PRIVACY AND COOKIES POLICY (April 2018)
Purpose of processing
We use, or we can use your personal data for the following purposes:
To provide you with our services and to meet our contractual obligations
We process your personal data primarily in order to provide you with our services and products, as well as to maintain and develop our business activity. Among other things, we use this information in order to process the payment orders and potential returns, in order to give our partners the necessary information for supplying the necessary services and products, as well as for marketing purposes. If you contact our customer service, we will use your information in order to respond to your questions and to address any potential complaints that you may have. Our aim is to assure that our services and products meet your expectations, therefore the information that you provide can be used, for example, for customer satisfaction surveys. We may also ask a third party to make such a query on our behalf.
For customer communication (including marketing)
Jalo Helsinki processes your personal data in order to communicate with you regarding our services and products, and to inform you about any relevant changes. Your information is also used for research and analysis, the aim of which is to improve our products, services and website. We may also use the information that you have submitted on our website for sending you electronically our products and marketing messages, provided that you have given your consent to receiving these communications, or that there is any other legitimate reason for sending you marketing communications.
To improve quality, to analyse trends and to provide customer service
We can process your information in order to improve the quality of our services and products, for example, by analysing different trends established in the use of our services. Whenever it’s possible, we try to use in such cases the anonymous information that cannot lead to the identification of the person behind it. We can also use the information in order to manage our customer relationships, to provide customer service and for communication purposes.
Reasons for data processing and its limitations
Jalo Helsinki processes your personal data in order to meet the contractual obligations with regards to yourself, and in order to act in accordance with the legal requirements. In addition, we process the personal data in order to maintain and develop our business activity.
The data that is being processed and its sources
Jalo Helsinki collects two kinds of information about its users and customers: (i) Customer Information; and (ii) Technical Information. Normally, an individual person cannot be identified through the Technical Information, but such identification may be possible in some situations. In such circumstances and in conformity with the applicable legislation, Technical Information can also be considered as personal data.
We may collect the following Customer Information and store it in our registry: (i) first name and surname; (ii) email address, phone number, address; (iii) payment details and purchase transaction related information. In addition, we can collect the following information regarding the customer relationship: (i) information related to maintaining the customer relationship; (ii) marketing authorization information; and (iii) customer service information.
We may use different ways in collecting information about our customers and visitors: for example, when the person registers for our services or purchases our products, when the person makes purchases or performs other online store transactions, through the customer feedback, complaints or other communications received from our customers, as well as when the person orders our newsletter or fills our contact form.
Please note that we collect the details of all purchases made in our online store and the payment information that is related to these purchases. We collect customer information from the users and our customers only if they voluntarily provide such information, when they make purchases or complete other transactions for the services that we offer on our web site. We can also combine and supplement the personal information that we have collected with the data received from third parties in accordance with the applicable legislation.
We, or our authorized service providers, can collect Technical Information from the browsers of the users of our website when they are using our services or visiting our site. Technical Information may include the name of your browser, the type of your computer, the time of the page views, the duration and the date, the URLs that have led you to our website or to which you move from our website, your Internet browsing information, your IP address, operating system, ISP and other similar technical information.
Our services use Google Analytics and other analytics tools that help us to create reports about the use of our website, thanks to which we can improve our site and our services. To learn more about Google Analytics, please visit http://www.google.com/analytics.
You can prevent the data collection done by Google Analytics by installing an opt-out add-on in your browser: https://tools.google.com/dlpage/gaoptout.
Disclosure and transfer of personal data
We may transfer your personal data outside of the European Union and the European Economic Area. Such data transfers are carried out in accordance with the applicable legislation. If the European Commission has not considered the level of data protection in the country of destination as adequate, we will guarantee that we will follow our contractual practices (such as the European Commission’s Terms of Reference for the transfer of personal data to third countries) or apply other measures in order to ensure the sufficient level of the protection of your personal information. If you want to learn more about the international transfer of your personal information, you may contact us at the addresses mentioned above.
We will share your personal information within our organization only as far as it is necessary for us to perform and develop our services.
We will not share your personal information with third parties unless one of the following conditions is met:
It is demanded by legal grounds
We may share your personal information with third parties if we have a legitimate reason to believe that access to your personal information or any other use thereof is necessary: (i) in order to comply with the applicable law, regulation or decree; (ii) for detecting, preventing or dealing with a case of an abuse, a security risk or a technical problem; or (iii) in order to protect the interests, property, or safety of Jalo Helsinki, our users or the general public in accordance with the requirements set by the applicable legislation. We will inform you about the use of your personal information in such cases whenever it’s possible.
Other legitimate reasons
With your explicit permission, we may share your personal information with third parties in other cases in addition to the ones described above, provided that you have given your explicit consent for us to do so. You have the right to cancel your consent at any time.
Right of access
Jalo Helsinki gives you the right to access your personal information that is processed by us. You can contact us and request that we share with you your personal information and explain to you the reasons for its processing. If your previous request for information was made less than 12 months ago, we may require a payment for performing the requested task.
Right to rectification
You have the right to correct or complete the wrong, inaccurate, incomplete, obsolete or unnecessary information that concerns you, and can do so by simply contacting us.
Right to erasure
You can ask us to remove your personal information from our systems. We will carry out the necessary measures in accordance with your request unless we have a legitimate reason for not deleting your information. In case of the erasure, the information may not be immediately deleted from all the backups or other similar systems.
Right to object
You can object to the processing of your personal data if the information is processed for other purposes than for us providing our services or fulfilling our legal obligations. You can also object to the processing of your personal data in future, even if the processing is based on your consent given in the past. Objecting to the processing of your personal data may result in your having a restricted access to our website and our services. You have the right to refuse the direct electronic marketing by following the instructions that are included in all of our marketing messages. You can also forbid us from using your personal information for direct marketing purposes, market research, or profiling – if you wish to do so, please contact us on the addresses mentioned above.
Right to restrict processing
You can ask us to restrict the processing of certain parts of your personal information. The request for the restriction may lead, however, to your having fewer opportunities to use our website and our services.
Right to data portability
You have the right to request that we provide you with your personal information in a structured and commonly used format, so that you can pass it on to another registrar.
Use of your rights
You can use any of the above mentioned rights by sending us a letter or an email message that contains your name, address, phone number and a copy of the valid ID to the following address: [email protected] If your request concerns the use of your personal information through a cookie, you also need to attach a copy of the said cookie. We may request further details that may be necessary for the verification of your identity. We may reject requests that are repeated unreasonably often, or that are excessive or unjustified. If you feel that our processing of your personal information is in conflict with the applicable legislation, you may send your complaint to the local data protection authority.
We use all reasonable and appropriate technical and organizational measures in order to prevent unauthorized access to your personal information and in order to protect your personal data from loss, misuse, disclosure, and unauthorized transfer. Our security measures include among other things the use of firewalls, data encryption where necessary, admission control and access control systems, as well as secured working spaces. If, in spite of our actions, there is a data security breach that is likely to have negative impacts on your privacy, we will inform you about such incident as soon as possible.
If you have any questions about our Privacy and Cookies Policy, please contact [email protected].