This is the register and data protection statement of Oy Rakennusapteeki – Byggnadsapoteket Ab according to the Personal Data Act (Sections 10 and 24) and the EU's General Data Protection Regulation (GDPR). Prepared on 23 April 2018. Latest change 23 August 2023. Oy Rakennusapteekki – Byggnadsapoteket Ab, Satamatie 14, 10420 POHJANKURU, is the register holder. Contacts: [email protected], 019-233975
Purpose, content and data source of the register
The purpose of processing personal data is to communicate with customers, maintain a customer relationship, marketing (newsletter). The data is not used for automated decision-making or profiling.
The information stored in the register includes: person's name, position, company/organisation, contact information (telephone number, email address, address), website addresses, network connection IP address, IDs/profiles in social media services, information about the services ordered and their changes, billing information, other information related to the customer relationship and the services ordered. The data is stored for the duration of the customer relationship.
The information stored in the register is obtained from the customer, for example, from messages sent using web forms, e-mail, telephone, social media services, contracts, customer meetings and other situations in which the customer discloses their data.
Regular disclosures of data and principles of protection
The data will not be regularly disclosed to other parties. The information may be published to the extent agreed with the customer.
Care is taken in the processing of the register and the data processed through information systems is properly protected. When stored on Internet servers, the physical and digital security of their hardware is properly ensured. The controller ensures that stored data, server access rights and other data critical to the security of personal data are handled confidentially and only by the employees whose job description it belongs to.
Right of inspection and right to demand rectified data and to be forgotten
Each person in the register has the right to check their data stored in the register and to demand that any incorrect information be corrected or that incomplete information be completed. If a person wishes to check or request rectification of the data stored about him or her, the request must be sent in writing to the controller (info @rakennusapteekki.fi). If necessary, the controller may ask the applicant to prove his or her identity. The controller will reply to the customer within the time limit set in the EU's General Data Protection Regulation (usually within one month).
A person in the register has the right to request the removal of personal data about him from the register ("right to be forgotten"). Those registered also have other rights according to the EU's General Data Protection Regulation, such as limiting the processing of personal data in certain situations. Requests must be sent in writing to the controller. If necessary, the registrar may ask the requester to prove his identity. The controller responds to the customer within the time stipulated in the EU data protection regulation (generally within a month).