Privacy Policy

Privacy Policy

Tietokettu's stores and processes personal data in EU GDPR together with current general on privacy (679/2016) setting. This privacy statements is draft with personal data law 10§(s)

Last update 16.5.2022




1. Registrar

Tietokettu, Business identity code: 2991794-7
Address: Piiporaitti 1
37500 Lempäälä
Finland


2. Registry contact person

Registrar
Kimi Syrjä
kimi.syrja@tietokettu.net
+358 44 204 2526

3. Privacy Officer contact

Privacy Officer:

Onni Kontiokorpi

onni.kontiokorpi@tietokettu.net

Security and abuse contanct info:
abuse@tietokettu.net


4. Purpose of the processing of personal data

We use personal information for billing, administration, creating user accounts for specialized platforms (e.g., VPS Management, Gaming Management, etc.) and internal marketing. Internal marketing includes a newsletter if you have subscribed to it. We also use personal information to reach the customer if we feel the need to do so. If a customer's account is lost, we may also ask him or her for personal information to recover the account. However, we do not provide the information directly or we only ask for it. Tietokettu defines the customer as a person / company / association / partner who has an account or product in Tietoketu's services.


5. Legal basis for the processing of personal data

With the consent of the customer or partner who controls the processing of personal data. He / she will provide other personal data to the persons who maintain the luvankettu.net network in accordance with the “Purpose of processing personal data” section of the Information Sheet. However, separate persons with only access to the data have been designated to process sensitive information. We identify individuals for sensitive information.


6. Information content of the register

The following information is stored in the register:

  • Full Name
  • Person ID
  • Email
  • Name of company
  • Address
  • Phone number
  • IP-address
  • Information collected through browser cookies

ID required to register some domains for private individuals and the purchase of dedicated servers.


7. Regular data sources

Information provided by the customer in connection with registration or purchase.
In addition, customer-related information is automatically collected when you use our website.


8. Data regular donations

data is not disclosed regularly third without customer consent. Disclosure to third parties if necessary with personal data law 8§(s). Data will be disclosed outside the EU or the EEA in the following situations:

  • Stripe inc.
    Surrenderof the transfer: Processing of payment transactions
    Information to be provided: first name, last name, e-mail address, payment card information, account number, account number
    holder, the required browser cookies and the IP address.
    Privacy: https://stripe.com/privacy-shield-policy

In other cases, the data will not be disclosed outside the EU or the EEA. Such situations include, for example, the transfer or registration of a .FI domain name, where we pass the information on to Traficom.


9. Principles of protection of personal data

Documents are kept in a locked room to which access is restricted only to those employees who have the highest right to process the materials. Data is destroyed by shredding and then incineration. Access to electronic data is restricted to those employees, who have the right to do so. The data controller shall ensure the security of the data and that the data cannot be accessed by persons to whom the data do not belong. The data is stored in a system to which only part of the employees have access, who have the right to service the equipment. The servers are protected by a firewall and the hardware cannot be accessed for they are in a locked state with access control. The servers are located in Tietoketu's own premises in Lempäälä.

Disposing of old hardware, such as hard drives, will destroy the hardware that the information cannot be read or accessed in such a way that it could fall into the wrong hands.


10. Rights of the data subject

Registered right to acces information (right of access)

The data subject has the right to inspect, what information about her is stored in the systems. The right to inspect may be denied on the grounds provided by law.

The data subject has the right to rectify the data

The data subject has the right to claim, that inaccurate and incorrect personal data concerning the data subject are corrected by the controller without undue delay. In view of the purposes for which the data were processed, the data subject has the right to have incomplete personal data completed, inter alia by providing additional information.

The data subject's right to request a restriction on the processing of data

The data subject has the right to have the controller delete personal data concerning him or her under certain conditions, for example, in a situation, where there are no longer grounds for processing personal data or the data subject withdraws his or her consent to the processing of personal data. If, in connection with the withdrawal of consent, there is no basis for processing other than consent the controller must then delete the data subject's personal data.
There is no right to delete data in certain exceptions provided by law, for example, when data is processed for the purpose of performing a statutory task.

The data subject's right to transfer data from one system to another

The data subject has the right to require the controller to restrict the processing of his or her personal data, for example in that situation, while the data subject is awaiting a response from the controller to a request to rectify or delete her data.

The data subject's right to object to the processing of the data

In that, when the data subject has himself provided the customer register with data which is processed on the basis of the data subject's consent or order, the data subject shall have the right to obtain such information in a machine-readable form, as a general rule, and to transfer that information to another controller.

Right of the data subject to lodge a complaint with the supervisory author

The data subject has the right to object to the processing of her data for certain processing criteria, such as profiling and direct marketing.

Right of the data subject to lodge a complaint with the supervisory author

The data subject shall have the right to lodge a complaint with the competent supervisory authority, if the controller has not complied with the applicable data protection regulations in its operations.

The contact person for matters related to the data subject's rights is the Data Protection Officer, contact details in section 3 of the leaflet.