1. Data controller
Santax Medico OY, Finnish company registration no. 2723673-4, is responsible for the processing of the personal data we collect when you navigate our website and when you enter your data via our website.
If you have any questions regarding our personal data policy, you are welcome to contact us.
Below you will find our contact information:
Santax Medico OY
Email address: firstname.lastname@example.org
We only collect the required personal data for specific purposes, which you can read more about below, and we delete the data once the legitimate purpose of processing it ceases to exist. You can read more about that too.
In connection with the processing of personal data, the data subject has a number of rights, which are described at the end of this document.
2. Which types of personal data do we process?
When you wish to receive our newsletters by email or to be contacted by one of our employees, we will collect the following personal data as needed:
- Email address
- Telephone number
- Place of work/company
- Area of interest
When you subscribe to our newsletter, we also collect statistical information about the articles you read, how many times you read them etc.
The purpose of processing this data is, on the one hand, to be able to contact you as required, and on the other, to be able to send newsletters by email to you for as long as you wish, and to produce newsletters that have your interest.
In general, you yourself provide the data we collect about you, and this is general data as defined by the terminology of the EU GDPR.
The legal basis for collecting the mentioned data is:
- When wishing to be contacted – point b of Art. 6(1) and point f of Art. 6(1) of the GDPR.
- Newsletters - point f of Art. 6(1) of the GDPR.
You may inform us at any time that you no longer wish to receive these newsletters by email – you do that by unsubscribing from the mailing list in one of the newsletters or by sending an email to email@example.com.
We do not pass on your data on to any third party.
We use MailChimp, an American company, when preparing and distributing our newsletters by email. As a consequence, MailChimp is the data processor for Decotron. Your data is processed via the MailChimp server in the USA, and MailChimp is covered by Privacy Shield.
We keep your personal data for as long as it is necessary in relation to the stated purposes.
Your data will be deleted from MailChimp no longer than 6 months after you unsubscribe from our newsletters by email.
In relation to the personal data we receive when you ask us to contact you via the website, the time of deleting depends on what happens afterwards. If we initiate cooperation, your data will, as a minimum, be kept for the period that the cooperation lasts. In other instances, your data will be kept for a period, the length of which we cannot state at the present moment. The criteria we take into account when determining how long we will keep your data, depends, among other things, on whether we find that it is still relevant to be able to contact you.
3. Cookies at www.santax.fi
4. Security - this is how we look after personal data
Santax Medico has an internal IT security policy, which all employees have been informed about and know. The IT security policy contains instructions and measures which protect your personal data. This means that we, to the widest possible extent, have secured the processing of personal data against accidental or illegal destruction, loss, change and unauthorised disclosure or publication.
We have standard procedures for granting access rights to those of our employees who process personal data, and we also have standard procedures for stopping the access when an employee no longer processes personal data.
We back up routinely and use encryption whenever necessary.
Our employees are continuously instructed in the processing of personal data.
5. Your rights
In accordance with the GDPR, you have a number of rights in relation to the way we process data about you.
Right to see data (right of access)
You have a right to gain access to the data that we process about you as well as other information.
Right to rectification (correction)
You have a right to obtain rectification of incorrect data about you.
Right to erasure
In special instances, you have the right to obtain erasure of your data before the time of the ordinary, general deletion.
Right to restriction of processing
In certain instances, you have the right to obtain restriction of processing of your personal data. If you have the right to obtain restriction of the processing, in future, we may only process the data – except for keeping it – with your consent or for the establishment, exercise or defence of legal claims or to protect a person or for reasons of substantial public interest.
Right to object
In certain cases, you have the right to object against our legal processing of your personal data.
You can read more about your rights in the Norwegian Data Protection Authotity’s guidelines about the right of data subjects, which you will find at www.tietosuoja.fi
6. Complaint to the Finnish Data Protection Authority
You have the right to file a complaint with the Finnish Data Protection Authority if you are dissatisfied with the way in which we process your personal data. You can find the Finnish Data Protection Authority’s contact information at www.tietosuoja.fi .
7. Pictures on the website
Pictures on www.santax.fi must not be used in other contexts without Santax Medico's written consent.