Processing of Personal Data for Customers, Customer Representatives, and Website Visitors of Axitare Oy
Controller and Data Protection Officer
Data Protection Officer:
phone. +35840 846 8403
For what purposes and on what basis do we process your data?
The purpose of processing personal data is to manage contractual relationships, communication, information sharing, and the delivery and improvement of our services.
The legal basis for processing personal data is our legitimate interest in the context of a contractual relationship or the preparation of a possible contract, or the execution of a contract.
Electronic direct marketing is based on your consent. The data is not used for automated decision-making or profiling.
What personal data do we process?
- Email address
- Phone number
- Company/organization you may represent
- Your position in the company or organization/job title
- Communication with you IP address if you contact us through the contact form
Regular data sources
We primarily collect your personal data from you, including messages sent via web forms, email, phone calls, social media services, contracts, and customer meetings. We may also receive information from the company or organization you represent.
Regular Disclosures of Data and Transfer of Data Outside the EU or EEA
We may disclose your personal data to our partners where permitted by law, such as billing-related matters. Additionally, we may disclose personal data to authorities as required by law.
We do not transfer your data outside the EU/EEA.
Principles of register protection
We handle registry data with care, and information processed through information systems is appropriately protected. When registry data is stored on internet servers, the physical and digital information security of the equipment is properly taken care of. We store your personal data in systems that are protected by firewalls, personal user rights, passwords, and other industry-standard technical and organizational means.
We ensure that personal data is processed confidentially and only by employees whose job description includes such processing.
How long do we retain your data?
We retain personal data for as long as necessary for the purposes of processing personal data or to comply with our legal obligations. We retain the personal data of our customers and customer representatives as long as the customer relationship is in force.
We regularly assess the necessity of data retention and delete or anonymize data when it is no longer needed for the purpose for which it was collected.
What rights do you have?
If you want to exercise your rights, please contact us (contact details at the beginning of this document).
Right to access to your data
You have the right to receive confirmation from us about whether we process personal data concerning you. You also have the right to access your personal data and information about the processing of your personal data as required by the data protection regulation.
When you exercise your right of access to data, we will provide you with a copy of the personal data we process. If you request multiple copies, we may charge a reasonable fee based on administrative costs.
Right to rectify data
You have the right to request us to correct inaccurate and incorrect data without undue delay. You also have the right to have incomplete personal data completed by providing additional information.
Right to Erasure of Data
You have the right to request us to delete personal data concerning you without undue delay if:
- your personal data is no longer needed for the purposes for which it was collected or otherwise processed;
- you withdraw the consent on which the processing is based, and there is no other legal basis for the processing of your data;
- you object to the processing of your personal data on personal grounds, and there are no overriding legitimate grounds for the processing;
- we have processed your personal data unlawfully; or
- your personal data must be deleted to comply with a statutory obligation applicable to us.
The right to restrict processing
You have the right to restrict the processing of your personal data so that your data can only be processed with your consent or for the establishment, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person if:
- you dispute the accuracy of your personal data, in which case processing will be restricted for the time necessary to verify the accuracy of the data;
- we process your personal data unlawfully, and you oppose the deletion of your personal data and request the restriction of their use instead;
- we no longer need your personal data for the purposes of processing, but you need them for the establishment, exercise, or defense of legal claims; or
- you have objected to the processing of your personal data on grounds related to your particular situation, and it has not yet been determined whether our legitimate grounds override yours.
The right to transfer data from one system to another
You have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format and the right to transfer such data to another controller if:
- we process data automatically; and
- processing is based either on your consent or is necessary for the performance of a contract between us or for taking steps at your request prior to entering into a contract.
The right to transfer data from one system to another is limited to processing that does not adversely affect the rights and freedoms of others.
The right to object to the processing of personal data
You have the right to object to the processing of your personal data based on our legitimate interest on grounds relating to your particular situation.
The right to withdraw consent
You have the right to withdraw your consent to the processing of your personal data at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
Right to Lodge a Complaint with the Supervisory Authority
You have the right to lodge a complaint with the Data Protection Ombudsman if you believe that your rights under data protection regulations have been violated. In Finland, the supervisory authority is the Data Protection Ombudsman (www.tietosuoja.fi).