Luxury 2nd Finland, 31850 Koskioinen
2. Contact person responsible for the register
Markus Nihti, firstname.lastname@example.org, +358413173241
3. Name of the registry
The company's customer register, marketing register, stakeholder register, web service user register, member register, employee register, etc.
4. Legal basis and purpose of processing personal data
The legal basis for the processing of personal data under the EU General Data Protection Regulation is
- person's consent (documented, voluntary, individual, informed and unambiguous)
- the agreement where the registered party is a party
- law (what)
- performing a public task (based on), or
- the legitimate interest of the controller (eg customer relationship, employment relationship, membership).
The purpose of processing personal data is to communicate with customers, maintain customer relationships, marketing, etc.
Data is not used for automated decision making or profiling.
5. Content of the register
Data to be recorded in the register are: person's name, position, company / organization, contact information (phone number, e-mail address, address), website addresses, IP address of network connection, IDs / profiles in social media services, information on ordered services and their changes, billing information, others customer relationship and subscription services.
6. Regular sources of information
The information to be recorded in the register is obtained from the customer. messages sent via web forms, via email, telephone, social media services, contracts, customer meetings, and other situations where the customer discloses their information.
7. Regular disclosure of data and transfer of data outside the EU or the EEA
The information is not regularly disclosed to other parties. The information may be published to the extent agreed with the customer.
8. Principles of Registry Security
The registry is handled with care and the information processed by the information systems is properly protected. Keeping registry information on Internet servers ensures that the hardware and digital security of their hardware is properly managed. The Controller ensures that the stored data, as well as server access rights and other information critical to the security of personal data, is treated confidentially and only by the employees whose job description it contains.
9. Right of inspection and right to request the rectification of information
Every person in the register has the right to check the information stored in the register and to request the correction of any incorrect information or supplementation of incomplete information. If a person wants to check the information stored on him or her to claim correction, the request must be sent in writing to the controller. The controller may ask the applicant, if necessary, to prove his / her identity. The controller is responsible to the customer within the timeframe provided for in the EU Data Protection Regulation (as a rule within one month).
10. Other rights related to the processing of personal data
Rekisterissä olevalla henkilöllä on oikeus pyytää häntä koskevien henkilötietojen poistamiseen rekisteristä (“oikeus tulla unohdetuksi”). Niin ikään rekisteröidyillä on muut Rights under the EU General Data Protection Regulation such as limiting the processing of personal data in certain situations. Requests must be sent in writing to the controller. The controller may ask the applicant, if necessary, to prove his / her identity. The controller is responsible to the customer within the timeframe provided for in the EU Data Protection Regulation (as a rule within one month).