This is a register and data protection statement in accordance with the Personal Data Act (10 ja 24 §) and the EU General Data Protection Regulation (GDPR). Information updated 9/28/2020.
Xeraliving Oy, Business ID: FI 31358734
Valimotie 17-19, 00380 Helsinki
e-mail: [email protected]
Phone: +358 440552355 / +358 442755152
2. Contact person responsible for the register
Veera Ylikotila / +358 440552355
Address- and contact information above.
3. Name of register
Xeraliving customer register
4. Legal basis and purpose of the processing of personal data.
The legal basis of personal data under the EU General Data Protection Regulation is the legitimate interest of the registrar (customer relationship).
The purpose of the processing of personal data is the communication with customers.
5. Information content of register
Information saved in the register are: person’s name, contact information (telephone number, e-mail address, address), account/profile in social media services, information regarding ordered service and their changes, billing information, other information related to the customer relationship and orders.
6. Regular sources of information
The information saved in the register is handed over by the customer themselves when placing an order at the online store, by e-mail or through social media channels.
7. Regular transfers of data and transfers of data outside of the EU or the EEA.
Only information regarding the order processing is transferred to Verkkologistiikka Oy. Information is not passed on to any other instances, except requests from public authorities.
8. The registers protection principles
The register is handled with care and the data processed by the information systems are adequately protected. When register information is saved on an internet server, the physical and the digital security of their hardware is adequately addressed. The registrar takes care that the saved information both access rights to the server and other information critical to the security of personal information will be treated confidentially and only by their employees, in which case it will be part of a job description.
9. Right of inspection and right to demand correction of information
Each person in the register has the right to review saved information about themselves and to request a correction of possible incorrect information or to supplement incomplete information. Would the person like to verify information about themselves or request them being corrected, the request should be sent in a written form to the registrar by e-mailing [email protected] The registrar may, if necessary, request the applicant to prove their identity. The registrar will answer the customer according to the timeframe set out by EU General Data Protection Regulation (normally within a month).
10. Other rights related to the processing of personal data
The person in the reister has the right to ask for information regarding themself to be deleted (“the right to be forgotten”). The registered individual also has other rights under the EU’s general data protection regulation, such as restrictions on the processing of personal data in certain situations. Requests should be sent in writing to the registrar at [email protected] If necessary the registrar may ask the applicant to prove their identity. The registrar will answer the customer according to the timeframe set out by EU General Data Protection Regulation (normally within a month).
Cookies do not harm the users computer or files. Would a user visiting our webpage not want us to receive the above information through cookies, you can turn off cookies by changing your browser settings. However, it is good to keep in mind that cookies may be necessary for the proper functioning of the online store, such as the storage of the shopping cart.
ANONYMOUS WEB ANALYSIS
In order to gather anonymous data on web visit, we can use the following tools and services: