TONISCO SYSTEM OY
Privacy policy of the customer and partner register
This is a register and privacy notice in accordance with the EU General Data Protection Regulation (679/2016).
1. Name of the register
TONISCO System Oy’s customer and partner register
2. Operator of the register
TONISCO System Oy
0565114-4
Kalkun kehätie 19
33330 Tampere
3. Contacts on data protection issues
Sara Nisso
For questions relating to the processing of personal data and in situations relating to the exercise of the data subject’s rights, the data subject should contact the controller by e-mail.
4. Grounds for and purposes of processing personal data
We process your personal data to manage the customer relationship, including for electronic customer communications, order management, analysis and development of our products and services, marketing planning, targeting, sending and development. In addition, we may use your personal data to analyse, plan and develop our business and that of our group companies from time to time.
If you are a partner or a representative of a partner when you order our products or use our services, we will process your data on the basis of a contract or assignment between us.
We also process your data on the basis of a customer relationship or a legitimate interest created by a potential customer relationship.
We process your personal data on the basis of your consent when we ask for your consent to send you direct marketing and/or a newsletter. You can withdraw your consent at any time by informing kaarlo.nisso@tonisco.com or by unsubscribing from the newsletter using the “unsubscribe” link at the bottom of the newsletter.
5. Personal data processed
The controller only collects personal data from data subjects that are relevant and necessary for the purposes of use described in this Privacy Policy.
The data processed about the data subject is the data listed below:
– Name, contact details; address, telephone number and e-mail
– Service language
– Name of the company you represent, if any, and your position within the company
– Name of the company you represent and the name of the company you represent
– Marketing and related information and the information you provide in connection with it, direct marketing authorisations, targeted marketing based on your purchasing behaviour.
– Your IP address, the operating system and type of device you use, information about the website from which you access our website and information about your activity on our website.
6. Collection of personal data
We collect your personal information primarily from you when you order products or services from us.
If you represent a business customer, we collect your information primarily from you. We may also collect information about our business customers from websites and other public sources, or from a commercial operator that provides information about businesses and their representatives.
We use cookies on our website to process information collected through cookies, including where you visit our website, which parts of our website you visit and which browser you use. For more information about our use of cookies, please see our Cookie Policy https://tonisco.com/terms-conditions/ & https://tonisco.com/privacy-policy-2/. If necessary, you can disable cookies in your browser settings. If disabled, some website functions may be slowed down or access to some parts of the website may be blocked altogether.
7. Disclosure of personal data to third parties
As a rule, personal data is not disclosed to third parties.
The data is disclosed to the accounting firm Admicom Finland Oy responsible for the management and administration of invoicing and customer relations. We transfer personal data to companies belonging to the same group for the same purposes as described in section 4 above.
We may disclose your personal data in connection with a business combination to the acquiring company of all or part of our business.
In addition, we may disclose your data, for example, to public authorities, as required by law.
8. Social media platforms
Our services may use so-called community plug-ins or embeddings. The social media provider may collect information about the visitor’s visit in accordance with its privacy policy in force from time to time.
Contact information for Meta Platforms Ireland and their Privacy Officer is available in the Meta Platforms Ireland Privacy Policy at https://www.facebook.com/about/privacy. The Meta Platforms Ireland Privacy Policy applies to most services and products offered by Meta, including Facebook, Messenger and Instagram.
For more information about Meta Platforms Ireland’s processing of personal data, including the legal basis on which Meta Platforms Ireland relies and the ways in which you can exercise your rights against Meta Platforms Ireland, please see Meta Platforms Ireland’s Privacy Policy at https://www.facebook.com/about/privacy.
9. Will we transfer your personal data to a third country?
We will not transfer your data outside the EU/EEA.
10.Principles of personal data protection
The controller processes personal data in a manner designed to ensure appropriate security of personal data, including protection against unauthorised processing and accidental loss, destruction or damage.
The controller shall implement appropriate technical and organisational safeguards to ensure this objective, including the use of firewalls, encryption techniques and secure equipment rooms, appropriate access control, careful management of user IDs for information systems and training of staff involved in the processing of personal data.
Only those persons who need to process your personal data for the performance of their duties have access to the personal data we process.
11. Retention period of personal data
We retain personal data only for as long as is necessary for the purposes for which the personal data are processed or to comply with our legal obligations. We take into account, for example, legal action periods, accounting obligations, money laundering legislation requirements and the legal recommendation to retain records.
Accounting records are kept for six years from the end of the year in which the accounting period ends. If you have defaulted on a payment obligation owed to us, we will retain your records until the amount has been paid in full or can no longer be claimed.
We will continue to send direct marketing by email until you ask us to stop sending it.
12. Rights of the data subject
To exercise your rights, you can contact: sara.nisso@tonisco.com
Right to access to data
In accordance with the Data Protection Act, the data subject has the right to check the data concerning him or her contained in the register or to be informed that the register does not contain data concerning him or her. At the same time, the controller shall inform the data subject of the regular sources of data in the register and of the purposes for which the data in the register are typically used and disclosed.
The controller shall provide the above information upon request. The person requesting the inspection must prove his identity when requesting the inspection.
Right to rectification
You have the right to ask us to correct inaccurate or incorrect information without undue delay. You also have the right to have incomplete personal data completed by providing us with further clarification.
Right to erasure
You have the right to have us delete personal data concerning you without undue delay if:
– your personal data is no longer needed for the purposes for which it was collected or otherwise processed;
– You withdraw the consent on which the processing was based and there is no other lawful basis for processing the data in question;
– you object to the processing of your personal data on grounds relating to your particular personal situation and there is no legitimate ground for the processing or you object to the processing of your personal data for direct marketing purposes;
– we have processed the personal data unlawfully; or
– the personal data must be erased in order to comply with a legal obligation to which we are subject.
Right to restriction of processing
You have the right to have us restrict the processing of your personal data so that, in addition to retention, your personal data may only be processed with your consent or for the establishment, exercise or defence of legal claims or the protection of another person’s rights where:
– you contest the accuracy of your personal data, in which case we will restrict processing for the time necessary to verify the accuracy of the data;
– we are processing your personal data unlawfully and you object to the erasure of the personal data and instead request the restriction of the use of your personal data;
– we no longer need your personal data for the purposes of processing, but you need it for the establishment, exercise or defence of legal claims; or
– you have objected to the processing of your personal data on grounds relating to your particular personal situation and are awaiting a determination as to whether our legitimate grounds override your objection.
Right to withdraw consent
You have the right to withdraw your consent to the processing of your personal data at any time. Withdrawal of consent does not affect the lawfulness of the processing we carried out on the basis of your consent prior to its withdrawal.
Right to complain to a supervisory authority
You have the right to lodge a complaint with the Data Protection Ombudsman if you believe that your rights under the GDPR have been infringed in the processing of your personal data.The supervisory authority in Finland is the Data Protection Ombudsman (www.tietosuoja.fi).
13. Amendments to the Privacy Statement
This Privacy Policy was last updated on 9.4.2024
The controller reserves the right to amend this Privacy Policy. Changes may also be based on changes in legislation. We recommend that you consult the contents of this Privacy Policy on a regular basis.
TONISCO SERVICE OY
Privacy policy of the customer and partner register
This is a register and privacy notice in accordance with the EU General Data Protection Regulation (679/2016).
1. Name of the register
Tonisco Service Oy’s customer and partner register
2. Operator of the register
Tonisco Service Oy
0580642-5
Kalkun kehätie 19
33330 Tampere
3. Contacts on data protection issues
Jalmari Nisso
jalmari.nisso@tonisco.com
For questions relating to the processing of personal data and in situations relating to the exercise of the data subject’s rights, the data subject should contact the controller by e-mail.
4. Grounds for and purposes of processing personal data
We process your personal data to manage the customer relationship, including for electronic customer communications, order management, analysis and development of our products and services, marketing planning, targeting, sending and development. In addition, we may use your personal data to analyse, plan and develop our business and that of our group companies from time to time.
If you are a partner or a representative of a partner when you order our products or use our services, we will process your data on the basis of a contract or assignment between us.
We also process your data on the basis of a customer relationship or a legitimate interest created by a potential customer relationship.
We process your personal data on the basis of your consent when we ask for your consent to send you direct marketing and/or a newsletter. You can withdraw your consent at any time by informing kaarlo.nisso@tonisco.com or by unsubscribing from the newsletter using the “unsubscribe” link at the bottom of the newsletter.
5. Personal data processed
The controller only collects personal data from data subjects that are relevant and necessary for the purposes of use described in this Privacy Policy.
The data processed about the data subject is the data listed below:
– Name, contact details; address, telephone number and e-mail
– Service language
– Name of the company you represent, if any, and your position within the company
– Name of the company you represent and the name of the company you represent
– Marketing and related information and the information you provide in connection with it, direct marketing authorisations, targeted marketing based on your purchasing behaviour.
– Your IP address, the operating system and type of device you use, information about the website from which you access our website and information about your activity on our website.
6. Collection of personal data
We collect your personal information primarily from you when you order products or services from us.
If you represent a business customer, we collect your information primarily from you. We may also collect information about our business customers from websites and other public sources, or from a commercial operator that provides information about businesses and their representatives.
We use cookies on our website to process information collected through cookies, including where you visit our website, which parts of our website you visit and which browser you use. For more information about our use of cookies, please see our Cookie Policy https://tonisco.com/terms-conditions/ & https://tonisco.com/privacy-policy-2/. If necessary, you can disable cookies in your browser settings. If disabled, some website functions may be slowed down or access to some parts of the website may be blocked altogether.
7. Disclosure of personal data to third parties
As a rule, personal data is not disclosed to third parties.
The data is disclosed to the accounting firm Admicom Finland Oy responsible for the management and administration of invoicing and customer relations. We transfer personal data to companies belonging to the same group for the same purposes as described in section 4 above.
We may disclose your personal data in connection with a business combination to the acquiring company of all or part of our business.
In addition, we may disclose your data, for example, to public authorities, as required by law.
8. Social media platforms
Our services may use so-called community plug-ins or embeddings. The social media provider may collect information about the visitor’s visit in accordance with its privacy policy in force from time to time.
Contact information for Meta Platforms Ireland and their Privacy Officer is available in the Meta Platforms Ireland Privacy Policy at https://www.facebook.com/about/privacy. The Meta Platforms Ireland Privacy Policy applies to most services and products offered by Meta, including Facebook, Messenger and Instagram.
For more information about Meta Platforms Ireland’s processing of personal data, including the legal basis on which Meta Platforms Ireland relies and the ways in which you can exercise your rights against Meta Platforms Ireland, please see Meta Platforms Ireland’s Privacy Policy at https://www.facebook.com/about/privacy.
9. Will we transfer your personal data to a third country?
We will not transfer your data outside the EU/EEA.
10.Principles of personal data protection
The controller processes personal data in a manner designed to ensure appropriate security of personal data, including protection against unauthorised processing and accidental loss, destruction or damage.
The controller shall implement appropriate technical and organisational safeguards to ensure this objective, including the use of firewalls, encryption techniques and secure equipment rooms, appropriate access control, careful management of user IDs for information systems and training of staff involved in the processing of personal data.
Only those persons who need to process your personal data for the performance of their duties have access to the personal data we process.
11. Retention period of personal data
We retain personal data only for as long as is necessary for the purposes for which the personal data are processed or to comply with our legal obligations. We take into account, for example, legal action periods, accounting obligations, money laundering legislation requirements and the legal recommendation to retain records.
Accounting records are kept for six years from the end of the year in which the accounting period ends. If you have defaulted on a payment obligation owed to us, we will retain your records until the amount has been paid in full or can no longer be claimed.
We will continue to send direct marketing by email until you ask us to stop sending it.
12. Rights of the data subject
To exercise your rights, you can contact: jalmari.nisso@tonisco.com
Right to access to data
In accordance with the Data Protection Act, the data subject has the right to check the data concerning him or her contained in the register or to be informed that the register does not contain data concerning him or her. At the same time, the controller shall inform the data subject of the regular sources of data in the register and of the purposes for which the data in the register are typically used and disclosed.
The controller shall provide the above information upon request. The person requesting the inspection must prove his identity when requesting the inspection.
Right to rectification
You have the right to ask us to correct inaccurate or incorrect information without undue delay. You also have the right to have incomplete personal data completed by providing us with further clarification.
Right to erasure
You have the right to have us delete personal data concerning you without undue delay if:
– your personal data is no longer needed for the purposes for which it was collected or otherwise processed;
– You withdraw the consent on which the processing was based and there is no other lawful basis for processing the data in question;
– you object to the processing of your personal data on grounds relating to your particular personal situation and there is no legitimate ground for the processing or you object to the processing of your personal data for direct marketing purposes;
– we have processed the personal data unlawfully; or
– the personal data must be erased in order to comply with a legal obligation to which we are subject.
Right to restriction of processing
You have the right to have us restrict the processing of your personal data so that, in addition to retention, your personal data may only be processed with your consent or for the establishment, exercise or defence of legal claims or the protection of another person’s rights where:
– you contest the accuracy of your personal data, in which case we will restrict processing for the time necessary to verify the accuracy of the data;
– we are processing your personal data unlawfully and you object to the erasure of the personal data and instead request the restriction of the use of your personal data;
– we no longer need your personal data for the purposes of processing, but you need it for the establishment, exercise or defence of legal claims; or
– you have objected to the processing of your personal data on grounds relating to your particular personal situation and are awaiting a determination as to whether our legitimate grounds override your objection.
Right to withdraw consent
You have the right to withdraw your consent to the processing of your personal data at any time. Withdrawal of consent does not affect the lawfulness of the processing we carried out on the basis of your consent prior to its withdrawal.
Right to complain to a supervisory authority
You have the right to lodge a complaint with the Data Protection Ombudsman if you believe that your rights under the GDPR have been infringed in the processing of your personal data.The supervisory authority in Finland is the Data Protection Ombudsman (www.tietosuoja.fi).
13. Amendments to the Privacy Statement
This Privacy Policy was last updated on 9.4.2024
The controller reserves the right to amend this Privacy Policy. Changes may also be based on changes in legislation. We recommend that you consult the contents of this Privacy Policy on a regular basis.