The Personal Data Act (523/99), § 10
1. data controller
Lappajärven Värjäämö Oy , Kankaantie 6, 62600 Lappajärvi
firstname.lastname@example.org tel 040-838 5449
2. The person in charge and / or contact
Seija Jokiniva tel 040-5690 611
3. name of the register
Lappajärven Värjäämö Oy 's online user register
4. The purpose of processing personal data
Personal data in Lappajärven Värjäämö Oy 's online user register is used for customer relationship management, contacts, marketing, and for other purposes related to online services.
5. Contents of the register
Basic information will be registered in the register, such as:
6. Regular sources of information
Data controller will register all information that the client reports ¨when using the online store.
7. Disclosure of data and information transfer between EU and European Economic Area
No regular disclosure of information to third parties. No disclosure of information outside the EU or outside the EEA.
8. Principles of protection
Lappajärven Värjäämö Oy 's online user registry information is stored in the controller system, which is protected by the operating system´s protection software. The system requires a user name and password. The system is also protected by firewalls and other technological means. Only certain authorized registrar employees can access the system registry and are entitled to use the information it contains. The register is stored in locked and guarded premises.
9. Right for denial
The user has the right to prohibit the controller from processing their data for direct advertising, telemarketing and other direct marketing, market research and public opinion surveys and for personal and genealogical research. Objection must be made in writing and addressed for the person responsible for the register.
10. The data subject's right for inspection
The user has the right to inspect the register for stored data relating to them and get a copy. The request must be in writing and addressed for the person responsible for the register.
11. Correcting information
The data controller shall rectify, delete or supplement the Registry for the purpose of reading incorrect, unnecessary, incomplete or outdated personal data on its own initiative or at the request of the data subject. The user must contact the person responsible for the register to get the information corrected.