Articles 13 and 14 of the EU General Data Protection Regulation (2016/679).
Date of preparation: 14.11.2023

For what purpose is personal data collected?

Personal data is processed for purposes related to managing and developing customer relationships, providing and delivering services, and invoicing services. Personal data is also processed for the purposes required to settle possible complaints and other claims.

In addition, personal data is processed for communications aimed at customers, such as for information and news purposes, as well as in marketing, as part of which personal data is also processed for purposes related to direct marketing and electronic direct marketing.

The customer has the right to refuse direct marketing aimed at him.

The controller processes the data himself and may use subcontractors acting on his behalf in the processing of personal data.

What information do we collect?

We collect information necessary for responding to contact requests (name, e-mail address, phone number, organization and/or any other information relevant to contact).

On what basis do we collect data?

The basis for collecting personal data is consent.

Where do we collect personal data from?

Personal data is collected from the registered person through various electronic contact channels.

To whom is the data transferred?

Personal data will not be disclosed to external parties, and collected personal data will not be disclosed or transferred outside the EU or the European Economic Area.

Secure storage of collected data

Materials containing personal data are stored in locked rooms, to which only designated and authorized persons have access due to their duties.

The database containing personal data is on a server/external hard drive, which is kept in a locked state, to which only designated and authorized persons have access due to their duties. The server is protected by an appropriate firewall and technical protection.

The company’s electronic systems and databases can only be accessed with separately issued personal user IDs and passwords. The registrar has limited access rights and authorizations to information systems and other storage platforms in such a way that the data can be viewed and processed only by the persons necessary for their legal processing.

The employees and other persons of the registrar are committed to observe the obligation of confidentiality and to keep secret the information they receive in connection with the processing of personal data.

How long is the material kept?

The information collected in the register is kept only for as long and to the extent necessary in relation to the original or compatible purposes for which the personal information was collected.

The need to store personal data is evaluated in three-year cycles. The information about the registered person is removed from the register within a year after the customer relationship of the registered person with the controller has been deemed to have ended, and the obligations and measures related to the customer relationship have been completed.

The controller evaluates the necessity of storing data regularly in accordance with its internal code of conduct. In addition, the controller takes all possible reasonable measures to ensure that personal information that is inaccurate, incorrect or outdated in relation to the purposes of the processing is deleted or corrected without delay.

Automatic decision making

No automatic decision-making takes place when processing personal data.

Rights of the registrant

The registered person has the right to withdraw the consent he has given when the processing of personal data is based on consent.

The registered person has the right to file a complaint with the Office of the Data Protection Commissioner, if the registered person considers that valid data legislation has been violated in the processing of personal data concerning him.

The registrant has the following rights according to the EU General Data Protection Regulation:
a) The registered person’s right to check information about himself.
b) The right of the registered person to correct his data.
c) The data subject’s right to delete his data.
d) The data subject’s right to restrict data.
e) The data subject’s right to transfer the data to another data controller.

If the registrant wishes to use the rights according to the data protection legislation, the registrant is asked to contact the data protection officer whose contact information is mentioned below.

Online analytics

The services below collect anonymized information about website visits without personal information.

• Google Analytics 4
• Google Ads
• Google Tag Manager
• Targeted marketing

Based on browsing the pages, we may do targeted advertising in the following services

• Facebook
• LinkedIn
• Instagram
• Google search
• Google display network
• YouTube

Register information

Zero Moment customer register

Registrar

Zero Moment Oy
2767435-5
Address: Eskolankatu 19, 53500, Lappeenranta
Telephone: +358 (0)40 529 5234
email: jaani@zeromoment.fi

Contact person

Jaani Väisänen
Address: Eskolankatu 19, 53500, Lappeenranta
Telephone: +358 (0)40 529 5234
email: jaani@zeromoment.fi