Register and Privacy Policy

This is a Register and Privacy Statement of the Palkes Avoin Yhtiö (2613436-5) Personal Data Act (§10 and §24) and the EU’s General Data Protection Regulation (GDPR). Created on 24.05.2018. Latest update 24.05.2018.

  1. Registrar

Palkes Avoin Yhtiö, Tavolantie 902, 09430 Saukkola, Finalnd

 

  1. The contact person responsible for the register

Kanerva Kilpelä, palkes@palkes.fi, +358 40 5704159

 

  1. The name of the registry

Palkes customer and marketing register

 

  1. Legal basis and the purpose of processing personal data

The legal basis for the processing of personal data is the EU’s general data protection regulation

– the consent of a person (documented, voluntary, individualized, aware and unambiguous)

– the legitimate interest of the controller (eg customer relationship)

The purpose of processing personal data is to communicate with customers, maintain customer relations, marketing,

Information is not used for automated decision making or profiling.

 

  1. Information content of the register

The information to be stored in the register is: the person’s name, position, company / organization, contact information (phone number, email address, address), information on subscribed services and their changes, billing information, other information related to customer relationships and ordered services.

 

  1. Regular sources of information

The information stored in the register is obtained from the customer, among others. via email, phone, social media, contracts, customer meetings and other situations where the customer delivers their information.

 

  1. Ordinary transfers of data and transfer of data outside the EU or EEA

We provide personal information to logistics and payment service to our partners to enable sales activities.

 

  1. Principles of registry protection

Careful handling of the registry is ensured and data processed by the information systems is adequately protected. The controller shall ensure that the information stored and any other information that is critical to the security of personal data is processed confidentially and only by the employees whose job description it belongs.

 

  1. The right of inspection and the right to demand correction

Everyone in the register has the right to check his / her data stored in the register and to demand that any incorrect information be corrected or incomplete information supplemented. If a person wishes to check or request correction of his / her record, the request should be sent in writing to the registrar. The controller may, if necessary, request the applicant to prove his identity. The controller is responsible for the customer within the time limit set in the EU Data Protection Regulation (usually within one month).

 

  1. Other rights related to the processing of personal data

A person in the register has the right to request the deletion of his / her personal data from the register (“the right to be forgotten”). Also, those who are registered have other rights under the EU’s general data protection regulation such as restricting the processing of personal data in certain situations. Requests should be sent in writing to the registrar. The controller may, if necessary, request the applicant to prove his identity. The controller is responsible for the customer within the time limit set in the EU Data Protection Regulation (usually within one month).