Privacy policy

Privacy Policy

Effective date: May 14, 2026


Last updated: May 14, 2026


This Privacy Policy explains how Meridiem35 Oy, operating the cutawaypoint brand ("cutawaypoint", "we", "us", or "our"), collects, uses, discloses, transfers, stores, and protects personal data when you visit cutawaypoint.com, place an order, contact us, subscribe to marketing, submit content, or otherwise interact with us.

1. Controller and contact

  • Controller: Meridiem35 Oy

  • Brand: cutawaypoint

  • Business address: PL 999, 42011 YRITYSLOKERO, Finland

  • Privacy contact email: info@cutawaypoint.com

Notice at Collection

At or before the point where personal data is collected, we may provide a Notice at Collection or other short privacy notice explaining the categories of personal data collected, the purposes for collection, retention, and any applicable sale, sharing, targeted advertising, or opt-out choices. Our standalone Notice at Collection forms part of this Privacy Policy where applicable.

2. Personal data we collect

Depending on how you interact with us, we may collect the following categories of personal data:


  • Contact details: name, email address, billing address, shipping address, and phone number if provided;

  • Order details: Products purchased, order number, payment status, delivery status, refunds, coupons, returns, and customer service history;

  • Payment-related information: payment method type, transaction identifiers, billing details, fraud screening results, authentication data, and payment status. We generally do not store full payment card numbers;

  • Account and checkout information: Shop account identifiers, Shopify account data, login status, saved checkout preferences, and customer account settings where applicable;

  • Communications: emails, support requests, refund requests, photos, videos, reviews, testimonials, safety complaints, and other messages;

  • Device and usage information: IP address, browser type, device type, operating system, pages viewed, referral URLs, approximate location, timestamps, cookies, pixels, analytics identifiers, and interaction data;

  • Marketing information: subscription status, consent records, email engagement, preferences, and unsubscribe records;

  • Fraud prevention and security information: risk scores, order verification data, payment authentication information, chargeback information, and security logs;

  • Import, customs, and logistics information: shipping route, carrier, customs broker, tracking number, product classification support, country-of-origin information, and delivery status where associated with an order.

3. How we collect personal data

We collect personal data directly from you when you place an order, subscribe to emails, contact support, submit a review, or provide information through the Website. We also collect certain data automatically through cookies, analytics, pixels, server logs, Shopify tools, and similar technologies. We may receive data from third parties such as Shopify, payment processors, fraud prevention providers, suppliers, carriers, customs brokers, logistics partners, email marketing providers, review tools, advertising platforms, and customer support tools.

4. How we use personal data

We may use personal data to:


  • operate the Website and online store;

  • process, confirm, fulfill, ship, track, import, clear, and deliver orders;

  • process payments, refunds, coupons, fraud checks, and chargeback responses;

  • provide customer support and respond to inquiries;

  • investigate damaged, defective, incorrect, missing, delayed, lost, unsafe, or disputed orders;

  • manage reviews, testimonials, User Content, and product feedback;

  • send transactional emails about orders, accounts, support, shipping, refunds, safety, or policy updates;

  • send marketing emails where permitted by law and your preferences;

  • personalize Website content, offers, and customer experience;

  • measure Website performance, advertising, analytics, and marketing effectiveness;

  • detect, prevent, and respond to fraud, security incidents, abuse, chargebacks, customs issues, and unlawful activity;

  • maintain records, enforce terms, resolve disputes, comply with legal obligations, and respond to regulators or courts;

  • improve Products, supplier quality, Website functionality, logistics, and customer experience.

5. Legal bases under GDPR

Because Meridiem35 Oy is based in Finland, we rely on applicable legal bases under data protection law where required. Depending on the context, our legal bases may include:


  • Contract: to process orders, payments, shipping, support requests, refunds, and account-related services;

  • Legal obligation: to comply with tax, accounting, customs, consumer protection, product safety, fraud prevention, and regulatory obligations;

  • Legitimate interests: to operate and improve the Website, prevent fraud, secure our systems, respond to disputes, manage supplier quality, conduct analytics where permitted, and protect our business;

  • Consent: for certain marketing, cookies, advertising pixels, or optional features where consent is required;

  • Vital interests or public interest: where relevant in limited safety, emergency, or legal situations.


Where we rely on consent, you may withdraw consent where applicable. Withdrawal does not affect processing that occurred before withdrawal.

6. How we share personal data

We may share personal data with:


  • ecommerce platforms, including Shopify and related services;

  • payment processors, card networks, banks, fraud prevention tools, and chargeback providers;

  • suppliers, manufacturers, fulfillment partners, sourcing agents, warehouses, customs brokers, logistics providers, postal operators, and carriers;

  • analytics, advertising, cookie, pixel, and marketing providers;

  • email marketing, review, customer support, and communication tools;

  • professional advisers, insurers, auditors, accountants, and legal counsel;

  • regulators, customs authorities, courts, law enforcement, payment networks, or other parties where required or permitted by law;

  • potential buyers, investors, lenders, or successors in connection with a business transaction, restructuring, financing, sale, or transfer.


We may also share information where needed to enforce our Terms, investigate fraud or safety issues, respond to disputes, or protect rights, safety, and security.

7. International transfers

We are based in Finland, but our service providers, customers, suppliers, payment providers, logistics partners, and ecommerce infrastructure may be located in the United States, China, the European Economic Area, and other countries. Personal data may be transferred to, stored in, or accessed from countries that may have different data protection laws than your country.


Where required, we use appropriate safeguards for international transfers, such as contractual protections, standard contractual clauses, adequacy decisions, or other lawful transfer mechanisms.

8. Cookies, analytics, advertising, and similar technologies

We use cookies and similar technologies as described in our Cookie Policy. Depending on your location, device settings, browser settings, Shopify customer privacy settings, and tools enabled on the Website, you may have choices about non-essential cookies, analytics, advertising, targeted advertising, sale, sharing, or similar processing.


We do not intentionally use advertising or analytics tools in a way that violates applicable consent or opt-out requirements. Exact choices may depend on our Shopify settings and third-party tools.

9. Marketing communications

We may send marketing emails where permitted by law, including where you subscribe, create an account, make a purchase, or otherwise consent where required. Marketing emails will include an unsubscribe mechanism. You can unsubscribe from marketing emails at any time by using the unsubscribe link in our emails or by contacting us.


We do not use SMS/text-message marketing, abandoned-cart texts, or promotional text messages unless we separately provide mobile terms, obtain any required consent, and offer required opt-out instructions.


We may still send transactional, service, legal, safety, order, shipping, payment, refund, account, product-recall, or customer-support emails where necessary, even if you unsubscribe from marketing emails.

10. Reviews and user content

If you submit a review, photo, video, testimonial, question, or other content, we may use and display it as described in our Terms. Do not submit personal data about other people unless you have the right to do so. We may moderate or remove content where permitted by law and our policies.

11. Product safety and legal claims

If you report a defective, unsafe, damaged, or injury-related Product issue, we may retain and use your information, photos, videos, order details, communications, and related records to investigate the issue, communicate with suppliers, handle insurance or legal matters, evaluate recalls or warnings, respond to regulators, and comply with legal obligations.

12. Retention

We keep order, transaction, customs, tax, accounting, fraud-prevention, safety, support, and legal records for as long as reasonably necessary for the purposes described in this Policy, including to complete orders, comply with legal obligations, resolve disputes, prevent fraud, maintain business records, and respond to product-safety or regulatory issues.


Marketing email subscription records are kept until you unsubscribe or withdraw consent, and for a reasonable period afterward to maintain suppression and compliance records. Retention periods may vary depending on the type of data, the reason for processing, legal requirements, and operational needs.


When data is no longer needed, we may delete, anonymize, or securely retain it as required or permitted by law.

13. Your privacy rights

Depending on your location and applicable law, you may have rights to:


  • request access to personal data we hold about you;

  • request correction of inaccurate personal data;

  • request deletion of personal data;

  • object to or restrict certain processing;

  • request data portability;

  • withdraw consent where processing is based on consent;

  • opt out of certain marketing, targeted advertising, sale, sharing, or profiling activities where applicable;

  • lodge a complaint with a supervisory authority.


To make a privacy request, contact us at info@cutawaypoint.com. We may need to verify your identity before responding. Some requests may be limited by legal, security, fraud-prevention, tax, accounting, customs, product safety, dispute, or operational requirements.

14. U.S. state privacy notices

Some U.S. state privacy laws may provide additional rights to residents of those states. Where applicable, we will provide required notices and choices, including opt-outs for sale, sharing, targeted advertising, or certain profiling activities. Advertising cookies, pixels, and similar technologies may be treated as sale, sharing, or targeted advertising under some privacy laws where they are enabled.


We do not knowingly sell personal data in exchange for money. We also do not knowingly collect or process personal data from children under 13.

15. Children

The Website is intended for adult customers aged 18 and older. We do not knowingly collect personal data from children under 13. If you believe a child has provided personal data to us, contact us so we can review and take appropriate action.

16. Security

We use reasonable technical, organizational, and administrative measures designed to protect personal data. However, no website, transmission, payment system, or storage system is completely secure. You are responsible for using secure devices, networks, passwords, and account practices.

17. Third-party links and services

The Website may link to or integrate with third-party services, including payment providers, Shopify services, social media, advertising platforms, review tools, and logistics tools. Third parties may process personal data under their own terms and privacy notices. We are not responsible for third-party privacy practices except where applicable law provides otherwise.

18. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be posted on the Website with an updated effective date. Changes apply as described in the updated policy and where permitted by law.

19. Contact

Privacy questions and requests may be sent to:


cutawaypoint / Meridiem35 Oy
Business address: PL 999, 42011 YRITYSLOKERO, Finland
Privacy email: info@cutawaypoint.com


 

 

20. AI-assisted content, automated tools, and communications

Some Website content, support content, translations, product descriptions, images, summaries, emails, or other communications may be created, edited, translated, summarized, enhanced, or reviewed with the assistance of artificial intelligence, automation tools, third-party software, or similar technologies.


We may use service providers to help draft, analyze, translate, summarize, or respond to customer communications, subject to applicable privacy obligations and our internal practices.