Smartium Oy (1984113-3)
Panuntie 4, 00610 Helsinki
2. Contact person for registration
3. Name of the register
4. Purpose of the register
The personal data collected will be used to:
To communicate with customers and suppliers and to maintain and develop customer relationships. For customer identification and access rights management.
5. Grounds for data collection and processing
Customer data is collected and processed with the customer’s consent, or in order to implement a contract with the customer.
The legal basis for processing personal data under data protection legislation is the legitimate interest of the controller in maintaining the customer relationship.
6. Data content of the register
The data stored in the register include: company name, business ID, name, position, contact information (phone number, e-mail address, address), website addresses, IP address of the network connection, information on ordered services, billing information, other information related to the customer relationship and ordered services.
7. Data retention period
Personal data will be kept for as long as necessary for the implementation of the contract with the customer or for the development of customer service.
8. Regulated sources of information
The data collected includes information on:
From the person himself/herself. From the person himself/herself, from registers held by public authorities to the extent permitted by law (e.g. ytj.fi). Data is also collected through the Google Analytics analytics tool.
9. Regular disclosures and transfers of data outside the EU or the European Economic Area
There is no regular transfer of data outside the company. Some of the external service or software providers used by the company may store data outside the EU or the European Economic Area.
If a user visiting our website does not want us to receive the above information through cookies, most browsers allow you to disable the cookie function.
The following cookies are used on the website:
- Google cookies: visitor tracking, analytics and marketing
Edit cookie settings
11. Protection of the register
Data is transferred over an SSL-secured connection.
Electronic data is protected by a username, password and two-step logon (MFA).
Access to the data is restricted to those people employed by the controller who require the data for their tasks.
12. Automatic decision making
No automated individual decisions (Article 22 of the EU GDPR) are taken.
13. Rights of the data subject
The data subject has the right to check what data relating to him or her have been recorded in the personal data file. A written request for inspection must be signed and sent to the person responsible for the register.
The right of inspection is free of charge and is exercised no more than once a year.
The data subject has the right to request the rectification or erasure of inaccurate or outdated data or the transfer of data from one system to another. They also have the right to restrict or object to the processing of their data in accordance with Articles 18 and 21 of the EU General Data Protection Regulation.
Data subjects have the right to withdraw their prior consent to the processing of their data or to lodge a complaint with a supervisory authority about the processing of their personal data.
Data subjects also have the right to object to the use of their data for direct marketing purposes.