Data protection policy
General data protection regulation (EU) 2016/679
Article 12–14 DATA PROTECTION POLICY 10/28/2020
1. The controller
Black Moda Oy, Business ID1034650-7
Haikanvuori 5 c 1, 33960 PIRKKALA
2. Contact person concerning the register
Heli Harlin, Black Moda Oy
Haikanvuori 5 c 1, 33960 PIRKKALA
3. Name of the register
Personal register of Black Moda Oy’s contact form
4. Purpose of the processing of personal data
Personal data is processed in order to manage Black Moda Oy’s customer relationships.
The processing of personal data is based on the Personal Data Act:
• 8 § clause 1, sections 5 and 7 (management of customer and stakeholder relations)
• 19 § (direct marketing and parallel broadcasts)
The processing of personal data has not been outsourced.
5. Data content of the register
The following information is stored about the registered person:
• User name, company name, phone number and email address.
6. Regular sources of information
The information to be stored in the register comes from the data subject himself or herself.
7. The handing over of data
Personal data will not be handed over to third parties, except to authorities.
8. Transfer of data outside the EU or EEA
The information contained in the register will not be transmitted outside the EU or EEA. However, we use the technology of foreign service providers on our website and the data collected by their possible cookies are transferred and stored to service providers’ servers, some of which may be located outside the EU. These include: Google Analytics.
9. Registry Security Principles
Manual material: No paper printout is kept from the register.
Data processed by computer: The technical protection of the register against data breaches and other breaches has been entrusted to a professional service provider. Every machine and server has security software. The network is protected by a firewall.
The organization has only certain, specifically named individuals who have the right to access the registry. Access to the register requires a username and password. Users are bound by professional secrecy.
10. Right to inspection
Everyone has the right to review the information concerning them stored in the personal records of Black Moda Oy’s contact form. The request for inspection must be presented in a signed document, or an equivalent. A request for inspection cannot be made by telephone.
The controller has the right to verify that the person inspecting the data is checking their own personal information, and is not snooping. The information shall be provided without undue delay, in an understandable form and upon written request. The right for inspection is free of charge once a year. Requests for inspection must be submitted to the registry administrator referred to in section 2.
11. Right to request rectification
A registered person may submit a rectification request to the controller concerning any incorrect information, which should state, for example:
– where the information is contained in the register or which matter the processing of the data concerns
– which data needs to be rectified
– whether the data is required to be completely deleted, the rectification of the data is otherwise inaccurate or the data stored is to be supplemented by the data subject’s own view
– If a correction is required for incorrect data, a verbatim substitute text must be provided
– the requirement must state why the information is incorrect
– where a document can be used to indicate the information provided in the correction claim, such a document shall be attached to the claim
The correction request must be submitted to the person in charge of the registry mentioned in section 2 in a document signed by him / her or such is an equivalent. A rectification request cannot be made by phone.
12. Other rights related to the processing of personal data
According to Section 30 of the Personal Data Act, the data subject has the right to prohibit the controller from processing their data regarding direct communications, distance selling or direct marketing, as well as market and opinion research (§ 30 HetiL).
We use on our website the data collected by foreign service providers (Google Analytics) and their possible cookies, transferred and stored to service providers’ servers, some of which may be located outside the EU.
A cookie is an unlimited small text file to be sent to and stored on a user’s computer. Cookies do not hurt users’ computers or files. Cookies can be disabled. Deleting is done through the browser settings. If the function is switched off, it is good to note that cookies may be necessary for some services to function properly.