Privacy Statement

This is a combined register description and information notice for the Company’s customers, potential future customers, and website users, in accordance with the Personal Data Act and the EU’s General Data Protection Regulation (GDPR).

In this statement, we explain how we process your data. To manage the customer relationship, we collect necessary personal data, such as the customer’s name and contact details, as well as service usage data. We collect personal data from the data subject themselves, and potentially from other publicly available registers. We process your data as securely as possible. Please familiarise yourself with this information and contact us if you have any questions.

The purpose and legal basis for processing personal data

Personal data is primarily processed for the management, maintenance, and development of the customer relationship between the Company and the data subject. The basis for processing the data is the legitimate interest of the data controller, which refers to the Company’s business need to process data in the context of managing customer relationships or developing potential customer relationships. We process, among other things, the following personal data: name, telephone number, email address, and company name. Additionally, we may process IP addresses in connection with the use of the website, which helps us to identify users’ needs and improve our services. If we collect data from the website, we use an appropriate cookie banner where the user has the option to refuse cookies.

We only collect necessary data and ensure that its processing is justified, appropriate, and necessary for the defined purposes. Personal data is not used for automated decision-making or profiling without the explicit consent of the data subject.

Rights of the data subject

The data subject has the right to inspect what information concerning them has been stored in the personal data register. They can ask us to correct or complete the information.

Furthermore, the data subject has the right to demand the rectification or erasure of incorrect or outdated data, or the transfer of data from one system to another. They also have the right to restrict or object to the processing of their data in accordance with current data protection legislation.

The data subject has the right to withdraw their previously given consent for data processing or to lodge a complaint with a supervisory authority if they feel that we are processing personal data in breach of current data protection legislation. More information about the activities of the Data Protection Ombudsman can be found at: https://tietosuoja.fi Additionally, the data subject has the right to prohibit the use of their data for direct marketing purposes.

Requests concerning the data subject’s rights should be sent in writing or by email to the Company’s address provided above.

Data sources

Information from customers and potential customers is collected directly from them with their consent. Data is collected via the contact form on our website, during website visits, and in personal or digital interactions. Additionally, we may obtain information from publicly available sources, such as company websites or other business registries.

Potential disclosures of data

As a general rule, data is not disclosed to external parties. Data may be disclosed to third parties for the purpose of providing the service. The third party is only entitled to use the data to fulfil the assignment. Where possible, we have chosen secure data centres located in Europe to store your data. Some of the service providers we use may back up data outside the EU/EEA to the United States. Some of the aforementioned service providers may back up data outside the EU/EEA to the United States in certain situations, such as emergencies or for backup purposes. Backing up data ensures that it remains secure even in situations where the primary servers are out of order.

Registry protection measures

The data can only be accessed by pre-defined individuals who need to process the information in order to provide the service. They are bound by a non-disclosure agreement. We use trusted and verified operators as subcontractors. The databases and their backups are protected by technical means and are located in locked and guarded premises.

How long we keep your data

Personal data is processed for as long as is necessary for managing the customer relationship or other relevant connection. Statutory obligations, such as accounting and taxation requirements, may dictate a longer retention period for the data, in which case the data is not destroyed but retained for as long as the law requires. When the personal data is no longer needed for these purposes, it is securely deleted or anonymised in such a way that the individual can no longer be identified.

After the termination of the customer relationship, personal data is retained for a maximum of 10 years from the end of the customer relationship. Personal data may be retained for longer than this if applicable legislation or the Company’s contractual obligations require a longer retention period.

Rights reserved to make changes

We reserve the right to make changes to this privacy notice if required by changes in legislation or the Company’s internal policies. We review our notice regularly to ensure it complies with current data protection practices. Registered individuals will be notified of any material changes as appropriate, for example, by publishing an updated notice on our website. We recommend that registered individuals check the notice from time to time for any potential updates.

Cookies used by our site

If we use cookies on the site, we will inform you of this with a pop-up cookie notice. It is possible for the website visitor to refuse cookies via the cookie notice. A cookie is a small text file sent to and stored on the user’s computer, which allows the website administrator to identify frequent visitors to the site, facilitate visitors’ login to the site, and enable the compilation of aggregate data about visitors. With this feedback, we are able to continuously improve the content of our pages. Cookies do not harm users’ computers or files. We use them in such a way that we can provide our customers with information and services tailored to their individual needs.

Embedded or linked content from other sites

The website may contain embedded content or links to other sites (for example, videos, social media content, images, articles, a booking system, a form that opens on another page, etc.). Opening embedded content from other sites or navigating from our site to content on another site is comparable to the visitor visiting the third-party site themselves. These sites may collect data, use cookies, embed third-party tracking cookies, and monitor your interaction with the embedded content. We are not responsible for the content of these sites or their privacy practices.

If the site uses third-party cookies, you can read more about them in the cookie policy on the site and get more information on how you can refuse cookies in the cookie settings.