Data Protection Policy
1) Description of the personal data file according to the Personal Data Act (523/99) 10 §
This is the description of the personal data file and data protection policy of Sievin Savi Oy in accordance with the Personal Data Act (10 ja 24 §) and EU General Data Protection Regulation (GDPR). Created 15 October 2020. Last changed 15 October 2020.
The personal data of Utua.fi customers will be collected in the customer register when they sign up and order a product. This description of the personal data file defines which data is collected and for which purpose.
1.1. The controller
Utua Finland Oy
1.2. Person in charge of the data file
Utua Finland Oy
1.3. The name of the data file
Utua.fi online store user register
1.4. The purpose of data processing (the register’s purpose)
The personal data stored in the user register of Utua.fi online store will be used for the management of customer relations and contacts, marketing purposes, and other purposes related to the online services.
1.5. Data content of the data file
Basic information about the data subjects will be collected in the personal data file, such as: – name – address –telephone number – e-mail address.
1.6. Regular data sources
The controller registers the data the online store users themselves provide when using the website.
1.7. Regular data disclosures and data transfers outside the EU or the EEA.
No regular data disclosures to third parties. No data disclosures outside the EU or the EEA.
1.8. Data file protection principles
The data of the Utua.fi online store customer register is stored in the controller’s system. The system is also protected with firewalls and other technical measures. The register data stored in the system can only be accessed and used by certain predefined employees of the controller. The data stored in the data file is located within locked and guarded premises.
1.9. Data subject’s right to prohibit processing
A data subject has the right to prohibit the controller to process personal data for purposes of direct advertising, distance selling, other direct marketing, market research, opinion polls, public registers, or genealogical research. The objection should be done in writing and addressed to the data protection officer.
1.10. The data subject’s right of access
The data subject shall have the right of access to the data on him/her in the personal data file and to receive copies of them. The access request should be done in writing and addressed to the person in charge of the register.
1.11. Right of rectification
The controller shall, on its own initiative or at the request of the data subject, rectify, erase or supplement any personal data contained in its personal data files that is erroneous, unnecessary, incomplete or obsolete as regards the purpose of the processing. The data subject should contact the person in charge of the controller’s register to rectify the data.
2.1. Cookies and statistics
We use Google Analytics to gather information on how the online store is used. This information helps us understand what the users of the online store want and how we can best provide them with a good user experience.
2.2. Disabling and removing cookies
You can disable cookies on your device by changing your browser settings. The location of these settings varies depending on the browser. However, please note that many functions require the online store to be able to save the choices you have made. If you disable cookies, you may not be able to use all the functions.