Data protection

1. Register owner and controller
Wisematic Oy
tel: +358 50 529 2757

2. Register name
Customer and marketing register

3. Legal grounds for processing personal data
Legal basis for processing personal data under GDPR is customer relationship. EU:n yleisen tietosuoja-asetuksen mukainen oikeusperuste henkilötietojen käsittelylle on asiakassuhde. The purpose for personal data processsing is customer relationship management, communication with customers, marketing or other similar activities. Personal data is not used for profiling or automated decision making.

4. Registry contents
Data stored in the register may include: name, employer/organization, position, contact information (telephone, email-address, postal address), web-page address, invoicing data, information about purchased products/services. Data will be stored until it is identified as obsolete for business purposes.

5. Regular sources of information
Stored data may be collected via personal meetings, email exchange, telephone,webpage message forms, social media services, contracts or other encounters during when data has been exchanged.

6. Transfer of data
No data is sold, leased, rented or otherwise disclosed to third parties unless otherwise stated here. No data is transferred outside the EU or EEA. Joint marketing and other communications may be conducted with our marketing partners. Such authorized third parties are not permitted to use the data for other purposes. Third parties are oblided to use similarly appropriate security measures to protect the personal data. Data may be published according to separate agreement with the specific customer.

7. Register security principles
The data register is kept confidential and is protected e.g. with passwords. The access to data is limited to register managers and such persons whose role in the organization requires access to the data.

8. Right for data inspection, correction and erasure
All data subjects have statutory rights to request access to and rectification or erasure of personal data or restriction of processing concerning yourself. All requests should be addressed to the register manager in writing. The register owner is obliged to respond to request within the time limit set by the EU data protection law.