Privacy Policy

Registry and Data Protection Description

This page contains the registry and data protection descriptions of Powdea Technologies Oy, as required by the Personal Data Act (Sections 10 and 24§) and the EU General Data Protection Regulation (GDPR). The descriptions were created on 12.10.2023.

Data Controller
Powdea Technologies Oy
Business ID: 0750334-8
Address: Alasuutarintie 22, 48400 KOTKA, FINLAND

Contact Person Responsible for the Registry
Tuomo Kousa
Email: tuomo@powdea.fi
Phone: +358 44 525 4056

Name of the Registry
Customer Register of Powdea Technologies Oy

Legal Basis and Purpose of Processing Personal Data
Under the EU General Data Protection Regulation, the legal basis for processing personal data is:

• Information about a company that is in a customer relationship with Powdea Technologies Oy, including contact details of the company’s representative, such as name, email, and phone number.
• The registry is used to maintain customer relationships and for billing purposes. The purpose of processing personal data is to communicate with customers, maintain the customer relationship, and for marketing purposes. The data will not be used for automated decision-making or profiling.

Data Content of the Registry
The registry stores the following information: name of the individual, position, company/organization, contact details (phone number, email address, address), website addresses, information about the ordered services and any changes to them, billing details, and other information related to the customer relationship and ordered services. Data is stored in the system until the customer relationship is considered to have ended or for at least the duration required by law.

Regular Data Sources
Data recorded in the registry is obtained from the customer through, for example, customer meetings, email, phone calls, or other situations where the customer provides their information.

Regular Disclosures and Transfers of Data Outside the EU or EEA
Data is not regularly disclosed to third parties. Data may be published to the extent agreed upon with the customer. Data may also be transferred outside the EU or EEA by the data controller if there is a change in the software used to maintain the customer relationship, where the data is stored.

Principles of Registry Protection
The registry is processed with care, and data processed through information systems is properly secured. When registry data is stored on internet servers, the physical and digital security of the equipment is ensured as appropriate. The data controller ensures that stored data, server access rights, and other information critical to the security of personal data are treated confidentially and only by employees whose job description includes handling such data.

Right of Access and Right to Request Correction
Each individual whose data is recorded in the registry has the right to inspect the data stored about them and to request correction of any incorrect or incomplete information. If a person wishes to review their stored data or request a correction, the request must be sent in writing to the data controller. The data controller may request the person making the request to verify their identity. The data controller will respond to the customer within the time frame stipulated by the EU Data Protection Regulation (typically within one month).

Other Rights Related to Personal Data Processing
Individuals recorded in the registry have the right to request the deletion of their personal data from the registry (“right to be forgotten”). Additionally, data subjects have other rights under the EU General Data Protection Regulation, such as restricting the processing of personal data in certain situations. Requests should be sent in writing to the data controller. The data controller may ask the requester to verify their identity if necessary. The data controller will respond within the time frame stipulated by the EU Data Protection Regulation (typically within one month).

Registry and Data Protection Description (Marketing Register)

This page contains the registry and data protection description of Powdea Technologies Oy, as required by the Personal Data Act (Sections 10 and 24§) and the EU General Data Protection Regulation (GDPR). Created on 12.10.2023.

Data Controller
Powdea Technologies Oy
Business ID: 0750334-8
Address: Alasuutarintie 22, 48400 KOTKA, FINLAND

Contact Person Responsible for the Registry
Tuomo Kousa
Email: tuomo@powdea.fi
Phone: +358 44 525 4056

Name of the Registry
Marketing Register of Powdea Technologies Oy

Legal Basis and Purpose of Processing Personal Data
Under the EU General Data Protection Regulation, the legal basis for processing personal data is:

• The individual’s consent to receive marketing messages.
• The purpose of processing personal data is marketing – communication with individuals in the marketing register.
• Data may be used for automated decision-making or profiling.

Data Content of the Registry
The data stored in the register includes primarily email addresses. In some cases, additional information may be stored, such as the person’s name, position, company/organization, contact details (phone number, email address, address), website addresses, IP address of the internet connection, social media profiles, information about ordered services and any changes to them, billing details, and other information related to the customer relationship and ordered services. Data is retained in the marketing register as long as the individual’s consent is valid.

Regular Data Sources
Data recorded in the marketing register is obtained from customers through, for example, messages submitted via web forms, email, phone calls, social media services, agreements, customer meetings, and other situations where the customer provides their information.

Regular Disclosures and Transfers of Data Outside the EU or EEA
Data is not regularly disclosed to third parties. Data may be published to the extent agreed upon with the customer. Data may also be transferred outside the EU or EEA by the data controller if required for the customer relationship management software in which the data is stored.

Principles of Registry Protection
The registry is handled with care, and data processed through information systems is adequately protected. When registry data is stored on internet servers, the physical and digital security of the equipment is ensured appropriately. The data controller ensures that stored data, server access rights, and other information critical to the security of personal data are treated confidentially and only by employees whose job description includes handling such data.

Right of Access and Right to Request Correction
Each individual in the marketing register has the right to inspect the data stored about them and to request the correction of any incorrect or incomplete information. If a person wishes to review their data or request correction, they may request access to their information or remove themselves from the register by asking for a link to manage their data or by clicking links provided in marketing emails.

Other Rights Related to Personal Data Processing
Individuals recorded in the register have the right to request the deletion of their personal data from the registry (“right to be forgotten”). Additionally, data subjects have other rights under the EU General Data Protection Regulation, such as restricting the processing of personal data in certain situations. Requests should be sent in writing to the data controller. The data controller may ask the requester to verify their identity if necessary. The data controller will respond within the time frame stipulated by the EU Data Protection Regulation (typically within one month).