Go Back Up

privacy policy

 

Date of creation 8.6.2020

1. Data controller


Franklin Oy (Business ID: 2709196-9)

Sörnäistenlaituri 3 E LT, 00540 Helsinki

2. Contact information regarding the register


Franklin Oy

Sörnäistenlaituri 3 E LT, 00540 Helsinki

tel 050 4684 299

email: asiakaspalvelu@franklinoy.fi

3. Name of the register


Franklin Oy:n asiakas- ja markkinointirekisteri / Franklin Oy's customer and marketing register

4. Purpose of processing personal data and basis for processing


The purpose of processing personal data is to target the controller's marketing communications by post, email, telephone or otherwise. Personal data is also processed for the controller's direct marketing, opinion or market research or other comparable addressed mailings, including electronic direct marketing. Personal data may also be processed to create classifications, groups or profiles and to target marketing to the data subject in a way that is of interest to the data subject. Personal data is not processed more extensively than described in this privacy policy. The processing of personal data is based on the controller's legitimate interest and/or the data subject's consent. When processing is based on legitimate interest, the legitimate interest is the controller's need to market its products and services effectively and to develop services.

5. Data content of the register


The following information may be stored about the data subject, among others:

- Personal and contact information: first name, last name, email address, gender, address, postal code, telephone number, age/year of birth, language and profession.
- Customer-related information: subscription to a possible newsletter, competition response information in raffles, response information in customer surveys.
- Any other information collected with the consent of the data subject.

6. Retention period of personal data

The data in the register may be stored for as long as it is needed for the purpose for which it was collected and processed, or for as long as required by law and regulations.

7. Regular data sources


The personal data collected in the register is mainly information obtained directly from the data subject.

We collect personal data directly from the data subject in connection with the following activities:

- subscribing to a newsletter
- responding to customer surveys
- participating in competitions and raffles
- providing feedback/contacting via a website form
- submitting a job application via a website

8. Regular transfers of data and groups of recipients

Data may be transferred to competent authorities, for example to investigate abuses.

9. Transfer of data outside the EU or EEA


Personal data may be transferred outside the European Union or the European Economic Area in accordance with and within the limits set by data protection legislation.

10. Principles of register protection


ManuaL MATERIAL

Any manual material is stored in a locked space, which can only be accessed by persons who have been specifically granted permission.

ELECTRONICALLY PROCESSED DATA

The register is stored electronically and appropriately protected from outsiders by firewalls and other technical protection measures. Only designated employees of the controller and representatives of partners have the right to process the data in the register.

The purpose of the above measures is to ensure the confidentiality, availability and integrity of the personal data stored in the register, as well as the exercise of the rights of the data subjects.

11. Automated decision-making


Personal data shall not be used for automated decision-making which produces legal or similar effects on the data subject.

12. Right of the data subject to object to processing of personal data


The data subject has the right, on grounds relating to his or her particular situation, to object to profiling and other processing operations carried out by the controller concerning his or her personal data, where the processing is based on the controller's legitimate interest. The data subject may submit a request to object in accordance with section 15 of this Privacy Policy. In the request, the data subject must specify the particular situation on which he or she objects to the processing. The controller may refuse to comply with the request to object on the grounds provided for by law.

13. The data subject’s right to object to direct marketing


The data subject may provide the Data Controller with channel-specific consents or prohibitions regarding direct marketing, including profiling for direct marketing purposes.

14. Other rights of the data subject related to the processing of personal data


THE DATA SUBJECT’S RIGHT TO ACCESS INFORMATION (RIGHT OF INSPECTION)

The data subject has the right to check what information about him or her has been stored in the register. The request for inspection must be made in accordance with the instructions given in this privacy policy. The right of inspection may be denied on the grounds provided for by law. The exercise of the right of inspection is in principle free of charge.

THE RIGHT OF THE DATA SUBJECT TO REQUEST CORRECTION, DELETION OR RESTRICTION OF PROCESSING

To the extent that the data subject can act on his/her own initiative, he/she must, without undue delay, upon becoming aware of the error or upon discovering the error himself/herself, rectify, delete or supplement any data in the register that is contrary to the purpose of the register, incorrect, unnecessary, incomplete or outdated. To the extent that the data subject is unable to rectify the data himself/herself, the request for rectification shall be made in accordance with Section 15 of this Privacy Policy. The data subject also has the right to require the controller to restrict the processing of his/her personal data, for example in a situation where the data subject is waiting for the controller's response to a request for rectification or deletion of his/her data.

RIGHT OF THE DATA SUBJECT TO TRANSFER DATA FROM ONE SYSTEM TO ANOTHER

To the extent that the data subject has himself/herself submitted data to the register that is processed on the basis of the data subject's consent, the data subject has the right to receive such data, as a rule, in a machine-readable format and the right to transfer this data to another data controller.

RIGHT OF THE DATA SUBJECT TO LODGING A COMPLAINT WITH A SUPERVISORY AUTHORITY

The data subject has the right to lodge a complaint with a competent supervisory authority if the data controller has not complied with the applicable data protection regulations in its operations.

OTHER RIGHTS

If personal data are processed based on the data subject's consent, the data subject has the right to withdraw his/her consent by notifying the data controller of this in accordance with section 15 of this privacy policy.

15. Contact


In all matters related to the processing of personal data and in situations related to the exercise of their rights, the data subject should contact the controller. The data subject can exercise their rights by sending a request to the controller by email to asiakaspalvelut@franklinoy.fi or by letter to Franklin Oy, Sörnäistenlaituri 3 E LT, 00540 Helsinki.