Privacy Statement

This is Nordic Noir Nature Art Oy’s Privacy Statement compliant with the Personal Data Act (§10 and §24) and EU’s General Data Protection Regulation (GDPR). Compiled 25 May 2018. Latest change: 2 July 2018.

  1. Controller

Nordic Noir Nature Art Oy, Innocum T2, Harjamäenraitti 14, 71800 Siilinjärvi, Finland

nnna.fi

  1. Contact Person Responsible for the Register

Harri Mähönen, CEO, +358 (0)40 553 7351, harri.mahonen@nnna.fi

  1. Data Subject Groups

Customer (contact person)

Potential customer

Partner

User of the our website

  1. Purpose of the Use of Personal Data

The data is used for customer and partner relations, customer communication and for improving improvement the user experience of the nnna.fi website in order to target our communications so that you can receive communications appropriate for your individual needs. In addition, the data is used for marketing purposes.

As for marketing purposes, we process the data based on our legitimate interest. For customer and partner relations, our processing is based on the requirement to fulfil the contractual obligations between NNNA and you.

We may also send newsletters and advertisements and take direct contact to our customers and potential customers by telephone, SMS or email or via social media services such as LinkedIn and Twitter. The data of the representatives of our customer organisations are only used for organisational communications and marketing. This kind of data processing is based on our legitimate interest. However, if you are our customer as a private person, we will only use your data for direct marketing if you have given your consent via the contact form on our website or in connection with subscribing to our newsletter.

You are always entitled to object to the use of your personal data for direct marketing by contacting us with the above contact information or by using the newsletter unsubscribe option in our newsletters.

  1. Information Content of Register

We collect names, telephone numbers, email addresses, postal addresses and other information of our customers that they have provided to us. Via cookies, we collect measurable data about our customers and this data is used for example for marketing planning. This way, we are able to target our marketing as effectively as possible. We may store the following information about you as a data subject:

Name of person, email address and title / area of responsibility

Name, contact information and industry of company

Information related to customer relationship management and communication (e.g. information about purchasing and cancellation of services as well as feedback information)

Information related to web behaviour on the NNNA website *

Information related to marketing and promotion, such as marketing efforts directed to the data subject and participating in them (e.g. webinars and events)

Technical information and cookies sent to the data subject and information related to the cookies

* Information related to web behaviour is anonymous, and actions performed on our website cannot be linked to a certain person. You can block the advertisements that are based on your web behaviour by removing and disabling cookies in your browser.

  1. Data Sources of Register

We collect and receive your data from the following sources:

We receive your data primarily from you via the contact form on our website or some other form of personal communication. The provision of personal data is a requirement for establishing and maintaining a customer relationship. In other words, you cannot order our services without providing your personal information.

If you are a representative of a customer organisation or an organisational manager, we may collect your information from data that is publically available on the Internet, such as on your company’s website.

Collected data about the use of our website.

  1. Disclosure and Processing of Data

We use cloud services (such as Microsoft Office 365) for processing personal data. Third parties have no independent right to use the data they receive from us if the extent of the use exceeds the purpose of the assignment. We ensure that all of our service providers to which we disclose your data comply with data protection law.

The data will not be diclosed to third parties for marketing purposes or any other purposes of use than those specified in this Privacy Statement without your explicit consent or if there is no legal and necessary reason defined by law for the disclosure of the data.

  1. Transfer of Data to Countries Outside of EU and EEA

We may use such service providers for the processing your personal data which may have access to your personal data from outside of EU/EEA, such as the United States. We ensure that transfers of personal data are performed in a proper and legal manner in accordance with the legislation on the processing of personal data. If we transfer you personal data outside of EU/EEA, it is always based on some of the following legal bases:

The European Commission has decided that the receiving country has ensured appropriate levels of data privacy;

We have ensured appropriate protective measures for the transfer of your personal data by using the standard data protection clauses adopted by the European Commission. In this case, you have the right to receive a copy of these standard clauses by contacting us; or

you have given your explicit consent for the transfer your personal data, or there is another legal basis for the transfer of your personal data outside of EU/EEA, such as the EU–US Privacy Shield framework, adopted by the European Commission.

  1. Protection of Register and Storage Period of Personal Data

We respect the privacy of your personal data. The register is stored to protected databases behind firewalls, using passwords and other technological measures, and this database can only be accessed by the contact person of this register.

Outdated and unnecessary data will be removed properly. We store personal data for only as long as it is required for the purposes of processing personal data as specified in this Privacy Statement. Due to accounting laws or other applicable law, we may be required to store personal data for a longer period than the aforementioned period of time.

  1. Rights of Data Subject

You have, at any time, the right to object to processing of your personal data for direct marketing purposes. All of our newsletters have a lawful link that you can use to prevent direct marketing messages to your email from that moment on.

In addition, you have the right, at any time, in accordance with applicable data protection laws:

to receive information about the processing of your personal data;

to gain access to your personal data and to review your personal data processed by us;

to demand that inaccurate and incorrect personal data about you be corrected and completed;

to demand that your personal data be removed;

to withdraw your consent and object to the processing of your personal data to the extent that the processing of your personal data is based on your consent;

to object to the processing of your personal data based on a special personal condition where we process your personal data based on our legitimate interest;

to receive your personal data in machine-readable format and to transfer this data to another controller provided that a) you have provided the personal data to us, b) we process the personal data based on an agreement or on your consent, and c) the processing will be performed automatically; and

demand that the processing your personal data be restricted. We may ask you to further specify your request and to verify your identity before processing the request. We may object to performing your request on a basis defined in an applicable law.

You also have always the right to lodge a complaint to a concerned supervisory authority or to the supervisory authority in the EU member state of your habitual residence or place of work if you consider that we have not processed your data in accordance with the applicable data protection law.

You must send the requests regading your rights in writing or by email: Nordic Noir Nature Art Oy, Innocum T2, Harjamäenraitti 14, 71800 Siilinjärvi, Finland harri.mahonen@nnna.fi

Select your currency
EUR Euro
USD United States (US) dollar