DATA CONTROLLER
Wanhan Neuvolan Majatalo Oy
Selkiöntie 24
76100 Pieksämäki
CONTACT PERSON FOR THE REGISTER
Wanhan Neuvolan Majatalo
Email: wanhan.neuvolanmajatalo@gmail.com
Phone: +358 45 189 0710
NAME OF THE REGISTER
Customer Data Register of Wanhan Neuvolan Majatalo
LEGAL BASIS AND PURPOSE OF PERSONAL DATA PROCESSING
The processing of personal data is based on the EU General Data Protection Regulation (GDPR). The legal bases for processing the data in the register are as follows:
1.Consent given by the data subject (Article 8, Paragraph 1, Point 1 of the Finnish Data Protection Act)
2.Communication based on the customer relationship with the data controller (Article 8, Paragraph 1, Point 5 of the Finnish Data Protection Act).
CONTENT OF THE REGISTER/strong>
The information stored in the register may include the following data:
• Name
• Position or role
• Company/Organization
• Contact details (phone number, email address, postal address)
• Website addresses
Consent will be requested separately for the use of third-party cookies if necessary.
REGULAR SOURCES OF DATA
The information for the register is mainly obtained from customers through various channels, such as:
• Messages sent via web forms
• Email
• Phone calls
• Social media
• Customer meetings
• Other situations where the customer provides their information
Contact details of individuals from companies and organizations may also be collected from public sources, such as websites, directory services, and other businesses.
TREGULAR DISCLOSURES OF DATA AND TRANSFER OF DATA OUTSIDE THE EU OR EEA
Data is not regularly disclosed to third parties.
Data may only be published to the extent agreed upon with the customer.
PRINCIPLES OF REGISTER SECURITY
The processing of the register is done with due diligence, and data processed through information systems is appropriately secured.
When data is stored on internet servers, both the physical and digital security of the hardware is ensured. The data controller ensures that stored data, server access rights, and other information critical to the security of personal data are handled confidentially. Only those employees whose duties require it are allowed to process the data.
RIGHT OF ACCESS AND RIGHT TO REQUEST CORRECTION OF DATA
The individual in the register has the right to check the data concerning them and to request correction of any incorrect data or completion of incomplete data.
Requests for inspection or correction should be submitted in writing to the data controller. The data controller may request proof of identity if necessary.
The data controller will respond to the request within the time frame specified in the EU Data Protection Regulation (generally within one month).
OTHER RIGHTS RELATED TO THE PROCESSING OF PERSONAL DATA
The individual in the register has the right to request the deletion of their data from the register (”right to be forgotten”).
The data subject also has other rights under the EU General Data Protection Regulation, such as the right to restrict the processing of personal data in certain situations. Requests should be sent in writing to the data controller. The data controller may request proof of identity from the requester if necessary.
The data controller will respond to the request within the time frame specified in the EU Data Protection Regulation (generally within one month).