Privacy Policy

Privacy Policy

1. Data Controller

Company: Lehmonkärki / Ari Yrjölä
Business ID: 1493322-3
Address: Lehmonkärjentie 180
Postal Code: FI-17320
City: Asikkala, Finland
Phone: +358 50 7666 330
Email: lehmonkarki@lehmonkarki.fi

2. Contact Person for the Register

Company: Lehmonkärki / Ari Yrjölä
Name: Marjo Yrjölä
Address: Lehmonkärjentie 180
Postal Code: FI-17320
City: Asikkala, Finland
Phone: +358 50 5501 776
Email: lehmonkarki@lehmonkarki.fi

3. Purpose of the Register

The collected personal data is used to identify customers and manage access rights, maintain and develop customer relationships with registered users, and for sales and marketing purposes.

4. Legal Basis for Data Collection and Processing

Customer data is collected and processed with the customer’s consent or to fulfil a customer relationship/contract.

5. Data Content of the Register

Customer’s name, company name, email address, and phone number.

6. Data Retention Period

Personal data is retained for as long as necessary to fulfil the customer contract or to develop customer service.

7. Regular Data Sources

The data collected in the register is obtained from the following sources:

  • From the data subject themselves

  • From registers maintained by authorities within the limits permitted by law (e.g., ytj.fi)

  • Additionally, data is collected using the Google Analytics analytics tool

8. Regular Disclosure and Transfer of Data Outside the EU or EEA

Data is not generally disclosed to parties outside the company. However, some of the third-party service or software providers used by the company may store data outside the EU or European Economic Area.

9. Use of Cookies

We use cookies on our website. A cookie is a small text file that is sent to and stored on the user’s computer. It enables the website administrator to identify frequent visitors, facilitate login, and collect aggregate information about visitors.

This feedback helps us continuously improve the content of our site. Cookies do not harm users’ computers or files. We use them to provide our customers with information and services that meet their needs.

If a user does not wish us to obtain the aforementioned information through cookies, most browsers allow cookies to be disabled in the browser settings. However, it should be noted that cookies may be necessary for the proper functioning of some of the pages we maintain and services we offer.

10. Register Security

Data transfer takes place via an SSL-secured connection. Data in electronic form is protected by a firewall, usernames, and passwords. Only employees of the data controller who need the data to perform their duties have access to the information.

11. Automated Decision-Making

The register does not make automated individual decisions as referred to in Article 22 of the EU General Data Protection Regulation (GDPR).

12. Rights of the Data Subject

The data subject has the right to verify what information concerning them has been stored in the personal data register. The inspection request must be made in writing, signed, and submitted to the person responsible for the register. Inspection of data is free of charge up to once per year.

The data subject has the right to request the correction or deletion of incorrect or outdated information, as well as the transfer of data from one system to another. The data subject also has the right to restrict or object to the processing of their data in accordance with Articles 18 and 21 of the EU General Data Protection Regulation.

The data subject has the right to withdraw their consent to the processing of personal data or to lodge a complaint with the supervisory authority regarding the processing of personal data.

The data subject also has the right to prohibit the use of their data for direct marketing purposes.