Drafted on 23.8.2018
1. Name of the register
Name: Infrakit Group Oy
Address: Linnoitustie 4, 02600 Espoo, Finland
3. Contact person for the register
Name: Teemu Kivimäki, CEO
Address: Linnoitustie 4, 02600 Espoo, Finland
4. The purpose for the processing of personal data
Personal data will be collected and processed so that Infrakit can serve its customers who acquire products and/or services from Infrakit Group Oy.
Data will be processed to identify the Infrakit service users and to ensure that only authorised persons can access the service and only the parts of the services meant for them and that they can access only the information that is meant to be seen by them.
Data can also be used to implement the Infrakit service, for customer service and to convey service bulletins and information to users.
The collection and processing of personal data is always based on legislation, customer or service agreement, the legitimate interest of Infrakit Group Oy or the consent of the data subject.
5. The content of the register
For service users:
- Full name
- User name
- E-mail address
- Phone number
- Information on the usage of the Infrakit service, login dates
6. Regular sources of information
We collect personal data from the Users of the Infrakit Service, customer organisations and automatically on of the usage of the Service by the Users.
8. Regular destinations of disclosed data and transfers of data to countries outside the European Union or the European Economic Area
We may hand over your personal data for justified use in accordance with the applicable data protection laws and regulations. Infrakit Group Oy engages subcontractors to perform parts of the service. They may have access to personal data so that they can perform their duties but only to the extent required for their performance. Infrakit Group Oy has appropriate agreements with these parties.
Infrakit Group Oy may use the information also to perform, develop and market its own products and services.
We may also provide access to information to our subsidiaries or affiliated companies and other parties belonging to our group of companies or in conjunction with a sale or subscription of our shares.
We only transfer personal data outside the EU or EEA area in accordance with the applicable data protection laws.
If required by the applicable laws we may provide your personal data to authorities.
9. The principles how the data file/register is secured
All data will be stored electronically.
Information will be collected to Infrakit service database. Only administrators will have access to the database. Such access is protected with user right management. User interface will only show data that is necessary for the tasks of the respective person. The views of the user interface as well as the access rights have been defined based on role and user.
We will use appropriate technical and organizational means to secure the personal data from inappropriate access, accidental or unlawful destruction, amendment, distribution and transfer of personal data as well as from other unlawful processing.
10. Information storage time
We store your personal information according to the applicable laws and only as long as required for the purposes described in this data protection statement. When the purposes no longer exist, we will erase your data.
If you have not logged in to your registered account during the last 96 months we will erase your personal information including your user credentials from our data base. No one, not even you can thereafter reactivate your account and restore the information. We make observations on the usage of our services and may store information in anonymized form to our own data base.
Please note, that some of our services may include public interactive and communication elements, like ability to post comments and participate in discussion forums. Your user name and the content you post may remain there even if we remove your personal information and account. If you do not want to be identified based on your user name or content that you post, pay attention to the contents of the same.
11. What are your rights?
Right to inspect
You have the right to inspect what information related to you has been stored in the Infrakit personal data files. You can contact us to verify what personal information we process and the legal grounds for such processing. You also have right to request from us rectification or erasure of personal data.
You have right to object to our data processing or to restrict that as well as to have your personal data transferred to another system.
You have a right to unsubscribe from direct marketing messages, withdraw any consent that you have made and to request that we stop processing your personal data for direct marketing purposes. However, if you are our customer, we may still send you notifications concerning our services, such as information on changes or service failures and interruptions.
If you want to utilise your rights stated above please contact us via e-mail to our e-mail address email@example.com or use the contact addresses specified above. Users of the service will need to send the request from the e-mail address they have registered in the Infrakit service as their contact information and the response will only be sent to that e-mail address.
In addition to the rights described above you are entitled to make a complaint to the data protection authority, especially in the European Union country where you have your domicile or permanent work place or where the claimed breach of data protection regulation occurred. In Finland this authority is the data protection ombudsman.
12. Amendments to this data protection statement
Infrakit Group Oy may from time to time amend this data protection statement without prior notice to you. If the amendments are substantial, we will inform all users via their registered e-mail address.