1. Data Controller

2. Person Responsible for Register Matters

3. Data Protection Officer

4. Purpose of the Register

The personal data collected is used for:
Customer identification and access rights management. Fulfilling orders of registered users and maintaining and developing customer relationships.

5. Legal Basis for Data Collection and Processing

Customer data is collected and processed with the customer’s consent or for the performance of a contract with the customer.

6. Data Content of the Register

Company name, Business ID, Email address, Phone number, Contact person’s name

7. Data Retention Period

Personal data is retained for as long as necessary for the performance of the contract with the customer or for the development of customer service.

8. Regular Data Sources

Data is collected in the register from:
The individual themselves. Registers maintained by authorities within the limits permitted by law (e.g., ytj.fi).
Data is also collected using the Google Analytics analytics tool.
Data is also collected through the contact form.

9. Regular Disclosure of Data and Transfer of Data Outside the EU or European Economic Area

Data is not regularly disclosed outside the company. Some of the external service or software providers used by the company may store data outside the EU or European Economic Area.

10. Use of Cookies

We use cookies on our site. Cookies are small text files sent to and stored on the user’s computer, which enable the website administrator to identify frequent visitors, facilitate user login to the site, and compile aggregate information about visitors. This feedback enables us to continuously improve the content of our site. Cookies do not harm users’ computers or files. We use them to provide our customers with information and services tailored to their individual needs. If a user visiting our site does not wish us to obtain the aforementioned information through cookies, most browsers allow the cookie function to be disabled.

This is usually done through the browser settings. However, it is important to note that cookies may be necessary for the proper functioning of some of the pages we maintain and services we offer.

11. Protection of the Register

Data is transferred over an SSL-secured connection.

Electronic data is protected by a firewall, usernames, and passwords.

Access to the data is limited to those persons employed by the data controller who require the data for their duties.

12. Automated Decision-Making

Automated individual decisions (Article 22 of the EU General Data Protection Regulation) are not made.

13. Rights of the Data Subject

The data subject has the right to verify what information concerning them has been stored in the personal data register.

A written inspection request must be sent signed to the person responsible for register matters. The right of inspection is free of charge when exercised at most once per year.

The data subject has the right to request the correction or deletion of incorrect or outdated information or the transfer of data from one system to another.

They also have the right to restrict or object to the processing of their data in accordance with Articles 18 and 21 of the EU General Data Protection Regulation. The data subject has the right to withdraw previously given consent for data processing or to lodge a complaint with the supervisory authority regarding matters related to the processing of their personal data.

The data subject also has the right to prohibit the use of their data for direct marketing purposes.

The data subject also has the right to prohibit the use of their data for direct marketing purposes.