This is Insinor Oy’s register and data protection statement in accordance with the Personal Data Act (10, 24§) and the EU General Data Protection Regulation (GDPR). Established on 25.10.2023.
Insinor Oy, Ilmarinkuja 3, 45100 Kouvola, Finland
Contact person responsible for the register
Tanja Pulkka, firstname.lastname@example.org
Name of the register
Customer register of Insinor Oy
Purpose of the register
The personal data stored in the register is processed in accordance with the requirements of Section 8 of the Personal Data Act for the management of Insinor Oy’s customer relations. The data in the customer register is used for the provision of services, marketing, maintenance and management of customer relations, and communication between the register keeper and the data subject in connection with projects or contracts.
Data stored in the register
The information stored in the register includes: company information, contact name and contact details (name, title, telephone number, email address), customer history such as contracts, orders and billing issues, and information on the use of electronic services, such as information collected by cookies. The data will be kept for the duration of the customer relationship and for as long as deemed necessary to establish the rights and obligations of the controller and the customer company after the customer relationship.
Regular sources of information
The information in the customer register is obtained through the form on the website, by e-mail, by telephone, from customer meetings, contracts, social media services and other situations where the customer or customer company discloses their data, as well as from general public registers.
Regular disclosures and transfers of data outside the EU or EEA
Data are not regularly disclosed to third parties or other entities and are not transferred outside the borders of Finland. Data may be published to the extent agreed with the customer. If necessary, the data may be disclosed to the authorities as required by app
Principles of protection of the register
The processing of the register is carried out with due care.The data is treated confidentially and is properly protected. The data in the register is handled with the care required by the Personal Data Act. Obsolete data will be deleted at the end of the retention period.
Right of access and right to request correction or transfer of information
Every person in the register has the right to check the data recorded in the register and to request the correction of any inaccurate data or the completion of incomplete data. If a person wishes to check or request the rectification of data stored about him or her, the request must be sent in writing to the controller. The controller may, if necessary, ask the applicant to prove his or her identity. The controller will reply to the customer within the time limit laid down in the EU General Data Protection Regulation (as a general rule, within one month).
Other rights related to the processing of personal data
A person in the register has the right to request the erasure of personal data concerning him or her from the register (“right to be forgotten”). Data subjects also have other rights under the EU General Data Protection Regulation, such as the restriction of the processing of personal data in certain circumstances. Requests should be sent in writing to the controller. The controller may, if necessary, ask the applicant to prove his or her identity. The controller will respond to the customer within the time limits set by the EU GDPR (as a general rule, within one month).