REGISTRY AND DATA PRIVACY NOTICE
This is the Registry and Data Privacy Notice of Valo Future Oy under the Personal Data Act (10 and 24 §) and the General Data Protection Regulation (GDPR) by EU. Latest changes have been made on 21st January 2022.
1. Data Controller
Valo Future Oy
Business ID: 3125186-5
Bulevardi 21
00180 HELSINKI
Tel: +358 40 8382220
www.valofuture.fi
2. Registry and Data Protection Representative
Tiitta Vaulos
Valo Future Oy
Bulevardi 21
00180 HELSINKI
firstname.lastname@valofuture.fi
3. Use of Registry and Data Collection
Collected personal data is used for marketing purposes, to improve services, to supply products and services, and to enable, maintain and improve customer relations.
4. Lawful Basis for Collecting and Processing Personal Data
According to the General Data Protection Regulation by the EU, the lawful basis for collecting and processing personal data is:
The consent of the data subject
• Contract where the data subject represents a party
• The law
• Controller's legitimate interests
5. Types of Personal Data Collected
Name of an organization, company ID, personal basic data (name, contact information, title, workplace).
6. Data Retention
Personal data is kept as long as it is needed for a contract enforcement with a client or to improve customer service.
7. Legal Collection of Personal Data
Personal data is collected from the data subjects themselves as they use our services via e-mail, phone, and social media, as well as from cookies, contracts, customer meetings and other situations, where customers hand out their personal data. Personal data can be updated by acquiring appropriate customer register update services from companies and public officers offering them.
8. Legal Sharing and Transferring of Data Outside the EU/EEA
As a rule, information is not shared outside of our organization. Some of our third-party service and program providers may retain information outside of the EU/EEA.
9. Use of Cookies
We use HTTP cookies on our website. Cookies are text files with small pieces of data sent to user’s computer. They are used to identify the user’s computer as the user uses a computer network. Cookies are used to recognize the users that often visit our website, and to improve their web browsing experience. Cookies do not harm the computers or files of the user.
In case the user visiting our website does not want to share the information mentioned above, most of the browsers offer the possibility to remove cookies. This usually happens through the browser settings.
10. Protection of Data Registry
The personal data stored in the data registry is kept confidential. Digital information is protected with firewalls and user credentials. Only those have the right to access the data registry who are in the service of the data controller and need the information to perform their tasks.
11. Automated decision-making
Automated decisions are not made (General Data Protection Regulation by the EU, article 22).
12. Rights of the Data Subject
The data subjects who have their information in the data registry have the right to request access to their personal data. A written and signed data subject access request must be sent to the data representative. By law, they also have the right to request correction and erasure of their personal data, object to processing their personal data, request restriction to processing their personal data, and request the transfer of their personal data to themselves or to a third-party.