Privacy policy

1. Registrars

Smartium Oy (1984113-3)
Metallimiehenkuja 10
02150 Espoo
[email protected]

2. Contact person for registration

Samuli Jokipaltio
[email protected]

3. Name of the register

Smartium asiakasrekisteri

4. Purpose of the register

The personal data collected will be used to:

To communicate with customers and suppliers and to maintain and develop customer relationships. For customer identification and access rights management.

5. Grounds for data collection and processing

Customer data is collected and processed with the customer’s consent, or in order to implement a contract with the customer.

The legal basis for processing personal data under data protection legislation is the legitimate interest of the controller in maintaining the customer relationship.

6. Data content of the register

The data stored in the register include: company name, business ID, name, position, contact information (phone number, e-mail address, address), website addresses, IP address of the network connection, information on ordered services, billing information, other information related to the customer relationship and ordered services.

7. Data retention period

Personal data will be kept for as long as necessary for the implementation of the contract with the customer or for the development of customer service.

8. Regulated sources of information

The data collected includes information on:

From the person himself/herself. From the person himself/herself, from registers held by public authorities to the extent permitted by law (e.g. ytj.fi). Data is also collected through the Google Analytics analytics tool.

9. Regular disclosures and transfers of data outside the EU or the European Economic Area

There is no regular transfer of data outside the company. Some of the external service or software providers used by the company may store data outside the EU or the European Economic Area.

10. Use of cookies

We use cookies on our website. A cookie enables the website operator to identify visitors who visit the website frequently. This feedback allows us to continuously improve the content of our website.

If a user visiting our website does not want us to receive the above information through cookies, most browsers allow you to disable the cookie function.

11. Protection of the register

Data is transferred over an SSL-secured connection.

Electronic data is protected by a username, password and two-step logon (MFA).

Access to the data is restricted to those people employed by the controller who require the data for their tasks.

12. Automatic decision making

No automated individual decisions (Article 22 of the EU GDPR) are taken.

13. Rights of the data subject

The data subject has the right to check what data relating to him or her have been recorded in the personal data file. A written request for inspection must be signed and sent to the person responsible for the register.

The right of inspection is free of charge and is exercised no more than once a year.

The data subject has the right to request the rectification or erasure of inaccurate or outdated data or the transfer of data from one system to another. They also have the right to restrict or object to the processing of their data in accordance with Articles 18 and 21 of the EU General Data Protection Regulation.

Data subjects have the right to withdraw their prior consent to the processing of their data or to lodge a complaint with a supervisory authority about the processing of their personal data.

Data subjects also have the right to object to the use of their data for direct marketing purposes.