Customer Register and data-protection
Controller of the Register
Secto Design Oy
Kauppalantie 12, 02700 Kauniainen, Finland
+358 9 5050 598
Person responsible for Register matters
Kauppalantie 12, 02700 Kauniainen, Finland +358 9 505 0598
emma.frenzel (a) sectodesign.fi
Name of Register
Sectodesign.fi website customer register
The personal data we collect from individuals using our Services (“Users”) mostly consists of user data, such as name, business company, address, telephone number, email address and other personal data Users provide to us.
We may also collect technical data in relation to Users, such as IP address, browser type and version, preferred language, geographic location, operating system and computer platform, the full URL clickstream to, through, and from our Services, including date and time, websites accessed immediately before and after visiting our websites, services Users viewed or searched for while using our Services, and parts of our Services that Users have visited. Although we do not normally use technical data to identify individuals, sometimes individuals can be recognized from it, either alone or when combined or linked with user data. In such situations, technical data can also be considered to be personal data under applicable law and we will treat the combined data as personal data.
We process personal data for the following purposes:
- to allow us to run, maintain and develop our business,
- to allow us to offer and provide our Services,
- to allow us to conduct information and promotional campaigns (including direct marketing) related to our Services (including by phone, mail and email), keeping Users informed about our Services and special offers that are likely to interest them,
- to allow us to perform the contract we have signed with our customers, suppliers or partners,
- to allow customer service management, e.g. when Users contact our service desk,
- to allow contract management, e.g. to address our invoices to our customers,
- to enhance our Services and the use thereof,
- to perform research and analysis relating to our Services,
- to perform tracking of the use of our Services,
- to conduct market surveys and/or
- to detect fraud, e.g. breaches of intellectual property rights.
We do not store the personal data for longer than is legally permitted and necessary for the related processing purposes. The storage period depends on the type of personal data, the purposes and the applicable law and therefore varies per use.
Typically, we store User’s personal data for as long as the User is using our Services or for as long as we have another purpose to do so and, thereafter, for no longer than is required or permitted by law or necessary for internal reporting and reconciliation purposes.
We erase personal data after the above described storage period or when the User requests us to erase his/her personal data.
Source of information
Disclosure of data
Customer data will only be disclosed outside of the Secto Design to the extent that delivery of orders and the technical implementation of the service require it. The Foundation can disclose customer data to official bodies as stipulated by current legislation.
Location and transfer
Customer register and the database are located in Finland and/or France in cloud environment. Information of the register is not transferred outside EU or EEA.
The register data exists only in electronic, non-physical form. Data is stored over an SSL- or SSH-protected connection. Register data is stored in firewall-protected databases, which are located in our own dedicated virtual server. Personal data are processed only by predesignated persons. Processing of Register data requires a password and username, plus sufficient user rights. The Register is protected from outside access.
Rights to manage the register data is limited to few selected persons at Secto Design. We only share personal data within our organization if and as far as necessary for the purposes specified in this Privacy Notice. We may furthermore share personal data with our affiliated company Codesign that support us in performing data hosting, and development of customer services.
All persons processing personal data are bound to confidentiality.
User’s right to check, update, restrict processing, and remove personal data
Any Users have have a right under the Personal Data Act to check what data affecting them is stored in the personal data register. Any User has the right to obtain from us restriction of processing of User’s personal data, as foreseen by applicable data protection law. In case our processing is based on a consent granted by the User, the User may withdraw the consent at any time by contacting us or by using the functionalities of our Services.
Requests to check data should be sent signed and in writing to the person responsible for register matters (defined above). Requests are free of charge ones a year. Requests are answered without a delay, usually within 2 weeks.
This Privacy Notice is dated May 18, 2018.