Concria Oy newsletter privacy policy

Pursuant to the EU General Data Protection Regulation, the controller has the obligation to provide data subjects with information about how their data is processed in a clear manner. This privacy policy fulfils Concria Oy’s obligation to provide such information.

1. Controller

Concria Oy
Vehmaantie 12
FI-33470 Ylöjärvi, Finland

Contact for matters concerning Concria Oy’s data file

Concria Oy, Ella Saarinen
Vehmaantie 12
FI-33470 Ylöjärvi, Finland
Mobile: +358 40 910 6245
E-mail: [email protected]

2. Data subjects

The data file holds information about customers and potential customers.

3. The purpose of storing and processing personal data

The purpose of maintaining the data file:

  • Concria uses personal data stored in the data file for marketing its training products and events as well as to keep its customers up to date on the latest changes or developments.

The purpose of the data file and the purpose of processing personal data

Concria shall process personal data only for the following predetermined purposes:

  • maintaining customer relationships and providing information about Concria services.
  1. Personal data stored in the data file

The following personal data shall be stored in the Concria customer file:

contact details, including

  • name,
  • company name,
  • e-mail address and
  • telephone number.

5. Data subjects’ rights

Each data subject shall have the rights set forth below. Any requests concerning the exercise of these rights should be addressed to Ella Saarinen, Concria Oy, e-mail: [email protected]

Right to verify personal data

Each data subject shall have the right to verify any personal data concerning him or her that has been stored in the Concria customer file.

The right to have personal data rectified

Each data subject shall have the right to request Concria to rectify any personal data concerning him or her.

Right to object

Each data subject shall have the right to object to the processing of personal data concerning him or her, provided that the personal data has been unlawfully processed.

Right to opt out of direct marketing

Each data subject shall have the right to prohibit the controller from processing personal data for direct marketing purposes.

Right to have personal data removed

Each data subject shall have the right to request the company to remove personal data that is deemed unnecessary for the purpose of processing. After processing a removal request, Concria shall either remove the relevant personal data or provide the data subject with reasonable grounds for not removing the data.

The controller may have a statutory or other right to not remove the data upon request. Furthermore, the controller has the obligation to retain accounting materials for the retention period specified in Chapter 2, Section 10 of the Accounting Act (Finlex 1336/1997), which is 10 years. Consequently, the company cannot remove any materials associated with accounting before the end of the statutory retention period.

Right to withdraw consent

If a data subject’s personal data is processed solely based on his or her consent and not, for instance, on account of a membership or an account with the company, the data subject shall have the right to withdraw his or her consent.

The right to challenge a decision by appealing to the Data Protection Ombudsman

Each data subject shall have the right to demand Concria to limit the processing of contested personal data until the relevant matter is resolved.

Right of appeal

If a data subject finds Concria to be in breach of the current data protection laws when processing the data subject’s personal data, the data subject shall have the right to file a complaint with the Data Protection Ombudsman.

Contact details for the Data Protection Ombudsman

6. Regular sources of data

Either the customer has personally subscribed to the newsletter, or his or her personal data has been collected from LinkedIn or other online sources.

7. Regular disclosure of data and transfer of information to outside the EU

In principle, no personal data is disclosed for marketing purposes outside of Concria Oy.  The company uses the MailChimp e-mail service for communications associated with customer relationship management. MailChimp is a US-based company whose servers are located in the United States. Consequently, the personal data used in the e-mail service is transferred to outside the European Union. However, each data subject’s personal data is protected by the EU–US Privacy Shield framework pursuant to current data protection laws.

For further information on the EU–US Privacy Shield framework, please contact the controller via mail or e-mail.

8. Duration of processing

Each data subject can unsubscribe from the Concria newsletter mailing list by clicking a link provided for the purpose in any one of the company’s marketing e-mails.

9. Processors

Personal data is processed both by the controller and the controller’s employees.

10. Automated decision-making and profiling

Concria does not use personal data for automated decision-making or profiling.

The use of cookies

Cookies are small text files that are placed on your device by your browser. Cookies from our website will not harm your device in any way. Websites use cookies for a wide range of purposes, such as handling the technical aspects of transferring data and improving service usability and quality. Each cookie includes a small amount of information about what you do on our website during your visit. As long as you do not clear cookies from your browser, the next time you visit the website, the content you have previously viewed can be retrieved directly from your own device instead of downloading it from our server.
Enabling cookies helps us to improve our services. We use cookies for a range of different purposes, namely to count the number of website visitors and to support the development of the website (Google Analytics). It is impossible to identify individual users based on statistical data. Statistics allow us to determine the most popular areas of our website and to identify traffic sources, terminals used (phone models and browser versions) and, for instance, each visitor’s age group. In addition, third parties (such as the online marketing service Google AdWords) use cookies to monitor our online marketing efforts, allowing them to generate reports on our marketing performance.

By default, those using our website agree to the use of cookies. If you want to block cookies from our website, you can disable them by changing the settings of your browser. You can also use the browser to delete any existing cookies from your device. The settings that you need to change depend on your internet browser. If you disable cookies, some of the website’s features or services will no longer function properly.

You can read more about cookies online on the Finnish Communications Regulatory Authority website.

Click here for further information on how Google uses cookies.