Registry and Data Privacy Notice


This is the Registry and Data Privacy Notice of Valo Future Oy under the Personal Data Act (10 and 24 §) and the General Data Protection Regulation (GDPR) by EU. Latest changes have been made on 21st January 2022.

1. Data Controller

Valo Future Oy
Business ID: 3125186-5
Bulevardi 21
Tel: +358 40 8382220

2. Registry and Data Protection Representative

Tuija Wikström
Valo Future Oy
Bulevardi 21

3. Use of Registry and Data Collection

Collected personal data is used for marketing purposes, to improve services, to supply products and services, and to enable, maintain and improve customer relations.

4. Lawful Basis for Collecting and Processing Personal Data

According to the General Data Protection Regulation by the EU, the lawful basis for collecting and processing personal data is:
The consent of the data subject
• Contract where the data subject represents a party
• The law
• Controller's legitimate interests

5. Types of Personal Data Collected

Name of an organization, company ID, personal basic data (name, contact information, title, workplace).

6. Data Retention

Personal data is kept as long as it is needed for a contract enforcement with a client or to improve customer service.

7. Legal Collection of Personal Data

Personal data is collected from the data subjects themselves as they use our services via e-mail, phone, and social media, as well as from cookies, contracts, customer meetings and other situations, where customers hand out their personal data. Personal data can be updated by acquiring appropriate customer register update services from companies and public officers offering them.

8. Legal Sharing and Transferring of Data Outside the EU/EEA

As a rule, information is not shared outside of our organization. Some of our third-party service and program providers may retain information outside of the EU/EEA.

9. Use of Cookies

We use HTTP cookies on our website. Cookies are text files with small pieces of data sent to user’s computer. They are used to identify the user’s computer as the user uses a computer network. Cookies are used to recognize the users that often visit our website, and to improve their web browsing experience. Cookies do not harm the computers or files of the user.

In case the user visiting our website does not want to share the information mentioned above, most of the browsers offer the possibility to remove cookies. This usually happens through the browser settings.

10. Protection of Data Registry

The personal data stored in the data registry is kept confidential. Digital information is protected with firewalls and user credentials. Only those have the right to access the data registry who are in the service of the data controller and need the information to perform their tasks.

11. Automated decision-making

Automated decisions are not made (General Data Protection Regulation by the EU, article 22).

12. Rights of the Data Subject

The data subjects who have their information in the data registry have the right to request access to their personal data. A written and signed data subject access request must be sent to the data representative. By law, they also have the right to request correction and erasure of their personal data, object to processing their personal data, request restriction to processing their personal data, and request the transfer of their personal data to themselves or to a third-party.