Partners Oyj (Business ID: 1952494-7). The data collected in the register consists of contact information provided by the customer themselves and automatically collected usage data. The processing of data is based on the customer relationship. The data is used for the implementation and development of services, the management of customer relationships, and advertising and marketing. The data is not disclosed to parties outside the NoHo Partners Group, except for service providers, and data processing is only carried out in Finland. What data we collect We may collect information about you when you register for our services, use our websites, visit our restaurants, or otherwise contact us. The information we collect can be divided into two categories based on the data source: (a) information you provide to us yourself and (b) information we collect automatically. We may combine and cross-reference the information you provide to us with information we collect automatically. Information you provide We may collect personal information you provide to us, such as your first and last name, phone number, gender, date of birth, street address, postal code, city, and email address. We may also collect other information you provide to us. In addition, we store in the register information about whether you have consented to direct marketing through electronic means as defined by law or whether you have prohibited direct marketing. Automatically collected data We may use various methods to automatically collect information from your computer or mobile device when you use our website. Automatic methods may include cookies, web beacons, and other technologies. Automatically collected data may include your IP address, your locality, your computer or mobile device’s operating system, the browser you use, your mobile device’s type and settings, and your activity related to the use of our services, such as the pages you visit on our website. The majority of automatically collected data related to the use of our website is only stored temporarily. You can prevent the automatic collection of data based on cookies by disabling cookies in your browser settings. However, please note that cookies may be necessary for the proper functioning of some services. You can also influence automatically collected data through your mobile device’s settings. HOW WE USE THE INFORMATION WE COLLECT Providing and Developing Services We may use your information to provide you with services and loyalty program benefits, as well as for communication related to your loyalty program membership. We may also use your information for marketing and advertising of restaurant services targeted at you. In addition, we may use the information we collect to develop our services. Use of location data Our website may request information about your locality to display our local restaurants and benefits. You can also set your locality yourself. We only use information about your locality for the purpose stated above and do not disclose it to third parties. Locality information is only stored temporarily and does not contain precise information about your location. You can prevent the use of location data in your device’s settings. Basis for processing personal data The primary basis for processing personal data is the customer relationship (relevant connection) between a company belonging to the NoHo Partners Group and you, and our legitimate interest in managing the customer relationship and targeting marketing. We may also process your data based on your consent. Sharing and disclosure of the information we collect We do not sell your personal data and only disclose your data as described in this privacy statement. The disclosure of data complies with applicable data protection legislation. Your personal data will not be transferred outside the European Union or the European Economic Area. We may disclose your personal data within the NoHo Partners Group to individuals responsible for loyalty programs, sales, and marketing. We may transfer your personal data to service providers who provide services to us for the acquisition of loyalty cards, such as data processing and other IT services, campaign, competition and sweepstakes services, and opinion and market research services. We do not allow such service providers to use your personal data or disclose it for any purpose other than to provide services on our behalf. If we decide, for strategic or other business reasons, to sell or transfer our business in whole or in part, we may, as part of such sale or transfer, pass on information we have collected and stored, including customer information containing your personal data, to anyone involved in the sale or transfer of the business. In addition, we may disclose your personal data if we consider it necessary under applicable law, regulation, or a request from an authority. Data security We store your data in an electronic register and have taken appropriate measures to secure your personal data. The use, modification, and processing of the register require user identification and a secure connection. The use of the register is only permitted to designated individuals whose task is the maintenance and management of the system and customer relationships. The register data is protected against external use, and the use of the register is monitored. Data retention and deletion We retain your collected personal data only for as long as the data can be considered necessary for the purposes described in this privacy statement, unless the retention of the data for a longer period is required by law or permitted under the law. We will delete your data stored in the register upon the termination of your loyalty program membership. Changes to the privacy policy We may update this privacy statement and our privacy practices from time to time. If the changes are significant, we will notify you on our website or by other means, such as email. We encourage you to read this statement regularly to stay informed about our privacy practices. Your rights and how to exercise them You have the right to inspect the data concerning yourself, the right to demand the correction, deletion, or supplementation of incorrect data. You also have the right to resort to all other rights guaranteed by data protection legislation, such as the right to restrict processing and to object to processing, as well as the right to transfer data from one system to another. However, please note that in certain situations, the provision, storage, and processing of data may be a prerequisite for the introduction or use of the service. You also have the right to prohibit the use of your provided data for direct advertising, distance selling, or other direct marketing by requesting the termination of your membership. If you have given us permission to send you marketing communications, you can later opt-out of receiving such communications by following the instructions included in the messages. Contact information If you have any questions about our privacy practices or wish to exercise your data protection rights, you can primarily contact us by email or mail: Email: GDPR@noho.fi NoHo Partners OyjHatanpään valtatie 1 BFI-33100 Tampere Finland
