Privacy Policy

Registry name

Niko Laurila Photography / Ilmavaltiaat Oy customer register

Data Controller

Niko Laurila Photography / Ilmavaltiaat Oy

Business ID 2948586-5

Contact information:

Sexmanintie 19, 06500 Porvoo

info@nikolaurila.fi

+358 40 583 7771

Purpose of the Register

The processing of personal data is for the purpose of managing, maintaining, developing, analyzing, and statistical analysis of customer relationships. Personal data is used in connection with orders, invoicing, credit, collection, customer surveys, service development, reporting, and other activities related to customer relationship management.

Personal data may also be processed to comply with applicable laws, regulations, and instructions from authorities.

The data controller has the right to use subcontractors in the provision, implementation, and payment of services. In such cases, personal data may be transferred to subcontractors to the extent necessary for the provision and payment of services.

Content of the Register

The sources of information for the register are the data provided by the customer. Personal data may also be collected and updated from population registers, credit registers, and other similar public and private registers. In the case of corporate customers, we verify the accuracy of the information from the Finnish Trade Register.

Customer basic information:

First name, last name, email address, phone number, street address, postal code, city, username, password.

Information generated based on the customer relationship: Order information and history, technical details.

Principles of Register Protection

The register data is stored in databases protected by firewalls and other technical encryption. Only certain predefined employees of the data controller and/or authorized agents of the data controller who have committed to the confidentiality of customer information are entitled to access and use the data stored in the system. Processing of register data requires a password and username as well as sufficient access rights. The register is protected from external use, and data usage is monitored. The information is retained for the duration of the customer relationship, and customer register information is not generally disclosed to third parties. In accordance with applicable legislation, information may be disclosed to authorities. Information may be transferred to the data controller’s partners, service providers, or subcontractors in accordance with the purpose of the register. Non-electronic material contained in the register is located in locked premises.

Right to Access and Correct Information

The data subject has the right to access what information concerning them has been recorded in the personal register. Requests for inspection must be made in writing and signed. Processing one inspection request per year is free of charge for the data subject.

Additionally, the data subject has the right to demand correction of incorrect information contained in the register. Requests for correction of information must be made in writing and must specify the error to be corrected. The data subject may update certain information stored about them if they have an account in the data controller’s customer account service offered through the data controller’s website.