Mikonkatu 13 A, 00100 Helsinki
Tel. 044 3284647
Contact person for the register related matters:
Coventures Oy customer and marketing register
The primary purpose for processing personal data is the customer relationship between the customer and Coventures, the legitimate interest of the data controller and data subject, the user's consent, marketing, the assignment of the customer, or any other relevant connection between the data subject and the data controller. The data is not used for automated decision-making or profiling.
Data subjects in the register are persons who have been in contact with the data controller, such as clients or persons that have submitted contact information using contact forms or persons who have given marketing approval to the data controller.
The register may contain the following information about data subjects:
All information is provided by the data subject and reliable public Internet sources such as social media connections.
Data subject's personal data will not be disclosed to unauthorized third parties outside of Coventures and its designated resellers or subcontractors. All subcontractors are bound by the legality requirement.
The data controller can outsource the processing of the personal data to companies and service providers outside the data controller's enterprise that may be in countries outside the European Union and the European Economic Area, such as the United States. These companies can process personal data to provide infrastructure and IT services or other services. In such cases, sufficient data security and processing of the register are applied by EU-U.S. Privacy Shield, or by agreements using model contract clauses approved by the EU Commission.
Digital registers and databases where personal data is stored are secured by firewalls, passwords, and other technical security measures. Physical access to stored personal data is secured by access controls and locked cabinets with no outsider access.
All personal data is processed with confidentiality, and only those users who need the data to perform their tasks will have access to it.
The data controller shall delete personal data from the register when there is no business-related or legal basis to continue processing or when the data subject requests data deletion based on privacy regulations.
The data subject can submit the request for fulfilling the rights of the data subject by sending an email to the contact person of the register. The request must be individualized so that identity can be verified reliably.