This is the FishingXperience Registry and Privacy Statement in accordance with the Data Protection Act of Finland and the EU General Data Protection Regulation (GDPR). This statement was created on February 25th 2019, last updated October 16th 2019 and translated from Finnish origin on October 16th 2019.
1. The Registrar
Kari Koivisto Consulting , Pohjoisniementie 5 D, FI-00200 HELSINKI FINLAND, VAT: FI28322554
2. Contact person responsible for the register
Kari Koivisto, firstname.lastname@example.org, +358 (0)50 448 1033.
3. The name of the register
The register is a register of registered users of FishingXperience.fi and FishingXperience customers.
4. Legal basis and purpose of the processing of personal data
The legal basis for the processing of personal data under the EU General Data Protection Regulation is:
- performing a person’s job in their own organization
- the client relationship or potential client relationship between the controller and the recipient
- The purpose of processing personal data is to communicate with customers, maintain customer relationships and communicate with the person who represents the marketing and sales decision maker in their organization.
5. Information content of the register
The information to be recorded in the register is: the individual’s name, company, decision-making position within his/her organization, contact information (telephone number, email address, address), website addresses, information on services ordered by the individual and any changes to such services, billing information and other information relating to the customer relationship and the services ordered by the individual.
6. Regular sources of information
The information stored in the register is obtained from the customer, for example, on the customer’s home page, the websites of other events, messages sent through web forms, e-mail, telephone, social media services, contracts, customer meetings and other situations where the customer discloses his/her information.
7. Regular disclosures and transfers of data outside the EU or the EEA
Information is not routinely disclosed to third parties. Information may be published to the extent agreed with the customer.
8. Register Protection Principles
The records in the register shall be handled with care and data processed by information systems shall be appropriately protected. When register information is stored on servers connected to the Internet, the physical and digital security of the hardware and software is properly addressed. The controller shall ensure that the stored information, as well as server access and other information critical to the security of the personal data, are treated confidentially and only by the employees whose job description includes such treatment.
9. Right of access and the right to request the rectification of data
Every person in the register has the right to access data on himself/herself which is stored in the register and to request the rectification of any inaccurate or incomplete information. If a person wishes to access or request rectification of the information stored about him/her, the request must be sent in writing to the controller by email. If necessary, the controller may ask the applicant to prove his/her identity. The controller will respond to the client within the time limit set by the EU General Data Protection Regulation (as a rule, within one month).
10. Other rights related to the processing of personal data
A person on the register has the right to request that personal data relating to him/her be removed from the register (“the right to be forgotten”). Data subjects also have other rights under the EU General Data Protection Regulation. Requests should be sent in writing to the controller by email. If necessary, the controller may ask the applicant to prove his/her identity. The controller will respond to the client within the time limit set by the EU General Data Protection Regulation (as a rule within one month).
This content is published under the following terms:
CC Attribution License