Privacy Policy
1. Data Controller
Data Controller: Tmi Annamaaria Kangas
Business ID: 2606314-9
Address: Rantakiventie 10 G 00960 Helsinki
Email address: ansku@healthfactoryfi.com
Data Controller Contact Person
Annamaaria Kangas, ansku@healthfactoryfi.com, Rantakiventie 10 G 00960 Helsinki, 0407642509
Data Protection Officer
Annamaaria Kangas, ansku@healthfactoryfi.com, Rantakiventie 10 G 00960 Helsinki, 0407642509
2. Registered
Tmi Annamaaria Kangas customers and potential customers who have requested additional information and/or a quote for services. Website users.
3. Purpose of the register and data sources
The purpose of the register is to improve customer relationships, enable appointment bookings and maintain billing information.
Data is collected from the data subjects themselves.
The personal data collected is used to maintain customer relationships between the Data Controller and the customer, to invoice, and to enable the contacts and messages required by the service. If there is a treatment relationship between the customer and the Data Controller, the system also stores the information that the customer has approved to be stored in terms of the treatment relationship. Regarding treatment data, the information is exported to the Kanta archive maintained by the authorities, which is required by law to be exported.
The information is not disclosed to third parties. The Data Controller may also send marketing and other information messages to the customer, if the customer has permitted it. The customer may refuse these communications by notifying them by email to ansku@healthfactoryfi.com
4. Legal basis for processing personal data
The controller processes personal data on the basis of a contract with the customer for the purpose of implementing the contract or taking steps prior to the contract. Processing personal data for the purpose of managing the customer relationship and for marketing purposes is possible on the basis of the controller's legitimate interest in the customer relationship.
5. Personal data stored in the register
When you make purchases and reservations as a customer, Tmi Annamaaria Kangas collects and processes the following personal data about you:
Identification information, such as name, year of birth
Contact information, such as address, telephone number and email address
Payment information
Customer number
IP address and other information regarding the use of Tmi Annamaaria Kangas websites or applications. The Tmi Annamaaria Kangas cookie policy applies to the storage of cookies and the information collected through them.
Other information that you can provide yourself in connection with the service contract, such as the contact information of a close relative in the event of an emergency.
6. Regular data transfers
Data will not be transferred for marketing purposes outside Tmi Annamaaria Kangas. We have ensured that all our service providers comply with data protection legislation.
7. Data retention
Data will be retained for the duration of the customer relationship or as long as required by law. Data retention takes into account applicable laws, regulations and directives.
Data can only be requested to be deleted if permitted by law and the customer requests it.
8. Transfer of data outside the EU
The Google LLC privacy policy operates within the framework of the EU–U.S. Privacy Shield program, so the transfer of data is legal in accordance with the EU General Data Protection Regulation and the level of data protection is ensured: the EU–U.S. Privacy Shield program. Google LLC encrypts, or hides, the data, wherever it is in its possession.
9. Right of inspection and prohibition
The customer has the right to check the data concerning him, the right to demand the correction of incorrect data, the right to prohibit the use of the data he has provided for direct marketing purposes, etc. and otherwise to rely on his rights protected by the Personal Data Act and the EU Directive, unless otherwise provided by law.
Requests must be addressed to the contact person of the register specified in section 1. A list of all stored data can be requested no more than once a year.
10. Cookies
What is a cookie?
The controller uses cookies on its websites and in the appointment booking system. A cookie is a small text file that the internet browser stores on the user's device.
Use of cookies on websites
The controller uses both session-specific, removable cookies and cookies stored in the user's browser on its websites. Session-specific cookies remain in the user's browser memory only for the duration of the browser's opening. The purpose of the stored cookies is to identify the user's browser for the user's next visit to the website. In addition, the controller uses cookies to monitor visitor traffic on its websites and to make its service more user-friendly, secure and smooth. The controller also uses the Google Analytics web analysis service on its websites to implement the controller's data collection functions using cookies. Cookies collected through Google Analytics are stored on the servers of that service provider, which may be located outside the European Union.
Blocking cookies
The user can specify in their browser settings whether they want to accept or deny the use of cookies. The user can also specify the browser setting to notify about the use of cookies by websites, in which case the user can accept the use of cookies on a case-by-case basis. If the user blocks the use of cookies, this may affect the functionality of the controller's website.
11. Principles of register protection
The controller complies with the EU General Data Protection Regulation on the processing of personal data and the Finnish Data Protection Act when storing customer data. Personal data is kept confidential. Electronic registers are protected by a firewall, user names and passwords and are stored in accordance with the requirements required by law.