Registry and Privacy Policy

Registry and Privacy Policy

This is the Registration and Privacy Statement of Coocosdsg (Merjanoma Design) Personal Data Act (Articles 10 and 24) and EU General Data Protection Regulation (GDPR). Done at 06.05.2019. Latest change 06.05.2019.

Registrar

COOCOSdsgn

Virokatu 11B 32, 00170 Helsinki

coocos@coocos.fi

+358 400 998188

Contact person in charge of the register

Merja Salonen

Name of the registry

Company Customer Register

Legal basis and purpose of processing personal data

The legal basis for processing personal data under the EU General Data Protection Regulation is the legitimate interest of the controller with regard to the customer relationship. The purpose of processing personal data is to communicate with customers and maintain customer relationships. Data is not used for automated decision making or profiling.

Content of the register

The information stored in the register is: person’s name, contact information (phone number, e-mail address, address), information about ordered services and their changes, billing information, other customer relationship and subscribed services information.

Regular sources of information

The information to be recorded in the register is obtained from the customer: messages sent via web forms, via email, telephone, social media services, contracts, customer meetings, and other situations where the customer discloses their information.

Regular disclosure of data and transfer of data outside the EU or the EEA
The information is not regularly disclosed to other parties. The information may be published to the extent agreed with the customer.
Data can also be transferred by the controller outside the EU or the EEA.
Personal information will never be disclosed to different parties

Principles of Registry Security

The registry is handled with care and the information processed by the information systems is properly protected. Keeping registry information on Internet servers ensures that the hardware and digital security of their hardware is properly managed. The Controller ensures that the stored data, as well as server access rights and other information critical to the security of personal data, is treated confidentially and only by the employees whose job description it contains.

Right of inspection and right to request information repair

Every person in the register has the right to check the information stored in the register and to request the correction of any incorrect information or supplementation of incomplete information. If a person wants to check the information stored on him or needs to be corrected, the request must be sent by email to the controller. The controller may ask the applicant, if necessary, to prove his / her identity. The controller is responsible to the customer within the timeframe provided for in the EU Data Protection Regulation (as a rule within one month).

Other rights related to the processing of personal data

The person in the register has the right to request that the personal data concerning him be removed from the register (“right to be forgotten”). Likewise, the data subjects have other rights under the EU General Data Protection Regulation, such as restricting the processing of personal data in certain situations. Requests should be sent by email to the Registrar. The controller may ask the applicant, if necessary, to prove his / her identity. The controller is responsible to the customer within the timeframe provided for in the EU Data Protection Regulation (as a rule within one month).