Traduct Oy’s Privacy Statement
1 Controller
Traduct Oy
Läntinen Pitkäkatu 21–23 D
20100 Turku
Business ID 0613395-5
traduct@traduct.fi
www.traduct.fi
2 Contact person in matters concerning the register
Turkka Kulmala, Managing Director/CEO
Läntinen Pitkäkatu 21–23 D
20100 Turku
tel. +358 2 2109300
turkka.kulmala@traduct.fi
3 Name of register
Traduct Oy’s customer and stakeholder register
4 Purpose of processing personal data
Managing, maintaining and developing customer accounts
and stakeholder relations and other connections, as well as
communication and marketing, including direct marketing,
opinion surveys and market research.
Developing the website by analysing website traffic.
A separate agreement is made concerning the processing of
stakeholders’ data.
5 Data content of register
The following information is saved in the register:
The company’s name and contact details (visiting and
invoicing address, phone number and website), and invoicing
details.
The contact person’s name, contact details (address, phone
number and email address), and their title or position in the
organisation.
Data and behaviour of visitors to our website: web pages
visited, data on how the visitor arrived at the website and
from where. Visitor’s device data: browser and its settings,
language settings, IP address and geographical location.
6 Regular sources of data
Data has been obtained from the companies in the register or from
contact persons, websites and other public sources of information,
and by collecting data on visitors to our website.
7 Regular disclosure of data
Data is not regularly disclosed to outside parties unless agreed
separately with the customer.
The register data is saved and processed in the Microsoft cloud
service, whose servers are located within the EU.
8 Transfer of data outside the EU or EEA
In producing the service, Traduct can, within the limits laid down in
valid legislation, disclose information to its co-operation partners
who are obligated to process the data by law. If necessary, Traduct
can disclose the contact details of a customer’s contact person to
someone who has not been designated as a user of the register,
and vice versa, if such disclosure is required to produce the service.
Data contained in the register is not transferred outside the EU/EEA
without separate agreement.
9 Register protection principles
Traduct keeps the personal data in the register confidential. Only
employees who have the right to process customer data for their job
have the right to access the system containing customer data. Each
user has a personal user ID and password to access the system.
Data is compiled in databases that are protected by firewalls,
passwords and other technical means. Databases and their back-up
copies are located in locked spaces and can only be accessed by
certain previously designated persons.
10 Right of access
Data subjects have the right to inspect the data pertaining to them
that is saved in the personal data register.
11 Right to rectification
Data subjects have the right to review the data pertaining to them
that is saved in the personal data register and to demand the
rectification or erasure of data. Requests concerning the matter
must be delivered in person or in writing to the contact person
referred to in section 2.
12 Data retention period
The data is stored for as long as it is necessary with regard to its
processing purpose, e.g. the list of members on a mailing list is
retained for the duration of the mailing list.
In a client relationship, the data is stored for as long as the client
relationship lasts. The data will be erased within five years of the
client relationship ending or immediately when the client requests it.
13 Other rights related to personal data processing
Under section 30 of the Personal Data Act, data subjects have the
right to prohibit the controller from processing their personal data for
purposes of direct advertising, distance selling and other direct
marketing, as well as for market research and opinion polls. This
type of prohibition can be given to the contact person mentioned in
section 2 at any time.
Under the General Data Protection Regulation, data subjects have
the right to object to the processing of their personal data or to
request the restriction of processing and to lodge a complaint
concerning personal data processing with the supervisory authority.