1. The controller
Bevenic Group Oy
For all matters concerning the register, contact:
2. Data subjects
Bevenic Group Oy’s customers and potential customers who have requested further information and/or an offer for our services. Website users.
3. Purpose of use of personal data
The personal data of customers are processed for the purposes of processing orders and commissions, marketing products and services, developing services, customer surveys, contacts, billing, collection, reporting and other activities related to the management of the customer relationship.
4. Lawful basis for processing personal data
The controller processes personal data on the basis of a contract with a customer for the performance of the contract or for pre-contractual measures. The processing of personal data for customer relationship management and marketing purposes is possible on the basis of the controller’s legitimate interest in the customer relationship.
5. Personal data to be recorded in the register (only the data that are processed are listed here)
6. Regular data sources
Customer data is normally obtained from the customer himself.
7. Regular data disclosures
The data will not be disclosed for marketing purposes outside Bevenic Group Oy. We have ensured that all our service providers comply with data protection legislation. We regularly use the following service providers:
- Zoner Oy, website hosting, Finland
- Google Analytics – Google LLC, USA
- We may disclose information to a collection agency if it is necessary to monitor payment.
8. Duration of processing
- As a general rule, personal data will be processed for two years from the date of the last offer or invoice.
- For website visitors, data will be processed for two years.
Please note that the controller may have a legal or other right not to delete the requested data. The data controller is obliged to keep the accounting records for the period specified in the Accounting Act (Chapter 2, Section 10) (10 years). Therefore, accounting records cannot be deleted before the expiry of this period.
9. Transfer of data outside the EU
10. Automated decision-making and profiling
We do not use data for automated decision-making or profiling.
11. Register security basics
Personal data is confidential. Electronic registers are protected by firewalls, usernames and passwords. Bevenic Group Ltd uses SSL (Secure Sockets Layer) encryption. SSL encryption (https) is designed to make the data transmitted unreadable to anyone other than us.
Personal data on paper is stored in a locked room with smoke detectors.
What is a cookie?
13. Rights of the data subject
The data subject has the following rights, the exercise of which should be requested at the following address: firstname.lastname@example.org
Right of access
The data subject may check the personal data we have stored.
Right to rectification
The data subject may request the rectification of inaccurate or incomplete data concerning him/her.
Right to object
The data subject may object to the processing of personal data if he or she considers that the personal data have been processed unlawfully.
Direct marketing ban
Data subjects have the right to object to the use of their data for direct marketing.
Right of withdrawal
The data subject has the right to request the erasure of data if the processing is no longer necessary. We will process the request for erasure, after which we will either delete the data or provide a reasoned justification why the data cannot be deleted.
Withdrawal of consent
Where the processing of personal data concerning a data subject is based solely on consent, and not, for example, on customer or membership, the data subject may withdraw consent.
The data subject may appeal against the decision to the Data Protection Ombudsman
The data subject has the right to request that we restrict the processing of the disputed data until the matter is resolved.
Right of appeal
The data subject has the right to lodge a complaint with the Data Protection Ombudsman if he or she considers that we are in breach of the applicable data protection legislation when we process personal data.
Contact the Data Protection Ombudsman: www.tietosuoja.fi/fi/index/yhteystiedot.html