Statement concerning private customers
Customer register 5.4.2021
General Data Protection Regulation (EU, 679/2016)
Data Protection Act (1050/2018)
1. Controller
Aimo Kortteen Konepaja Oy
Pohjolantie 2
FI-84100 Ylivieska
Phone +358 8 411 500
Business ID: 09135841
2. Contact person of the register
Terhi Korte, terhi.korte@murska.fi, +358 44 3700 626
c/o Aimo Kortteen Konepaja Oy
3. Rekisterin nimi
Aimo Kortteen Konepaja Oy’s customer register (hereinafter referred to as the register)
4. Purpose of the register
The information in the customer register is used for managing customer relationships and possible research purposes.
5. Legal basis for processing personal data
The processing of data subjects’ personal data is based on Article 6(1b) of the GDPR, which justifies the processing of personal data when processing is necessary for the performance of a contract to which the data subject is a party or for taking measures at the request of the data subject prior to entering into a contract.
or
Personal data may be processed when a person has provided Aimo Kortteen Konepaja Oy’s customer register with the personal data needed for pre-contractual measures or for concluding contracts (General Data Protection Regulation, 6a 1b).
6. Personal data categories of the register
Name and contact information and necessary identification information
7. Data content of the register
Basic information is stored in the customer register for starting a customer relationship, communication and invoicing:
- first name and surname
- street address, postal code and city
- telephone number
- e-mail address
- social security number
Information related to customer relationship management:
- maintaining the customer’s order information
- maintenance of information on the delivery and invoicing of goods
- sending marketing materials and product brochures
- after-sales
8. Collection of information
Personal data is collected in personal customer service situations, in connection with the use of chat services and from fair and customer feedback systems. We may also collect information on potential customer relationships from various public data sources, such as the Ministry of Agriculture’s environmental permit datasets. Information may also be obtained from other third parties. If the data to be processed has not been obtained from the data subject, the data subject has the right to receive information about where the data has been collected from (General Data Protection Regulation, 14a).
9. Disclosures and transfers of data to countries within or outside the European Union
Information may be disclosed confidentially for the use of our company’s resellers in Finland. Data may also be disclosed to EU countries and outside the EU, for example after trade fairs. Data is primarily disclosed to the retail unit in the country of which the customer is a citizen. In these cases, the transfer is necessary for the conclusion or performance of a contract between the controller, natural or legal person (General Data Protection Regulation, 49a 1c). List of countries where Aimo Kortteen konepaja Oy has business relationships https://murska.fi/yhteystiedot#retailers.
10. Safeguards when transferring data outside the EU
Aimo Kortteen Konepaja monitors the equivalence decisions of the European Union’s data protection and ensures the adequacy of data protection before transferring data outside the EU.
11. Data retention period
Personal data is stored for as long as the customer relationship is valid.
12. Principles of register protection
Manual materials are stored in locked premises. Personal data stored in and processed in information systems is protected by technical measures, and access rights to them are restricted only to those persons whose job description includes the processing of customer data.
13. Rights of the data subject
The data subject has the right to know what personal data has been stored about him or her when the data has been obtained from a source other than the data subject himself or herself and the data is used for the first time.
The data subject has the right to rectification of personal data. The rectification request can be made to the contact person of the register.
The data subject has the right to have their personal data removed from the customer register. In this case, the customer relationship ends.
The data subject has the right to restrict the processing of their personal data, for example to prohibit the use of their personal data for direct marketing.
The data subject has the right to transfer their personal data from one system to another if technically feasible. Otherwise, personal data may be printed out for the transfer and disclosed to the data subject for the transfer.
The data subject has the right to lodge a complaint with the data protection authority if he or she feels that his or her rights have been violated in the processing of personal data and the controller has not remedied the situation satisfactorily. Complaints can be made at www.tietosuoja.fi
The request for the processing of personal data must be in writing. A signed request can be submitted personally to the contact persons of the register.