Privacy Policy and Data Protection Statement
This is the Privacy Policy and Data Protection Statement of Leipyölin Tila and Maatilamatkailu Leipyöli, in accordance with the Finnish Personal Data Act (Sections 10 and 24) and the General Data Protection Regulation (GDPR) of the EU. Prepared on 23 May 2018.
1. Data Controller
Leipyölin tila
Säterikuja 3, 25500 Perniö
050-3382768
myynti@leipyoli.com
Maatilamatkailu Leipyöli
Leipyölintie 218, 25500 Perniö
0500-744241
myynti@leipyoli.com
Our website address: https://leipyoli.com
2. Contact Person for Registry Matters
Antti-Jussi Räsänen
0503382768
myynti@leipyoli.com
3. Name of the Register
Leipyölin Tila and Maatilamatkailu Leipyöli’s customer, billing, and order database.
4. Data Stored in the Register
The following data is stored in the register:
Name, company/organization, contact details (phone number, email address, postal address), billing information, and marketing consent.
Customer data is retained only as long as necessary for maintaining the customer relationship.
Billing information is stored for the period required by the Accounting Act.
5. Regular Sources of Information
The data stored in the register is collected from the customer through, for example: Messages sent via web forms, Email, Phone, Social media services, Contracts, Customer meetings and other situations where the customer provides their information.
6. Regular Disclosure of Data and Transfer of Data Outside the EU or EEA
Customer data is not disclosed to third parties.
7. Principles of Register Protection
The processing of the register is carried out with due care, and electronically processed information is properly protected. The data controller ensures that stored information is treated confidentially and only by employees whose job description includes handling such data.
8. Right to Access and Right to Request Correction
Every person whose data is stored in the register has the right to access their information and request corrections to any inaccurate or incomplete data. If a person wishes to check the information stored about them or request corrections, a written request must be submitted to the data controller. If necessary, the data controller may ask the requester to verify their identity. The data controller responds to the customer within the timeframe specified in the GDPR (usually within one month).
9. Other Rights Regarding the Processing of Personal Data
Individuals in the register have the right to request the deletion of their personal data from the register (“right to be forgotten”). Similarly, registered individuals have other rights under the GDPR, such as restricting the processing of their personal data in certain cases. Requests must be submitted in writing to the data controller. If necessary, the data controller may ask the requester to verify their identity. The data controller responds to the customer within the timeframe specified in the GDPR (usually within one month).
10. Privacy Practices Regarding Our Website
10.1 Contact Forms
Our website includes two contact forms. When you submit information using a form by clicking the submit button, we collect at least your name, email address, and the content of your message. Additionally, the forms allow you to provide the name of your company/organization and consent for receiving marketing communications. We collect this information to contact you and serve you better.
10.2 Cookies
Our website only uses cookies that are essential for its functionality.
10.3 Embedded Content from Other Websites
Articles on this site may include embedded content (e.g., videos, images, articles, etc.). Opening embedded content from other websites is equivalent to visiting the third-party website itself. These sites may collect data about you, use cookies, embed third-party tracking cookies, and monitor your interaction with the embedded content, including tracking your interaction if you have an account and are logged in to that site.
10.4 Analytics
Our website does not collect analytics data from your visit.
