Privacy policy

(description updated on May 11.06.2020, XNUMX)

1. Registrar

Grafinet Oy
Business ID: FI08181248
Koivuhaantie 16, FI-01510 Vantaa, Finland
Phone: 0404 177 331

2. Name of the register

Grafinet Oy's customer register based on the customer's customer relationship and other relevant connection (“Grafinet-asiakasrekisteri ")

3. Purpose of personal data

Personal data is processed for customer relationship and other business-related relationships, as well as for marketing and customer communications, which can also be implemented electronically and in a targeted manner.

Personal data may be processed as permitted by applicable law Grafinet Oy carefully selects partners for marketing purposes, including direct marketing and distance selling. Disclosure of information to partners may, in principle, only take place for purposes which support the operation of the register and where the purpose for which the information is used is not incompatible Grafinet Oy's uses.

The user can withdraw his consent at any time.

4. Content of the register

The register can process the following information about all registrants:

  • First and last name
  • company information
  • contact information (postal address, telephone number, e-mail address)
  • the time and method of starting and ending the customer relationship and / or business relationship
  • direct marketing authorizations and prohibitions
  • information on the use of electronic services and content (eg subscribing to newsletters)

5. Regular sources of information

Personal data concerning the data subject are collected from the data subject himself / herself, from various services used by the data subject (e.g. the website www.grafinetoy.fi, as well as Grafinet Oy's social media channels) and in connection with various marketing measures such as marketing lotteries and competitions and events.

Personal information may also be collected and updated Grafinet Oy's other registers, Grafinet From the registers of Oy's partners and from authorities and companies providing services concerning personal data.

6. Disclosure and Transfer of Information

At the discretion of the controller, the data may be disclosed within the limits permitted and required by the legislation in force at the time, e.g. Grafinet Oy's partners, unless the registrant has refused to disclose the information. Disclosure of information can, in principle, only take place for purposes that are supportive Grafinet Oy's customer register and where the purpose of the information is not incompatible Grafinet Oy's uses.

The information may also be disclosed in accordance with the requirements of the competent authorities or other bodies, in accordance with the legislation in force, and for historical or scientific research, provided that the information has been converted into an unrecognizable form. Information may be disclosed to purchasers in connection with mergers, provided that: Grafinet Oy sells or otherwise arranges its business.

The data may be transferred to the controller's selective partners who process the data on behalf of the controller, on the basis of a cooperation agreement between the parties. In this case, the data processor does not have the right to process the transferred data on its own behalf, in its own personal registers. As a general rule, data will not be transferred outside the territory of the Member States of the European Union or the European Economic Area unless necessary for the purposes of the processing of personal data or the technical implementation of the processing, in which case the transfer complies with personal data law. Grafinet Oy may transfer the information contained in the register to its own direct marketing registers after the end of the customer relationship and business relationship.

7. Registry protection

The electronically processed information contained in the register is protected by firewalls, passwords and other technical means generally accepted in the information security industry. Manually maintained materials are located in premises that are blocked from unauthorized access. Only identified employees of the controller and the companies acting on its behalf and for its account shall have access to the information contained in the register with the right of access granted by the controller.

8. Right to inspect, prohibit and correct

The data subject has the right under the Personal Data Act to check what information about him or her has been stored in the register. At the request of the data subject, we will make the necessary corrections and additions to the personal data or delete data that is incorrect, unnecessary, incomplete or out of date for the purpose of the processing. The information is checked and updated by contacting our customer service. The request must be in writing and signed. The data subject has the right to prohibit the processing and disclosure of his / her data for direct advertising, distance selling and other direct marketing, as well as market and opinion research, by contacting our customer service.

9. Amendment of the Privacy Statement

Grafinet Oy is constantly developing its business and therefore reserves the right to change this data protection statement by announcing it in the services. Changes can also be based on changes in legislation. Grafinet Oy recommends that registrants read the contents of the privacy statement regularly.