Privacy policy
This is the privacy policy and register description of Hion Digital Oy in accordance with the Finnish Personal Data Act (Sections 10 and 24) and the EU General Data Protection Regulation (GDPR). The privacy policy was drafted on 30th September 2019 and updated on 18th April 2023.
1. Data Controller
Hion Digital Oy (also operating under the trade name Geniem Oy)
Sumeliuksenkatu 18 B, 33100 Tampere
info@hiondigital.com
2. Contact Person for the Register
Panu Ervamaa
info@hiondigital.com
3. Register Name
Hion Digital Oy’s customer register, marketing register, and user register for the web service.
4. Legal Basis and Purpose of Processing Personal Data
The legal basis for processing personal data in accordance with the EU General Data Protection Regulation is the data controller’s legitimate interest.
The purpose of processing personal data is to maintain contact with customers, manage customer relationships, and conduct marketing activities.
The data is not used for automated decision-making or profiling.
5. Content of the Register
The data stored in the register includes: the person’s name, company/organization, contact information (phone number, email address, address), website addresses, IP address of the internet connection, information about ordered services and any changes to them, billing information, and other information related to customer relationships and ordered services.
We process the data for as long as we need it for the purpose of the register. We delete unnecessary personal data from the register every two years.
6. Regular Sources of Data
The data to be recorded in the register is obtained from the customer through, for example, messages sent via web forms, email, phone calls, social media services, contracts, customer meetings, and other situations in which the customer provides their information.
7. Regular Disclosures of Data and Transfer of Data Outside the EU or EEA
Data is not regularly disclosed to other parties. Information may be published to the extent agreed with the customer.
Data may also be transferred outside the EU or EEA by the data controller. We regularly use the following service providers for data processing:
- Pipedrive
- Leadoo
- Teamtailor
8. Principles of Register Security
In the processing of the register, care is taken, and the data processed using information systems is appropriately secured. When register information is stored on internet servers, the physical and digital security of their hardware is appropriately ensured. Hion Digital Oy ensures that stored data, access rights to servers, and other information critical to the security of personal data are treated confidentially and only by those employees whose job description includes it.
9. Right to Review and Request Correction of Information
Every person in the register has the right to check the information stored about them in the register and request the correction of any incorrect information or the completion of incomplete information. If a person wants to check the information about them stored in the register or request the correction of the information, the request should be sent in writing to the data controller. The data controller may, if necessary, ask the requester to prove their identity. The data controller will respond to the customer within the time frame set by the EU General Data Protection Regulation (usually within one month).
10. Other Rights Related to the Processing of Personal Data
A person in the register has the right to request the deletion of their personal data from the register (“the right to be forgotten”). Similarly, data subjects have other rights under the EU General Data Protection Regulation, such as the right to restrict the processing of personal data in certain situations. Requests should be sent in writing to the data controller. The data controller may, if necessary, ask the requester to prove their identity. The data controller will respond to the customer within the time frame set by the EU General Data Protection Regulation (usually within one month).