Processing personal data
In this privacy notice we will describe how does MV-Jäähdytys collect, use, hand out and protect your personal information and data. We also let you know about your rights regarding checking, updating, and removing data and how can you reach us.
This privacy notice applies to all personal data about you that we process when you plan to order a service, are in a customer or partnership relationship with us, when you visit our online services or do business with us in any other way. We are committed to protecting the privacy and security of your personal information, in accordance with the applicable privacy legislation and the General Data Protection Regulation of the European Union.
You may find more information about the processing of your personal data below, under different headings.
GDPR | Date of preparation: 25.03.2021
It is important for MV-Jäähdytys to process personal information in a careful and responsible way. We are committed to processing personal information in accordance with the applicable privacy legislation and following good data management and processing practices. Personal data, or personal information, means any information about an individual from which that person can be identified. We use data to provide and develop services, for customer service and for making advertising more relevant and for post-marketing purposes.
We may change or update this registry and privacy statement from time to time. The changes will be visible in real time in this public register and privacy notice. Please note that our website may contain links to the pages or services of other companies that have their own privacy policies separate from ours.
1. Data controller
Company ID: 2487661-3
Address : Åbyntie 1, 01730 Vantaa
Phone: 020 786 1900
2. Data Protection Officer
Jasperinkuja 2, 33960 Pirkkala
Phone: 020 786 1900
3. Name of the register
Customer and marketing register of MV-Jäähdytys Oy (MV-Jäähdytys Oy:n asiakas- ja markkinointirekisteri)
Customer and partner information
4. Processing personal data and its purpose
Personal data is processed for customer relationship management of MV-Jäähdytys Oy. MV-Jäähdytys Oy provides, for example, professional services for cooling, heating and professional kitchen equipment maintenance, service and installation. We process personal data in the following circumstances: customer relation ship management based on our services, the customer’s consent, an order given by the customer or another relevant matter.
MV-Jäähdytys Oy generally processes personal data for the following puprposes: customer relationship management and developing customer relationship, implementation of the rights and obligations of the customer and MV-Jäähdytys Oy, research, for customer communication, marketing planning and targeting, customer service development, payment monitoring and service and business development. MV-Jäähdytys Oy processes your personal data also for distance sales and direct marketing purposes in accordance with the General Data Protection Regulation of the European Union. The customer / service user has the right to has the right to prohibit direct marketing at any time in the manner specified in section 13.
The partners of the controller may, with certain restrictions, have the right to use the information for the purposes related to their own business, for example for the development and implementation of various joint services, concepts and business models.
5. Data content of the register
The register contains the following information about registered customers.
Information related to the person, managing the customer relationship and the actual connection to the controller’s activities, i.ai.: marketing permits, name, title, and contact information (email and phone number) of the company’s contact person. Data is collected also through customer relationship management by phone and e-mail.
6. Regular data sources
Personal data is generally obtained from the following data sources: directly from the data subject in connection with customer relation ship management e.g., by phone, online service, customer events and customer meetings. Personal data can also be collected, saved, and updated from companies offering update services and the authorities. Personal data can also be purchased from third parties to be used in sales and marketing work within the limits allowed by data protection legislation.
The forms filled out through our web pages contain personal data, at a minimum, first name, last name and email address. By submitting the form, you agree that the page owner will record the personal information you provide in their own system, in order to implement the requested service. In addition, we receive information from registers kept by the authorities, credit information and payment default registers, and other reliable registers.
Our digital interfaces, such as our website, collect information about the use of the service and certain information about the users’ devices and connections, such as, for example, the IP address.
7. Regular data disclosure
Personal data can be disclosed to the partners of MV-Jäähdytys Oy and to authorities within the limits of the applicable legislation. We share only limited personal data necessary for customer communication with third parties, unless, when we believe in good faith that providing the information is necessary to protect our rights, ensure the safety of the customer or to protect other rights, to investigate fraud or to meet the requirements of the government. We never sell personal data to third parties. The register holder can transfer the information contained in the register to its direct marketing registers after the end of the customer relationship and the actual connection.
8. Data transfer outside the EU or the European Economic Area
Personal data related to customer relationships will never be disclosed outside the EU or the European Economic Area without the customer’s permission and a strongly justified reason. The servers of the programs are in the EU or EEA or in countries outside the EU and EEA, as referred to in the data protection regulation, where the EU Commission has determined that the level of data protection is adequate.
On our website we use the Google Analytics -tool, which is a tool for web analysis provided by Google Inc. The data related to the use of the website and collected by Google Analytics will be transferred and stored on Google’s servers in the United States. To anonymize the IP-address used on the website, Google truncates the IP-address in the Member States of the EU and in other countries which are affected by the Agreement on the European Economic Area. The full IP-address will be transferred to the US only in exceptional cases. In those cases, the IP address will be truncated in the US. The IP address provided by the user’s browser is not combined with other information collected by Google.
Personal data can therefore be transferred to countries outside the European Economic Area that do not have similar data protection legislation to Finland in these situations, for example, when we cooperate with service providers. In these cases, we use other ways to protect data in accordance with the General Data Protection Regulation. When we transfer data outside of the European Economic Area, we ensure that all parties who have access to the data have taken appropriate security and data protection measures, because we want to be sure that your data is protected according to this practice. You can get additional information, if needed, and details of the applicable precautions we use by contacting us according to the contact details in part 13.
Protecting your data
We will always give you confirmation of the measures we have taken following your request (e.g. confirmation of deleting data). We will always let you know if we are unable to fulfil your request and the reasons for this decision. It is free to make a request concerning personal data once in a year (12 months). We might charge a reasonable fee to cover administrative costs for additional requests. We reserve the right to decline unreasonably often repeated, unreasonably extensive or clearly unfounded requests.
9. Principles of registry protection
We take security seriously. We carry out different procedures to protect personal data from disappearing, misuse and their unauthorized access or disclosure. These measures are taken considering the sensitivity of the data we gather, process and store as well as current technology.
The personal data in the register will be kept confidential. Using the register is advised in the organisation and access to the register has been limited in a way that the information stored in the register can only be accessed, and access is allowed for only those employees, who have a right to do so on account of their work duties and who need the information in their duties. The employees processing personal data have a duty of confidentiality.
Accessing the system requires inserting a username and a password for each user of the register. In addition, the network and equipment on which the register is located on has been protected with a firewall and other technical measures. The disposal of materials containing personal data is done securely. We do our best to protect your data. However, if a security breach endangering your personal data were to occur, we will notify you in accordance with the requirements of data protection legislation.
10. Data storage
We store the customer’s data for at least the duration of the customer relationship. After the end of the customer relationship, the time we store data depends on the data and its intended use. When the law, our rights and responsibilities and the customer’s rights and responsibilities no longer require storing the personal data, we will dispose the personal data in question. When a customer for example asks us to dispose their information from our service, we will dispose the data. For technical reasons, this data will be stored in our backups for maximum a year before they will be disposed. We try to keep the personal data in our possession correct and up-to-date by deleting unnecessary data and updating outdated data.
Information can be deleted at the customer’s request or due to the end of the customer relationship. Requests to delete information can be sent by letter to the address MV-Jäähdytys Oy, Åbyntie 1, 01730 Vantaa or by email to firstname.lastname@example.org.
11. The registered person’s right to transfer or check their data
The customer has the right to transfer their data from one system to another. Personal data will be delivered at customer’s request in an organized and a commonly used technical storage format. Therefore, it is easy for the customer to move their information for a third party easily and independently.
The customer has the right to be informed upon request, what information has been stored of him/her, where the information for the register is regularly obtained, where the information is used and regularly disclosed. The information will be disclosed for the customer in an understandable form and in a written form, if necessary, except when we have a legal reason no to disclose this information for the customer or if providing information would seriously violate the rights of the customer or others. Checking information or transferring information is free of charge once in a year. Requests can be sent by letter to the address MV-Jäähdytys Oy, Åbyntie 1, 01730 Vantaa or by email to email@example.com.
12. The right to demand correction or deletion of information
The data controller corrects, updates, changes, or deletes personal information in the register that is incorrect, unnecessary, incomplete, or outdated in terms of the purpose of the processing on its own initiative or at the request of the data subject. The registered person must contact the controller in order to modify or delete the information. Requests can be sent by letter to the address MV-Jäähdytys Oy, Åbyntie 1, 01730 Vantaa or by email to firstname.lastname@example.org. Personal data can also be deleted on the initiative of the data controller in case the customer misuses the service or uses the service for criminal or other prohibited practice. The deletion of personal data is carried out without undue delay, unless we have a legal basis to continue processing the data, for example to provide the requested services, or unless we have a legal obligation or a justified legal reason to retain personal data.
Our services are not targeted for those under the age of 18. If you find out that a minor child has given us their personal information, please contact us.
13. Other rights related to processing personal data
The registered person has the right to prohibit the data controller from processing information about him/her for the purposes mentioned in this registration statement, unless otherwise agreed between the data controller and the data subject. Certain information and data are essentially necessary to fulfil the objectives set out in this policy, and the law might require certain information. Therefore, the customer can’t delete this kind of personal data. Prohibition of processing personal data might result to the end of a customer relationship if the law requires registering personal data that the customer objects to processing.
The customer has the right to limit the processing of personal data for example in situations in which the rectification or deletion of data has been requested and the request is still awaiting a solution, or where the processing of personal data has been objected to and the clarification of the basis for processing is awaiting a solution.
The customer also has the right to object to processing data in a certain way, such as profiling for marketing purposes. The customer also has the right to restrict data processing to the extent required by the applicable data protection law.
The customer has the right to prohibit us from using personal data for direct marketing purposes, which also includes profiling for direct marketing. You can unsubscribe from direct marketing messages via the “unsubscribe” link or in another way described in the direct marketing message. Requests for correction or deletion of information regarding marketing bans (calling, printed direct marketing, text message and e-mail) should be sent by letter to MV-Jäähdytys Oy, Åbyntie 1, 01730 Vantaa or by email to email@example.com.
If you feel that we have not processed your personal data correctly, you can contact the data protection authority and file a complaint. The Data Protection Commissioner is a Finnish authority. On its website you can find information about your rights and more information about how you can exercise your rights.
If you need help or more information for processing your personal data, you can contact us anytime by calling our customer service number 020 786 1900 or by emailing us at firstname.lastname@example.org.