1. Data Controller
Bökarsin Kiinteistö ja Tili Oy
Address: Keulatie 9
Postal Code: 06150
Phone Number: +358 9 2316 1122
2. Purpose of the Register
Collected personal data is used for: Identifying customers and managing user access rights. Delivering orders to registered users, maintaining, and developing customer relationships. If used for direct marketing, it will be explicitly stated.
3. Basis for Collection and Processing of Data
Customer information is collected and processed with customer consent, for contract fulfillment or to meet legal obligations.
4. Content of the Register
Company name, Business ID, Email address, Phone number, and User credentials.
5. Retention Period of Data
Personal data is stored for as long as it’s needed to fulfill a contract with the customer or develop customer service, up to a maximum of X years.
6. Regular Sources of Information
The register collects information: From the individual themselves. From registers maintained by authorities within legal limits (e.g., ytj.fi). Data is also collected via Google Analytics.
7. Regular Disclosures and Transfer of Data Outside the EU or EEA
Data is not regularly disclosed outside the company. Some of our external service or software providers may store data outside the EU or EEA, under strict agreements in accordance with the GDPR.
9. Register Security
Data is transferred over an SSL-protected connection. Electronic data is protected by a firewall, usernames, and passwords. Only those in the service of the data controller who need the data in their tasks have the right to use the data.
10. Automated Decision-making
No automated individual decisions (Article 22 of the EU General Data Protection Regulation) are made.
11. Rights of the Data
Subject has the right to check what information about them has been stored in the personal data register. The written inspection request should be sent signed to the person responsible for register matters.
The inspection right is free of charge to be implemented at most once a year.
The data subject has the right to request the correction or deletion of incorrect or outdated information or the transfer of information from one system to another. They also have the right to restrict or object to the processing of their data under Articles 18 and 21 of the EU General Data Protection Regulation. The data subject has the right to withdraw previously given consent for the processing of data or to lodge a complaint about the processing of their personal data to the supervisory authority.
The data subject also has the right to prohibit the use of their data for direct marketing purposes.