privacy policy - Toyme Lab - compatible with GPDR

Privacy Policy – Customer and Marketing Register for Toyme Lab Oy

Created 15th January 2019

1 Registry owner

Toymelab Oy (Business ID: 1615150-8)
Rautatienkatu 14 A
33100 Tampere
info@toymelab.com

2. Contact person
Mika Jokiniemi
Rautatienkatu 14 A
33100 Tampere
mika.jokiniemi@toymelab.com

2 Name of the registry

Toyme Lab Oy Customer and Marketing Register

4 Purpose of processing personal data

The information stored in the register will be used solely for marketing purposes.

5 Information content of the register

The information stored in the register are name, address, telephone number, email address.

6 Regular sources of information

The data content of the register is collected at different stages of the life-cycle of the customer relationship.

7 Regular disclosure of information

The information contained in the register will not be disclosed to third parties at any circumstances.

8 Data transfer to the EU or EEA outside

Personal or business information contained in the register are not transferred outside the EU or the EEA at any time.

9 Principles of Registry Security

A Manual material

As a rule, the data is not processed manually or printed. If a manual data file are printed, they are always stored in a locked place. Unnecessary manual material are disposed in a secure manner, in accordance with decisions and regulations on data retention and instructions.

B Data processed by computer

Data collected in databases are protected by firewalls, passwords and other technical means. Databases and their backups are located in locked spaces and access to data is restricted to certain pre-designated persons.

10 Right of Inspection

According to the EU General Data Protection Regulation ((EU 2016/679)), the data subject has the right to check the data in the register. The request should be addressed to the contact person specified in section 2.

11 Right to claim information repair

According to the EU General Data Protection Regulation ((EU 2016/679)), the data subject has the right to request the correction of incorrect information about himself in the register. The request should be addressed to the contact person specified in section 2.

12 Prohibition

According to the EU General Data Protection Regulation (EU 2016/679), the data subject has the right to prohibit the controller from processing data concerning him / her directly for direct marketing, distance selling and other direct marketing, as well as market and opinion surveys, as well as personal tracing and genealogy research.

13 Deleting Information

Personal data entered in the register are reviewed regularly and the data will be deleted when there is no longer legal basis for their storage.

14 Getting Connected

Possible contact requests and additional information requests should be directed to the person specified in section 2.