Privacy notice

Name of the register

Lamia Oy customer and marketing register

Data controller

Lamia Oy, Runeberginkatu 5B, 00100 Helsinki, Finland.

Contact person

Henri Halmelahti

henri ( at ) lamia.fi

tel. 010 324 1340

Purpose of personal data processing

Processing of personal data is primarily based on customer relationship with Lamia, controller's legitimate interests, consent of the data subject, order from a customer or other appropriate cause.

Basis for personal data processing

We collect data on our websites in order to provide a better user experience, to maintain and develop customer relationships and to enable contacts required to provide services. For example with website forms we collect data such as name, company and email and additional information such as title.

Processed personal data categories

Data subject has or has had a customer relationship or an application or quote has been made to establish one.  

The register contains the following information:

  • Name
  • Organization and position
  • Address of the organization
  • Email address
  • Phone number
  • Other personal data voluntarily provided by the data subject
  • Direct marketing permissions and prohibitions expressed by the data subject

Regular data sources

The marketing register data is collected through customer relationship or from Lamia Oy website (contact forms, material downloads, newsletter subscriptions), registrations to Lamia Oy events and other similar information

Regular data sharing

The controller will not share the personal data to external parties except when obliged to do so by the Finnish authorities.

The register data can be shared within the controller’s corporation and with subcontractors. Lamia Oy requires compliance to data protection legislation from all subcontractors.  

Data transfer outside of EU or EEA

The controller can outsource the processing of personal data to external organizations located in coutries outside of EU/EEAA, e.g. United States. These organizations can process personal data to provide for example infrastructure or IT services or other services – with Privacy Shield arrangement or via contract utilizing standard contractual clauses approved by the EU Commission.

Principles for data protection

The data has a technical protection. Physical access to the data is prevented with access control and other security measures. Access to the data requires sufficient permissions and a multi-phase identification. Unauthorized access is also prevented with e.g. firewalls and other technical security controls. Register data is only accessible to the data controller and other separately designated persons. All users are obliged by confidentiality. All register data is backed up in a secure way and can be restored if the need arises.

Time period and criteria for storing the data

The data controller stores personal data only as long as it is necessary for the purpose for which the data has been collected, within the limits and according to the requirements of the law, especially according to the accounting requirements.

Data subject’s rights

The data subject has the right to check the personal data in the register. The request has to be done in writing, be signed and addressed to the contact person mentioned above. The request can also be done on site at the address stated above.

The data subject has the right to ask to correct any erroneous data on the data subject.

The data subject has the right in certain situations to ask to erase the personal data from the register and ask for the data to be moved to another register.

The data subject has the right to forbid the use of the data to direct advertising, remote sales or other direct marketing and for polling and market surveys.

Direct marketing can be targeted to the data subject if he/she has given a permission. The data subject has the right to withdraw the permission at any time.

Possible arguments will be settled primarily through negotiation with the data subject. The data subject has the right to take the data processing claim to be investigated by the data protection authorities.

Cookies

Cookies are small text files stored in the hard drive. Cookies help you navigate on our website and enhance user experience. Our webpages use cookies to remember your choices.

Cookies can also be used to determine whether there has previously been a connection to our website from your computer. In this case only the cookie is recognized. With cookies we can collect information on for example from which webpage you are coming from, which pages of our website you have browsed, which browser you are using, what your screen resolution and operating system is and what your computer’s IP address is meaning from which internet address the data you are sending is coming from and where it is received. The data does not reveal the user’s name or other personal data and the user cannot be identified based only on cookies.

If you use our website, you consent to the use and storing of cookies on your computer. Most browsers accept cookies automatically. As a web visitor you have the possibility to block cookies by enhancing your browser settings not to accept storing cookies. In that case you accept that some website service functionalities may be affected by the blocking of cookies.