Apply on the site

Liquid error (layout/theme line 261): Error in tag 'section' - 'mega-menu-1' is not a valid section type Liquid error (layout/theme line 264): Error in tag 'section' - 'mega-menu-2' is not a valid section type

Privacy policy

Updated on August 2, 2021

  1. The keeper of the register

Wolttinen Oy
Lemuntie 7 A
00510 Helsinki

Social security number 2655749-9

  1. Registry name customer register

  1. Purpose of personal data processing

Personal data is collected, processed and used with the customer's consent to manage / Wolttinen Oy's customer relationship and maintain contact. The information in the register is primarily used to send newsletters, offers and benefits to the customer. In addition, the data can be used for statistical and service development purposes.

5. Data content of the register

The personal data collected by the controller may include, among other things, the following types of data and changes made to them:

  • First and last name
  • contact information (postal address, email address, phone numbers)
  • sexual
  • communications aimed at the data subject and related activities
  • direct marketing options
  • Information regarding the use of digital services of the registrar
  • information about cookies and other similar functions sent to the registrant's terminal devices (such as computers and mobile devices) and the data collected with them, if the person can be identified based on this information
  • possible recordings of customer service calls and customer service-related e-mail and online conversations, for example on social media channels
  • login credentials of the data subject
  • operation in the online service after logging in
    1. Regular sources of information

    Most of the information is obtained from you at the beginning and during the customer and stakeholder relationship, as well as from the programs with which you use our products and services.

    The controller receives personal data and their updates also from authorities and organizations that offer credit and personal data acquisition and updating services, as well as from public directories and other public data sources, such as company websites and social media channels. For marketing purposes, the Controller collects personal data from registered users in connection with various activations, such as lotteries, contests, surveys or events (by the Controller or its partners).

    1. Data transfer to third parties

    The Controller may share your personal data with third parties performing services for the Controller, e.g. for payment. These services can be, for example, customer service, software services, research activities, marketing and producing events. The controller may share your personal data in order to collect payments for products and services, and it may, for example, transfer or sell unpaid invoices to third parties offering collection services. online store uses Klarna and Checkout Finland payment methods. You can find more information about Klarna here and Klarna's terms of use here . Klarna processes your personal data in accordance with applicable legislation and Klarna's privacy statement . You can find more information about CheckOut here . CheckOut processes your personal data in accordance with applicable legislation and CheckOut's privacy statement in accordance with.

    Protecting your personal data is important to the Controller, which is why it does not allow the parties in question to use the data for any purpose other than providing the services in question, and it requires the parties to protect the user's personal data in accordance with this privacy statement and applicable legislation.

    The Controller shares your personal data with partners with whom the Controller jointly manages and implements projects.

    E-commerce transactions at the product level are transmitted to the Omnisend marketing and content platform, which is used e.g. in email marketing. These third parties may under no circumstances use the information provided for their own purposes, and they will only be provided with information relevant to the implementation of the service. All data transfer with third parties takes place through an encrypted connection.

    1. Data transfer outside the EU or the European Economic Area / Wolttinen Oy as a rule, does not transfer or process data outside the European Union or the European Economic Area. If data is exceptionally transferred outside the EU/EEA area, an adequate level of personal data protection is ensured in accordance with the applicable legislation.

    1. Principles of registry protection

    The registry data is stored on a properly secured server and is only Available to persons specified in advance by / Wolttinen Oy .

    1. The registrant's right of refusal

    The registered person has the right to prohibit the data controller from processing information about him/her for direct advertising, remote sales and other direct marketing as well as market and opinion research as well as personal registry and genealogy research. The ban must be made in writing to the company's postal address.

    1. The registrant's right of inspection

    The registered person has the right to check what information about him has been stored in the personal register. The inspection request must be sent in writing via post, or you can contact us via e-mail, in which case we will agree on the necessary measures to ensure the customer's identity and deliver the information.

    1. Data retention and data correction

    We keep the data for the time necessary to be able to act in accordance with this statement. We delete the data in accordance with the requirements of the legislation when, for example, the retention period according to the Accounting Act is fulfilled.

    The controller corrects, deletes or completes personal data in the register that is incorrect, unnecessary, incomplete or outdated in terms of the purpose of the processing, on its own initiative or at the request of the data subject. The registered person must contact the person responsible for the registry affairs of the registrar in order to correct the information.

    1. Is it necessary for you to give us your personal data?

    In order for the Data Controller to fulfill its contractual obligations related to the relationship between us, the Data Controller must receive and process your personal data. Without the necessary personal data, we cannot offer you our products and services in connection with which it is necessary to process personal data, such as e-commerce purchases.

    1. Which country's legislation applies to the processing of your data?

    We are a Finnish company. This personal register and the processing of the personal data contained in it are subject to Finnish legislation and EU legislation directly applicable in Finland, such as the EU Data Protection Regulation.

    1. How can we update this privacy statement?

    We are constantly developing our business and that may also mean changes related to the processing of personal data. If necessary, we will update the data protection statement to reflect the changed operating methods. Changes can also be based on changes in legislation. We recommend that you familiarize yourself with the content of the privacy statement regularly.

    If we start to process your personal data for a purpose other than the one for which your personal data was collected, we will inform you of the matter and the updated data protection statement before that further processing. Regarding other changes, we will inform you on our website about updating the privacy statement.