Privacy policy

Privacy statement

We are committed to complying with the EU General Data Protection Regulation (2016/679 “GDPR”).

The purpose of the regulation is to increase the individual’s rights in the management and processing of their own personal data. According to the data protection regulation, the controller has an obligation to clearly inform the data subjects. This statement fulfills the obligation to inform.

General

In order for us to serve you to the best of our ability, it requires us to collect and process some information about you. We value your privacy and are committed to protecting it. This Privacy Statement contains information about what personal data we collect, the principles by which we process it, and what rights and influence options you have regarding your data. As a data controller, we especially handle the personal data of contact and other personnel of our client companies. Personal data is all information related to an identified or identifiable person, for example name, e-mail address, telephone number or job title.

We process your personal data in accordance with this privacy statement and applicable legislation, so we ask you to read this privacy statement carefully. We may also make updates to the privacy policy as our operations develop or legislation changes.

By using our services, website or contacting us, you agree that we process your personal data in accordance with this privacy policy.

1 Register name

Konepaja Häkkinen Oy’s customer register

2 Register administrator

Konepaja Häkkinen Oy’s company ID number 0361379-3

The controller in relation to the processing of personal data described in this privacy statement is Konepaja Häkkinen Oy (hereinafter also “Company” or “we”).

3 Register handlers

Only those employees of the registrar who have the right to process customer data as part of their work are entitled to use systems containing customer data. Each user has their own username and password.

4 Purpose of the register

We collect, store and process your personal data only for predefined purposes. The main uses are:

  • targeting our services to you;
  • performance of our contractual obligations;
  • to fulfill legal obligations and claims;
  • customer communication;
  • responding to contact requests; and
  • developing our business.

5 Personal data to be recorded in the register

We collect personal information about you mainly from you when contacting us or later when using our services. In the case of new customers, we may also collect information regarding prospects from LinkedIn, the online services of our potential customer companies or by using tools intended for new customer acquisition (e.g. Leadfeeder).

In addition to this, we may collect information from public sources and registers, such as the YTJ information service. We also collect information about our website’s visitors using the Google Analytics service, so that we can analyze and develop our website even better and more user-friendly.

Personal data is collected significantly through our website and the forms located through them. The customer data in use consists of customer data collected for the purposes of handling customer affairs, which in all cases are the customer’s name, email and phone number. During the customer relationship, information is also created and collected, mainly related to customer companies. We also use customer marketing tools to collect data. To produce customer marketing, the company uses different tools and software, all of which have data protection practices. To use customer marketing programs, the processor always requires a username and password (access).

6 Processing of personal data

We make sure that we always have a legal basis for processing your personal data. We may process your personal data on several different grounds. We process your data to execute the contract and fulfill legal obligations. When using subcontractors and service providers, we ensure that the confidentiality of personal data is maintained and that the data is also otherwise processed in accordance with the law.

We also process your personal data based on our legitimate interest, which is to provide our services and conduct and develop our business. We may also process some personal data based on your consent.

7 Disclosure of information

As a general rule, your personal data is processed by the personnel of our company when performing their duties. We may also outsource some processing of personal data, such as the information systems used to store and process personal data. In this case, we make sure, among other things, through agreements, that the confidentiality of your data is maintained and that the data is also otherwise processed in accordance with the law.

We may disclose information when required by law, court or competent authority. We may also disclose your information if we are involved in a business transaction.

In principle, your personal data will not be transferred outside the EU.

8 Storage of the register

We do not keep your personal data longer than is necessary for the purpose of their use or as required by contract or law. However, the retention periods of personal data may vary depending on the purpose of use and the situation.

9 Registry protection

Your data is stored on our service provider’s servers, which are protected in accordance with the general practices of the industry. The personal information we collect and process is kept confidential and is not disclosed to anyone other than those who need it in their work, or confidentially and limitedly to our customers based on service contracts. Access to your personal data is protected with user-specific codes, passwords and access rights.

10 Destruction of the Register

Documents containing customer data are properly destroyed after processing.

11 Rights of the data subject

The registered person has the right to check the information about him/her stored in the register free of charge. The registered person also has the right to demand the removal of his personal data from the register (see also the section “retention of the register”. If there are errors in the data, the registered person can submit a request for correction of the error to the Administrator of the register in writing. The registered person can also limit the use of his own data.

Withdrawal of consent

If we process your data based on your consent, you can withdraw your consent at any time by notifying us in writing by e-mail.

Access to data

The registered person has the right to receive confirmation from us as to whether we are processing the personal data in the register and concerning you, and to know what personal data concerning you we are processing. In addition, you have the right to receive additional information about the basis of the processing of your personal data.

The right to have errors corrected

The registered person has the right to request that we correct incorrect or outdated or otherwise incomplete personal data concerning you.

Ban is direct marketing

The registrant has the right to prohibit the use of data for direct marketing.

Right to object

The registered person can object to the processing of personal data if he feels that the personal data has been processed unlawfully.

The right to restrict processing

In certain situations, you have the right to demand that we limit the processing of your personal data.

The right to have the data transferred

If we have processed your data based on your consent or to fulfill a contract, you have the right to receive the data you have provided us electronically in a commonly used format so that the data can be transferred to another service provider.

The registered person has the right to prohibit the controller from processing information about him for direct advertising, distance sales and other direct marketing as well as market and opinion research. In cases of prohibition, you should contact the administrators of the register.

12 More information on data protection

The Registrar complies with the regulations and standards given for the storage of personal data and constantly checks and improves the practices related to the above-mentioned matters.

The obligation to provide information and the consequences of not providing it

Providing information is voluntary, especially for our potential customers. On our website, we usually ask potential customers for a name, phone number, email address and a short description of the need. Providing and processing personal data is to a certain extent mandatory, as we may need information to the extent that we can find out if we are prevented from receiving a new assignment.

Are cookies used on the website and what are they?

We use cookies on our website so that we can offer the best possible user experience to the website visitor. Cookies are short text files that the web server stores on the user’s terminal device. Cookies give us information about how users use our website. We may use cookies to develop our services and website, to analyze website usage, and to target and optimize marketing. The user of the website can give his consent or deny the use of cookies in the settings of his web browser. Most web browsers allow cookies automatically. Please note that blocking cookies may limit the functionality of our website.

Registrar

Contact information:

Konepaja Häkkinen Oy

Konekuja 4

21200 Raisio

+358207 813 410

jani.heikkila@konepajahakkinen.fi