Privacy statement

1. Controller
Oy Kart AB
Lummetie 8, 31400 Somero, Finland
Tel. (02) 748 9730
Email: kart@kart.fi

2. Person Responsible for the Register and Data Protection Officer
Tel. (02) 748 9730
Email: kart@kart.fi

3. Purpose of the Register
The personal data collected is used to identify the customer and maintain and develop the customer relationship. The data is also used to provide Oy Kart AB services to business customers.

The information stored in the register includes: the name of the person, company/organization, contact information (including telephone number, email address, website addresses), information about the services ordered and changes to them, invoicing information, and other information related to the customer relationship and the services ordered.

4. Basis for Data Collection and Data Processing
The processing of personal data is based on a legitimate interest, a legal obligation, or the customer’s consent.

Information is also collected and processed in order to enable Oy Kart AB to fulfil its contractual obligations and to maintain and develop its business operations.

5. Contents of the Register and Regular Data Sources
The register collects the contact information provided by the customer. We also collect data for marketing purposes through the use of cookies. Data is additionally collected by using the Google Analytics tool, among others.

6. Data Retention Period
We retain information for as long as it is necessary for the purpose for which it was collected or for the maximum period permitted by law. Despite the termination of the customer relationship, the business customer’s contact details may be processed for direct marketing purposes unless the customer expressly objects.

7. Regular Disclosures of Data and Transfer of Data Outside the EU or the European Economic Area
Data is not regularly disclosed outside the company. Some of the external service or software providers used by the company may store data outside the EU or the European Economic Area. In such cases, data may be transferred between different countries.

8. Use of Cookies
We use cookies on our website. A cookie is a small text file sent to and stored on the user’s computer, which allows the website administrator to recognize frequent visitors, facilitates user logins to the site, and enables the creation of aggregated data regarding the visitors. Only the server that set the cookie can later read the cookie and recognize the browser, for example, when the user returns to a previously visited site. Cookies do not cause harm to the user’s device, and cookies cannot be used to personally identify the user.

Cookie history can be cleared from web browser settings. In this case, the identifier that was set in the browser and the associated web behaviour profile will be removed. This action does not prevent new cookies from being stored in the browser.

Cookies can be completely disabled via the browser’s privacy settings. This action will prevent all cookies from being stored and may result in some website functionalities being unavailable.

9. Protection of the Register
The register is protected from unauthorized access. The personal data we collect and process is kept confidential, and only those who need it for their work are allowed to use it. Access to personal data is properly protected with individual identifiers, passwords, and access rights.

10. Automated decision-making
Automated individual decisions (Article 22 of the EU Data Protection Regulation) are not made.

11. Rights of the Data Subject
The data subject has the right to check the information stored in the register by submitting a written, signed request to the person responsible for the register.

The data subject has the right to request the correction of any incorrect data.

The data subject can request the deletion of data if it is no longer needed for the purposes for which it was collected. They also have the right to withdraw their previously given consent for the processing of personal data.