privacy statement

This is Pramia Oy’s combined register in accordance with Articles 12 and 13 of the Personal Data Act (Sections 10 and 24) and the EU General Data Protection Regulation (679/2016) and the Privacy Statement as well as an information document for Pramia Oy’s customers, potential customers and website users. Prepared: 1/1/2021 / Updated: 1/1/2024

1. Registrar 
 Name

Pramia Oy Address: Ilvesjoentie 1060, 61760 ILVESJOKIY ID: 0961012-0 The register description and explanation can be seen on the company’s website. Contacts according to Sections 26 and 30 of the Personal Data Act must be made in writing and signed to the above-mentioned address or in person at the controller.

2. Contact

Tero Mäkinen, p. +358 40 702 6470
tero.makinen (at) pramia.fi

3. Registry name

Pramia Oy’s customer, marketing and online service user register

4. The legal basis for processing personal data and the purpose of processing personal data

The purpose of processing personal data of customers (contact persons) is to enable contacts required by customer service, maintenance of customer relations and marketing. The basis for processing is the controller’s legitimate interest. The purpose of processing personal data of potential customers and website users is for contact requests and orders coming through the website. The basis for processing is the legitimate interest of the controller. The information is not used for automated decision-making or profiling.

5. Registered persons

Pramia Oy’s customers, potential customers and stakeholders.

6. Data content of the register

Person’s name, email address and title / area of ​​responsibility. Company name, contact information and industry. Information related to customer care and contact. Information related to online behavior on Pramia Oy’s websites and services. Information related to marketing and sales promotion, such as marketing measures aimed at the data subject and participation in them (e.g. contests and events). IDs/profiles in social media services. Technical information as well as cookies sent to the browser of the registered user and related information.

7. Regular sources of information

The collection of name and other contact information is based on a customer relationship or other connection with Pramia Oy. The information to be saved in the register is obtained from the customer, e.g. From messages sent via web forms, by e-mail, by phone, via social media services, contracts, customer meetings and other situations where the customer gives out their information. We also track cookies and a visit to Pramia Oy’s website leaves a trace, an IP address. Personal data can also be purchased for one-time marketing use from registers outside of Pramia Oy. Information can also be obtained from the trade register or other similar public business register.

8. Regular transfers of information

Information is not disclosed to other parties. Information can be published to the extent agreed with the customer.

9. Regular transfers of data and transfer of data outside the EU or EEA

Digital information is kept in the online service mainly in the EU area, in secure data centers.

10. Principles of registry protection

Care is taken when processing the register and the information processed with the help of information systems is properly protected. When registry data is stored on Internet servers, the physical and digital data security of their hardware is taken care of accordingly.  The registrar ensures that stored data as well as server access rights and other data critical to the security of personal data are handled confidentially and only by those employees whose job description it is.  We dispose of outdated and unnecessary information in an appropriate manner. We retain personal data only as long as it is necessary to fulfill the purposes of personal data processing defined in this privacy statement. Due to the obligations of the Accounting Act or other applicable law, data may have to be kept longer than the above-mentioned period.

11. The right of inspection and the right to demand correction of information

Every person in the register has the right to check their information stored in the register and demand the correction of any incorrect information or the completion of incomplete information. If a person wants to check the information stored about him or demand correction, the request must be sent in writing to the controller. If necessary, the registrar may ask the requester to prove his identity. The controller responds to the customer within the time stipulated in the EU data protection regulation (generally within a month).

12. Other rights related to the processing of personal data

A person in the register has the right to request the removal of personal data about him from the register (“the right to be forgotten”). Those registered also have other rights according to the EU’s General Data Protection Regulation, such as limiting the processing of personal data in certain situations. Requests must be sent in writing to the controller. If necessary, the registrar may ask the requester to prove his identity. The controller responds to the customer within the time stipulated in the EU data protection regulation (generally within a month).

13. Changing the privacy statement

We constantly strive to develop our services and therefore reserve the right to change this privacy policy.