Data protection notice


Controller

Ristek Oy
Teollisuustie 7
15540 Villähde

Purpose for the processing of personal information

We only collect and process personal information that is necessary for the running of our business operations, for maintaining customer relations and for appropriate commercial purposes. We process your personal information in order to ensure the data security of our services, products and website, to improve the quality of the service and the website and to develop services and products.

Collected customer information and data sources

  • IP address
  • URL route on the site
  • Time of the visit
  • Browser type and version
  • Devicetype
  • Name and email from contact form

Where do we get the data?

From customers themselves through the contact form and using the service. Data is generated during the use of the service or while visiting the website, e.g. by cookies and similar technologies.

Cookies

We use cookies and similar technologies on our website. Cookies are small text files that are placed on your device for the collection and recall of useful data, in order to improve the functionality and usability of our website. We may also use cookies and similar technologies for statistical purposes, such as compiling website use statistics in order to understand how the users use the website and how to improve the user experience.

You may prevent the setting of cookies, limit their use or remove them from your browser. Since cookies enable the functionality of our website, limiting their use may affect the usability of the website. More information: http://aboutcookies.org.

Personal Data Recipients

We may disclose information to authorities regulating business, such as the Regional State Administrative Agencies, Tax Administration, Office of the Data Protection Ombudsman or any other party required by law, to the extent described in this Privacy Policy.

We may disclose personal data to parties outside the Ristek Oy organisation if access to personal data is reasonably deemed necessary in order (i) to comply with applicable laws, regulations or a court decision; (ii) to detect, prevent, or otherwise address fraud, money laundering, terrorism financing, or technical or data security problems; or (iii) to ensure the safety and protect the assets of Ristek Oy or its customers, or for the purposes of public interest in accordance with the law.

We may disclose personal data to authorised service providers providing services for us. Our agreements with our service providers include commitments under which the service providers commit to restrict the use of personal data and to comply with at least the privacy and data security standards of this Privacy Policy.

We may disclose personal information to third parties outside of the Ristek Oy organisation for reasons other than those previously mentioned when we have the express consent of the data subject. The data subject has the right to revoke such consent at any time.

Transferring data outside the eu

We may process personal data in systems that transfer information outside the European Union and the European Economic Area. If the European Commission has not considered the destination country’s level of data protection adequate, we will ensure an adequate level of data protection for your personal data through our contractual practices (e.g. the European Commission’s model clauses on transferring personal data to third countries) or other measures.

Data Retention

We only retain personal data for as long as the law requires or for as long as they are necessary for the above-mentioned purposes.

Data Security

We have implemented administrative, organisational, technical and physical safeguards to protect the personal data we collect and process. Our security measures have been designed to maintain an appropriate level to ensure the confidentiality, integrity and availability of the data.

Personal data can only be processed by those persons whose job functions justify it. The use of personal data is protected by the appropriate user-specific credentials, passwords and access rights.

Rights of the Data Subject

The data subject has the right to access their personal data, right to demand correction of data, right to demand deletion of data, right to object and right to restrict processing and right to transfer data from one system to another.

If you want to use one of the above rights, please send the following information to Ristek Oy by post or email: name, address, telephone number and a copy of a valid form of identification. We may request that you provide more information for identity verification. We may reject requests that are repeated unreasonably often, are excessive or which are clearly unjustified.