Logo

DIGITUNE Privacy Policy

This is the register and privacy statement of DIGITUNE OY in accordance with the General Data Protection Regulation (GDPR) of the EU.

  1. 1. Data Controller

  2. The data controller of the register is DIGITUNE Oy (business ID 3390819-7)

  3. The contact person for data protection matters is: Artem Verlin, CEO

  4. DIGITUNE Oy

  5. Address: Aapelinkatu 6E

  6. Phone: +358405248252

  7. Email: info@digitune.fi

  1. 2. Name of the Register

  2. The name of the register is DIGITUNE Oy's customer register.

  1. 3. Legal Basis and Purpose of Personal Data Processing

  2. The legal basis for the processing of personal data according to the EU General Data Protection Regulation is:

  3. The data subject has given consent to the processing of his or her personal data for one or more specific purposes (GDPR 6 art. 1.a);

  4. The processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract (GDPR 6 art. 1.b);

  5. The processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party (GDPR 6 art. 1.f).

  6. The aforementioned legitimate interest of the controller is based on the significant and appropriate relationship between the data subject and the controller, which arises from the fact that the data subject is a customer of the controller, and where the processing takes place for purposes which the data subject could reasonably have expected at the time of the collection of the personal data and in the context of the relevant relationship.

  1. 4. Data Content of the Register

  2. The person's basic information and contact details: first name, last name, address, phone number, email address;
    The IP addresses of website visitors and cookies necessary for the service functions are processed on the basis of legitimate interest, e.g. to ensure data security and to collect statistical data on website visitors in cases where they can be considered personal data. The consent of third-party cookies will be requested separately, if necessary.

  1. 5. Regular Sources of Information

  2. The information stored in the register is obtained from the customer, for example, from messages sent via www forms, by email, by phone, via social media services, contracts, customer meetings and other situations where the customer provides their information.
    The contact information of companies and other organizations can also be collected from public sources such as websites, directory services and other companies.

  1. 6. Regular Disclosures of Data and Transfers of Data Outside the EU or the EEA

  2. Personal data will not be disclosed to external parties.

  1. 7. Principles of Register Protection

  2. Personal data is stored in locked premises, which are accessible only to authorized persons who have been designated for this purpose.

  3. The database containing personal data is located on a server that is stored in a locked room, which is accessible only to authorized persons who have been designated for this purpose. The server is protected by an appropriate firewall and technical security.

  4. Access to databases and systems is only possible with separately granted personal usernames and passwords. The data controller has restricted access rights and authorizations to information systems and other storage media so that only persons necessary for the lawful processing of the data can access and process the data. In addition, the use of databases and systems is logged in the log files of the data controller's IT system.

  5. The employees and other persons of the data controller are committed to observing confidentiality and to keeping secret the information obtained in connection with the processing of personal data.

  1. 8. Right of Access and Right to Request Correction of Information

  2. Each person registered in the register has the right to check the information stored about them in the register and to request the correction of any incorrect information or the completion of incomplete information. If a person wants to check the information stored about them or request its correction, the request must be sent in writing to the data controller. The data controller may, if necessary, request the person making the request to prove their identity. The data controller will respond to the customer within the time specified in the EU General Data Protection Regulation (usually within one month).

  1. 9. Other Rights Related to the Processing of Personal Data

  2. A person in the register has the right to request the removal of personal data about him from the register (`right to be forgotten'). Those registered also have other rights according to the EU's General Data Protection Regulation, such as limiting the processing of personal data in certain situations. https://eur-lex.europa.eu/legal-content/FI/TXT/?uri=CELEX%3A32016R0679#d1e2144-1-1 Requests must be sent in writing to the controller. If necessary, the registrar may ask the requester to prove his identity. The controller responds to the customer within the time stipulated in the EU data protection regulation (generally within a month).

  1. 10. Targeted marketing

  2. Based on browsing the pages, we may do targeted advertising in the following services: Facebook, Instagram, Linkedin, Snapchat.