PRIVACY POLICY
TABLE OF CONTENTS
18.3.2024
Data controller
Juuriharja Consulting Group Oy
Runeberginkatu 61, 00260 Helsinki
info@juuriharja.fi
Contact person
Juuriharja Consulting Group Oy
Erika Heiskanen, CEO, partner
Runeberginkatu 61, 00260 Helsinki
+358 40 7466798
erika.heiskanen@juuriharja.fi
Name of register
Juuriharja Consulting Group Oy:n markkinointi- ja asiakasrekisteri
Purpose of personal data processing
The purpose of the register is to maintain Juuriharja Consulting Group Oy’s marketing and customer database. The data may be used for marketing, customer communication, customer relationship management, administration, and development, as well as for analysis and statistics. Personal data is processed within the limits permitted and required by the applicable personal data legislation.
Contents of the register
The register may contain the following information about users:
- First and last name
- Email address
- Phone number
- Company name
- Title or profession
- Data related to website usage (e.g., form submission details)
- Information on marketing preferences and restrictions
Regular sources of data
The register is compiled from Juuriharja Consulting Group Oy’s customer data system, data collected via the website, publicly available internet sources, and other public records.
Regular disclosures of data
No data is disclosed outside of Juuriharja Consulting Group Oy. However, due to the technical implementation of data processing, some data may be physically stored on external subcontractors' servers or equipment, where they are processed through technical connections.
Transfer of data outside the EU or EEA
No regular disclosures of data to third parties. No transfers of data outside the EU or EEA.
Principles of register protection
A. Manual data
Manual records and data are stored in locked premises.
B. Digitally processed data
Data is stored in IT systems protected by technical safeguards. Servers are located in locked and monitored premises.
Right of access
Registered individuals have the right to access their personal data stored in the register and to request copies of this data. Requests must be made in writing and addressed to the person responsible for data matters.
Right to request data correction
The data controller shall correct, delete, or supplement any inaccurate, unnecessary, incomplete, or outdated personal data either proactively or upon the request of the registered individual. To request a correction, the individual should contact the person responsible for the register.
For any inquiries, please contact the data controller.