All data related to an identified or identifiable person are personal data.
We use your personal data to comply with legal and contractual obligations as well as to provide you with offers, advice, and services.
What personal data we collect
We collect the personal data primarily straight from you either orally or in writing.
For example, through the website, we collect personal data, such as name and e-mail address. We also collect information that you provide us with such as messages you have sent us, e.g. feedback or a request in our digital channels.
The information may also be collected by the services we use.
In addition, we receive information from registers kept by the authorities, credit information, and the customer disruption register, as well as other reliable registers.
We may also collect information automatically when the user is using our services. This information includes:
- Information stored in the user's activity service, such as information stored based on the User's activity, as well as event information sent to statistics and marketing tools.
- User downloads in the service.
We also receive technical user information from our service, such as:
- Timestamps and logs related to the use of the service;
- Information about the devices used to access the service, including IP addresses and software versions. This information is obtained through the User's browsers and cookies.
- Klicks in the service and filled information in the forms.
- Marketing cookies for the targeted advertising
We do not combine or save this information together with personal data.
How do we use personal information?
We deal with personal data mainly for three purposes.
1. Providing the service
For managing contacts, we keep the contact information and bookkeeping about the topics of contacts, in order to offer the service to the User.
2. Improvement and exploration of the service
We may use personal data to improve the quality of service, resolve problems identified in the service, and develop the features of the service for users.
3. Marketing and communication
We may use personal data to send important information about the Service to the User. Personal data may also be used for the purposes of advertising, marketing, direct marketing, and personalized marketing directed at users. We may create general profiles of Users to provide better content and ads. This is based on our genuine interest in keeping Users up to date with our service and marketing new necessary products and services to our Users. The User has the right to prohibit direct marketing at any time.
Sharing personal data
We do not share personal data with third parties, apart from:
- IP-addresses and marketing cookies, that can’t be combined with the other personal data.
- When the service provides who we trust, offer services for us, and by our instructions. However, we supervise the personal data of the user in every situation.
- If we are participating in fusion, trade sale or selling of the business, or a part of it.
- When we sincerely believe, that giving the data is necessary. These cases can be: In order to protect our rights, protect the safety of the user or other customers, to investigate fraud, or fulfill the demands of the government.
We do not sell the personal data of the users to third parties.
Transferring personal data outside the EU/EEA
Mainly, we do not transfer the personal data of Users outside EU/EEA
Some of the statistics and marketing providers operate in the USA. When these offer us their services, we may have to transfer some of the data of the Users to the United States. These data may be IP-addresses for statistics, or data about e-mail, company, or name, for the e-mail marketing or sales system. In these situations, our service providers have adhered to offer privacy shields and promised to obey the Privacy Shield -contract.
Storing personal data
We strive to keep the personal information we hold accurate and up-to-date by deleting unnecessary information and updating outdated information.
Using personal data
Your data will only be processed by those of us or our partners who have the right to process personal information. We have ensured the security awareness and competence of our personnel through continuous training and up-to-date instructions.
Your personal information may be processed in a number of different information systems that are managed by either us or our partners.
User Privacy Rights
The User has the right to receive the personal data we hold about that User. The User has the right to access, correct, update, change, or delete personal data at any time. However, certain information is essential to meet the objectives set forth in this policy, and certain information may also be required by law. Therefore, the User may not delete such personal data.
The User has the right to object to certain data processing, such as profiling for marketing purposes. The User also has the right to restrict data processing to the extent required by applicable data protection law.
The User has the right, within the limits required by law, to the transferability of data, ie the right to receive his personal data in a structured, commonly used, machine-readable form and to transfer his personal data to another data controller.
The User can check their own personal data and correct or eliminate errors in them, as well as prohibit the processing of their personal data by contacting the company's customer service. Prohibitions and communications concerning the right of inspection must be made in writing and signed by post to address Aulis Lundell Oy, Tarrankuja 2, 08500 Lohja FINLAND, in person at the data controller or by e-mail to email@example.com. For privacy reasons, the company will ask the user to prove their identity.
Information considering children
Our service is not directed to children under 16 years old. If you notice that a child under 16 years old has been given us personal data, please contact us by using the contact information given in the section “Data controller”.
Cookies and similar techniques
We take security seriously. We take various measures to protect personal information from loss, misuse, and unauthorized access or disclosure. These measures will be taken taking into account the sensitivity of the data we collect, process, and store, as well as current technology.
Description of the file by Personal Data Act 10 § (523/99)
1. Data controller
Aulis Lundell Oy
2. Issues considering a register
Our customer service aspires to answer the questions and feedback considering the register within three working days. You can send an e-mail to firstname.lastname@example.org.
3. Name of the register
The customer and marketing register of Aulis Lundell Oy.
4. The purpose of the usage of personal data
The purpose of processing is to manage the customer relationship, to implement the rights and obligations of the customer and Aulis Lundell Oy, and to process personal data in accordance with the Personal Data Act for purposes related to online services, research activities, directing the Aulis Lundell Oy's advertising and/or direct marketing through customer data through the Aulis Lundell Oy's media and services without disclosing personal data to a third party.
5. The information content of the register
The register may contain the information of the customer as follows:
- E-mail address
- Company and status
- The address information of the company
6. Regular data sources of the register
The register is compiled from the Aulis Lundell Oy customer information system. Data is maintained using publicly available internet sources (for example the web page of the company) and other public sources. The register also contains information provided by the customer.
7. Regular disclosure of information
The data controller does not disclose customers' personal data to third parties, except when required by the Finnish authorities
8. Preserving and removing the data
We will keep your data for at least the time that the customer relationship has been active. After the termination of the business connection, the data preserving time depends on the information and the purpose.
The information may be removed by the demand of the customer or by the termination of the customer relationship.
We will keep your data for as long as they are needed for the purposes for which your data was collected and processed or required by laws and regulations.
This means that we keep your data for as long as necessary for the performance of a contract and as required by retention requirements in-laws and regulations. Where we keep your data for other purposes than those of the performance of a contract, such as for anti-money laundering, bookkeeping, and regulatory capital adequacy requirements, we keep the data only if necessary and/or mandated by laws and regulations for the respective purpose.
9. The principals of the protection of the register
Keeping your personal data safe and secure is at the center of how we do business. We use appropriate technical, organizational, and administrative security measures to protect any information we hold from loss, misuse, and unauthorized access, disclosure, alteration, and destruction.
10. The rights of the registered
The customer has the right to forbid the disclosure handling of information for direct and other marketing.