Privacy Statement

This notice contains the information required by Articles 13 and 14 of the EU General Data Protection Regulation (2016/679) about the personal data we process in relation to our dci.fi website (the “Service”).
 

1. Registrar

DCI-Ratkaisut Oy 

Company ID: 2510256-4 

Sierakiventie 10 
02780 ESPOO 

Domicile: Espoo 

Contact person in data protection matters: Veli-Matti Laurikka 

Sierakiventie 10 
02780 ESPOO 

Email: veli-matti.laurikka(at)dci.fi 
 

2. Groups of registrants

This statement applies to personal data that we process about Service users and/or business users’ contact persons and other persons whose personal data processing is required for the provision and receipt of the Service.
 

3. Purposes of data processing

Personal data is processed primarily for the purpose of providing the Service and for the purposes of managing and maintaining the customer relationship. The data may also be used to monitor and investigate misconduct and to plan and develop the controller’s business and services. To the extent permitted by law, we may also process personal data for marketing purposes. 

4. Legal grounds for processing

The processing of personal data described in this statement is mainly based on the implementation of our website service and our legitimate interest in processing personal data to provide the Service and to conduct and develop our business.

If there is a contractual relationship between the data subject and us, the processing is based on the performance or preparation of the contract.

For individual data, processing may also be based on your consent or our legal obligation to process your personal data, for example for tax or accounting purposes.
 

5. Data sources

We collect your personal data primarily from the registrant himself. We can also receive information from the company that the data subject represents, or from our partners, or from public sources.

6. Data to be processed

We process the following user-related data:

  • the name, email address, other contact details and other information provided by the user or contact person, as well as the IP address of the user
  • usage and contract history, including information e.g. reservations, orders and possible feedback, contacts, invoicing and collection
  • Technical information about your use of the Service, such as browsing and search information (e.g. information collected by cookies)
  • information about customer communications, marketing and other communications (including direct marketing prohibitions and consents) 

7. Disclosures of information

The service is a website service. Placing orders and reservations in the Service may require the disclosure of personal data to third parties, who process the data independently for the execution of the order or reservation and for any other purposes they have separately stated.

In addition, our contractors and service providers may process your information to the extent necessary to provide the Service. In addition, information may be disclosed to our service providers for routine data processing, financial management and other business services and to competent authorities or other third parties if we believe disclosure is necessary under applicable law or regulation or to exercise or defend our legal rights or protect the vital interests of any person.

We do not transfer personal data outside the EU or EEA. 
 

8. Data Retention

Personal data will only be stored as long as we have a justified need for it related to the processing purposes mentioned above.

We regularly assess the existence of such needs in relation to the personal data we hold and, to the extent that we consider the need has ceased, we delete the personal data from the system or make it anonymous, or where this is not possible (for example, where the data is stored in backup archives), we store it securely and prevent further processing until deletion is possible.

As a general rule, we keep personal data related to the customer relationship only for the duration of the active customer relationship. However, to the extent that the data is subject to, for example, a storage obligation arising from accounting or taxation legislation, the data will be stored for the minimum period according to that obligation in any case.
 

9. Data protection

Access to the data is limited to employees of the controller and service providers who are entitled to access the data on the basis of their duties. The controller shall implement appropriate technical and organisational measures to protect the data against unauthorised access, alteration, disclosure, destruction or other unlawful forms of processing. The controller shall require all service providers it uses to respect confidentiality, appropriate data security and to adhere to the requirements and principles of the applicable data protection legislation.
 

10. Rights of the registrant

In accordance with the applicable data protection legislation, you have the following rights as a registered user:

  • The right to obtain confirmation from us as to whether we are processing personal data about you and, if so, the right to know what personal data we are processing about you. You also have the right to access personal data relating to you and to be informed about the processing of your personal data in accordance with the General Data Protection Regulation. When you exercise your right of access, we will provide you with a copy of your personal data that we process. If you request more than one copy, we may charge a reasonable fee based on administrative costs. 
  • The right to ask us to rectify data concerning you and, in certain cases, the right to request the erasure or restriction of processing of your personal data. 
  • You have the right to object to the processing of your personal data on grounds related to your personal special situation if there is no justified reason for the processing. In addition, you always have the right to withdraw your consent to the processing of your personal data for direct marketing purposes.
  • The right to transfer the data from one system to another: you have the right to receive the personal data you have provided to us in a structured, commonly used and machine-readable format and the right to transfer the data in question to another data controller if we carry out the processing automatically and the processing is either based on your consent or is necessary for the implementation of the agreement between us or the agreement to implement pre-action measures at your request. The right to transfer data from one system to another is limited to a procedure that does not adversely affect the rights or freedoms of others. 
  • To the extent that the processing of personal data is based on consent, the right to withdraw your consent to the processing of personal data at any time.
  • The right to file a complaint with the supervisory authority: you have the right to file a complaint with the data protection commissioner if he considers that the processing of personal data has violated his rights based on the data protection regulation. The supervisory authority in Finland is the Data Protection Commissioner (www.tietosuoja.fi). 

You can exercise your rights by contacting us using the contact details in this notice.

 

11. Updating the factsheet

We may update this statement from time to time due to changes in legislation or changes in our business. We will endeavour to inform data subjects of changes in a manner appropriate to their significance.

Last updated 20.6.2022 
 

 

Cookies

We use cookies in the Service to enable and facilitate the use of the Service. A cookie is a small text file stored in the user’s browser. Cookies help us improve the functionality of the Service. The use of cookies can be restricted or prevented completely from the device’s browser settings. Blocking cookies may affect the functionality of the website. Please note, however, that the Service may no longer function as intended.

On our website, we use the analytics service provided by Google Analytics.  This service allows us to track whether a user is returning to the site.

Cookies are used to collect the following information:

  • Time of visit and pages visited on the website
  • The website through which the website was accessed
  • Operating system type
  • Network location and IP address

The cookie remains valid until the browser memory is cleared.