PRIVACY POLICY
​
​
This is the Privacy Policy and Data Protection Statement in accordance with Jyki Group Oy's Personal Data Act (Sections 10 and 24) and the EU General Data Protection Regulation (GDPR). Prepared on 28.05.2021. Last modified: 28.05.2021.
-
REGISTRAR
Jyki Group Oy
Jykintie 10, 35400 Längelmäki
2. THE REGISTRAR RESPONSIBLE FOR THE REGISTER
Jyki Group Oy
+358 010 202 2400
3. NAME OF THE REGISTER
Privacy statement
In this privacy statement, we describe how we collect and process personal information on the Jyki Group Oy (“Jyki Group Oy” or “we”) website.
We are committed to protecting the privacy of users of the Site in accordance with applicable law. If you do not find the information you are looking for on this page, you can contact us by email. Contact information can be found under "Who can I contact" on this page.
Legal basis for the processing of personal data
Jyki Group Oy collects and processes personal data in order to produce and deliver its services and the obligations arising therefrom, as well as to fulfill its obligations arising from legislation. In addition, Jyki Group Oy processes personal data on the basis of a legitimate interest in order to maintain and develop its business and services.
Jyki Group Oy collects and processes personal data in order to manage and develop customer communications, customer and service relationships. The User may use the Services provided by Jyki Group Oy; the services of Jyki Group Oy or selected third parties may be marketed to the user in accordance with the user's approval; and Jyki Group Oy may develop the Services and the user experience of the website by collecting information, cookies and other analysis techniques.
Processing of personal data
Our operations are based on trust and understanding with the customer and all stakeholders. We respect your choice of data processing and act in accordance with best practices to keep your privacy protected.
All information you provide to us will remain confidential. It is of paramount importance to us that our customers and other stakeholders understand and receive transparent information about how we use their personal information.
Processing of personal data
In our operations, we follow the following principles of personal data processing:
Legality, reasonableness and transparency
There must always be a legal basis for the processing of personal data on the basis of which the data are processed. In addition, personal data is always processed appropriately and transparently for you.
Intended use
Personal data is collected for a specific, explicit and legitimate purpose and may not be further processed in a way incompatible with those purposes.
Data minimization
Jyki Group Oy only collects and processes personal data that is needed to produce a certain service, product or other activity.
Punctuality
Jyki Group Oy verifies by reasonable measures the deletion or correction of inaccurate or incorrect personal data.
Limitation of storage
Jyki Group Oy deletes unnecessary personal data without undue delay.
Integrity and confidentiality
Personal data will be processed with due regard for security. The data is protected against unauthorized and unlawful processing and against accidental loss, destruction or damage.
Obligation to prove
Jyki Group Oy ensures that it can demonstrate that it operates in accordance with the above principles.
What personal information do we collect and process?
Jyki Group Oy collects personal information from its service users that is necessary for the purposes defined in this data protection clause:
A) The information you provide to Jyki Group Oy
Contact information for customers and customer companies.
Contractual information, such as service description information, billing and payment information, customer feedback, and contact information.
Recorded customer calls.
Any other user-supplied information we need for the purposes set forth in this Privacy Policy.
B) Information derived from the use of the Services
The derived information has been deduced by means of analytics from the perceived use of the service and / or information provided by the customer himself, for example the user's possible interests or segmentation into a certain group of users.
Why do we process your personal information?
We only process your personal data for the legitimate purposes for which it was collected. Your information may be processed, among other things, to provide you with our services and in the performance of our customer relationship or in the performance of our employment or other contractual obligations.
On what basis do we process your personal information?
All processing of personal data is always based on one or more legal bases set out in data protection law. These legal bases include: consent, legitimate interest of the controller, performance of the contract and legal obligation.
Who processes your personal information?
Only people whose work requires access to your data will have access to your data. The information systems we use support access control, which controls the processing of your personal information. In addition, we train our staff regularly and they understand the importance of trust and privacy.
How do we protect your personal information?
Your information will be protected by appropriate technical and administrative measures. Jyki Group Oy uses up-to-date practices to protect personal data. This means that we use physical, administrative and technical safeguards to reduce the risk of loss of personal information and to reduce misuse and unauthorized use, disclosure or modification. We store your personal information on secure servers so that only authorized persons can access the information on that server. Jyki Group Oy may also protect the user's personal data by using Secure Sockets Layer ("SSL") or other similar encryption software.
The protections we use include the following:
- We store data in premises and servers protected by access control
- The use of data is limited by access rights
- The use of the data is instructed internally
- Employees are trained in data processing and data protection practices
- The data is properly verified and protected
Jyki Group Oy has policies in place to manage unlikely but potential personal data breaches. The purpose of these policies is to identify the personal data breach as effectively as possible and to minimize the damage associated with it.
A personal data breach is a security breach that results in personal data falling into the hands of a person who does not have the right to process it or, for example, destroying it. We always report personal data breaches to the data protection authority and, if necessary, to the data subjects, ie you.
If you notice a personal data breach or other problem related to data protection or security concerning Jyki Group Oy, please notify Jyki Group Oy's data protection officer first.
To whom do we disclose your personal information?
Your personal information will be disclosed outside the organization only to the extent permitted by law. Please note that we do not sell your personal information to third parties. We transfer personal data only to the extent that third parties need access to the personal data we process in order to provide the Jyki Group Oy service for the purposes defined in this data protection clause.
Jyki Group Oy uses external service providers to support the processing of personal data, for example for the maintenance and development of IT systems. These service providers process personal data on behalf of Jyki Group Oy. Data processing is always in accordance with current legislation and Jyki Group Oy's guidelines. Compliance with the guidelines is guaranteed, among other things, by means of agreements between the organizations. We do not allow third parties to sell or use your information for their own purposes.
Third party marketing and advertising
Jyki Group Oy does not share users' personal or identifying information with marketing or advertising parties. In order to properly target communications or marketing, we may transfer anonymized demographics, interests, or location-based targeting values, for example, to third parties.
As described above, we use your personal information to provide targeted advertising or marketing communications that we believe may be of interest to you. In addition, we use cookies to improve our services and to target communications and advertising based on browser-specific data.
Cookies
Cookies are used to make ads more interesting to users, we may target them based on the data we collect. One way to collect data is cookies and other similar tags. A cookie is a small text file that a browser stores on a user's terminal. Cookies contain an anonymous, unique identifier that allows us to identify and count the various browsers that visit our site.
Please note that cookies are browser-specific. We do not see any of your identifying information, for example we do not know your name, but we do see how the browser navigates our pages.
We use cookies in our online service to implement the services and to facilitate the use of the service. Cookies are also used to target marketing through various channels such as social media channels.
You can disable cookies for targeted advertising using the links below:
Google: https://www.google.com/settings/ads/anonymous
Bing: https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads
We also use Google Analytics to help you understand how our customers use the site - you can read more about how Google uses your personal information here:
https://www.google.com/intl/en/policies/privacy/
You can also disable Google Analytics here:
https://tools.google.com/dlpage/gaoptout
Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance opt-out portal at https://optout.aboutads.info/
How long is your personal information kept?
Jyki Group Oy retains users' personal data only for as long as they are needed for the purpose for which they were collected or for the maximum period permitted by law. The length of the personal data retention period therefore varies depending on the data. This also means that we may retain your personal information even if your contractual relationship with us has ended, but only as long as we have a reason to do so.
What are your rights?
Below we have described your rights and related principles:
Right of access to information
You have the right to receive confirmation that your personal data has been processed by the controller and a copy of the registered personal data.
Right to rectification of data
You have the right to ask us to correct inaccurate or incorrect information about you. The inaccuracy of the information is decided on a case-by-case basis based on whether the information is incorrect for the purpose of processing (unnecessary, incomplete, outdated).
Right to delete data ("right to be forgotten")
Your personal data will be deleted from Jyki Group Oy's registers if there is no legal obligation to keep them. All requests for deletion of data will be processed on a case-by-case basis and if there are no grounds for retention, the data will be deleted.
Restrictions on processing
You have the right to request a restriction on the processing of your personal data in certain special situations defined by law.
Opposition to processing
You may also request restrictions on the processing of your personal information if your information is processed for purposes other than the performance of our service or the fulfillment of a legal obligation. Opposing the processing of personal information may result in more limited access to our website. You have the right to opt out of electronic direct marketing by following the instructions included in all marketing messages we send.
The right to transfer data from one system to another
You have the right to request that your data be transferred in a machine-readable form to another service provider. This right shall apply to information which is in electronic form and the processing of which is based on consent or performance of the contract.
Right to withdraw consent
In situations where the processing of your personal data is based on consent, you have the right to withdraw your consent at any time. Following the withdrawal of consent, that consent-based processing shall cease.
Right to appeal to the authority
We exercise the above rights as defined in the General Data Protection Regulation. The scope of your rights is tied to the basis on which your personal data is processed. You can exercise your rights by sending a letter or email with your name, address, phone number. If your request concerns personal information contained in a cookie, you must attach a copy of that cookie to your request. We may request additional information necessary to verify your identity. We may reject requests that are unreasonably frequent, excessive, or unreasonable. If you feel that the processing of your personal data is in breach of applicable law, you can lodge a complaint with your local data protection authority.
If you believe that we have not processed your data lawfully, you can lodge a complaint with the data protection authority. However, we hope you'll always contact our Privacy Officer first to find out.
To exercise your rights, follow these steps:
Contact Jyki Group Oy's data protection officer primarily by e-mail.
We will respond to all requests regarding the rights of data subjects no later than one month after receipt of the request. If necessary, the time limit may be extended by a maximum of two months, taking into account the complexity and number of requests. If the deadline is extended, we will notify you of the delay and the reasons for it within one month of receiving the request.
Who can I contact?
We are happy to answer your questions regarding data protection. Please get in touch if you have any questions.
DATA PROTECTION OFFICER
Jyki Group Oy
Jykintie 10
35400 Längelmäki
jyki@jyki.fi
+358 010 202 2400