1. The holder of the register
Oy Frak Ltd (2597358-9)
Pyhäjärvenkatu 5 A
2. Contact person
3. Name of the register
Domain247 Marketing and Customer RegistryWe process the personal data of our customers as well as our potential customers and their representatives in the register.
4. Purpose of the processing of personal data
The information collected in the register is used for customer relationship management, customer communication and the provision of services and improving the user experience provided by Domain247, with the aim of targeting the messages so that the Registrant receives the appropriate communication. In addition, the information is used for marketing purposes.Our treatment is a legitimate interest in terms of marketing (GDPR 2016/679, Article 6, point F) and an agreement between the Supplier and the Customer in terms of customer relationship management (GDPR 2016/679, Article 6, point B). We will also send you electronic direct marketing messages with your consent (GDPR 2016/679, Article 6, Section A).Personal data will only be processed for the purposes of electronic direct marketing with the express consent of the data subject. Withdrawal of consent is instructed in connection with each marketing message and can also be withdrawn by contacting Domain247 customer service.
5. Information content of the register
The register may include name, telephone, e-mail, address and other information provided by the Registrant.The following information about the registrant can be stored in the register:Person’s name, email address and title Company name, contact information Customer relationship management and communication information Information related to the contract, such as products and services purchased Information related to online behavior on Domain247 websites and services Usernames and other credentials Any other information collected with the express consent of the customer Marketing and promotional information, such as marketing activities targeted at the participant and participation in them (eg webinars, competitions and newsletters
6. Regular sources of information
The collection of name and other contact information is based on a customer relationship or other relationship with Domain247. Information is collected in connection with the conclusion of a contract, in connection with the registration of product trials or when the Customer uses the services of Domain247.We therefore collect personal data mainly from the Registrant himself. Personal information may also be obtained from the Customer’s contact person or other partner who adds the Registered Domain247 as a user of the services or as the Customer’s contact person. Personal data can also be purchased for one-time marketing purposes from registries outside Domain247. We may also collect personal information from public sources.
The information will not be passed on to third parties outside our company group for marketing purposes.Domain247’s own services are produced on servers located in Finland. Personal data may be processed by service providers who may have access to personal data from outside the EU / EEA, such as the United States. Domain247 is responsible for the proper and lawful execution of transfers in accordance with the legislation on the processing of personal data.In all cases, personal data will only be transferred outside the EU / EEA territory on one of the following legitimate grounds:The European Commission has decided that an adequate level of data protection has been ensured in that recipient country. We have taken appropriate safeguards to the transfer of your personal data using standard data protection clauses approved by the European Commission. You will then be entitled to obtain a copy of those standard clauses by contacting us; or you have given your express consent to the transfer of your personal data, or there is another legal basis for the transfer of your personal data outside the EU / EEA, such as the Privacy Shield Arrangement approved by the European Commission for the United States.
8. Data retention period
The confidentiality of personal information is respected by Domain247. The registry is stored in databases that are protected by firewalls, passwords and other technical means and can only be accessed by persons authorized by Domain247.Obsolete and unnecessary data will be disposed of in an appropriate manner. Personal data will only be kept for as long as is necessary for the purposes of the processing of personal data as defined in this privacy statement. Due to the obligations of the Accounting Act or other applicable law, the information may have to be kept longer than the above-mentioned period.
9. Rights of the data subject
The data subject has the right to inspect, rectify and prohibit in accordance with the Data Protection Regulation.The data subject is entitled to check the information contained in the personal register concerning him.Registry information is verified by submitting a signed and dated verification request to Domain247 customer service. The request for verification must be accompanied by a copy of the official identity card. The right to inspect can also be exercised by visiting the premises of Domain247 in person, in which case the inspection requires an appointment in advance through customer service.If the Data Subject discovers that his or her data contains errors or omissions or that they have been processed in violation of the purpose of use of the register or applicable legislation, he or she has the right to demand the correction, prevention, restriction or deletion of incorrect data in the register. Domain247 will make the necessary corrections at the request of the data subject.The data subject has the right to prohibit the controller from processing personal data about him / her for direct mail, distance selling and other direct marketing, as well as for market and opinion research, as well as for personal registration and genealogy.If the Data Subject finds that his or her rights under the EU Data Protection Regulation have been violated, he or she has the right to lodge a complaint with the supervisory authorities.
10. Registry Security Principles
The register does not contain physical material. With regard to electronic material, the fight against abuse and intrusion attempts is implemented with different levels of technical and application solutions. Such solutions include the use of SSL encryption, firewalls, passwords, and other technical means. Persons who have access to the register database in the course of their work are identified by usernames and passwords which are personal. The hardware related to the registry is stored in locked and controlled premises. Databases are backed up daily.
11. Changes to the Privacy Statement
The controller is constantly developing its activities and reserves the right to change this privacy statement. Legislation may also change, so the contents of the privacy statement should be reviewed at regular intervals.