Keeper of the Register
RoHS Management Oy (Y-2753223-4)
Henceforth referred to as Company
Person in Charge of Privacy Protection and/or Contact Person
+358 40 718 0718
Name of the Person Register
RoHS Management Oy person and marketing register
Gathered Personal Data
We gather personal data necessary for managing customer relations, such as the customer’s name and contact information as well as user information from our service. We gather personal data from the registered person himself as well as from other publicly-available registers maintained by public officials and other outside sources such as the Finnish Trade Register or other similar public business registers. Furthermore, we gather the information that is filled out in contact forms and use them in the aforementioned maintaining of customer relations.
The Use of Personal Data and the Basis for Processing it
Personal data is processed in accordance with laws currently in force to test web services, manage customer relations, inform about services and offer guidance. We may use the data of the registered person to collect and analyse user statistics. Gathered data is also used for marketing communications. Use of personal data for marketing communications is based on approval given by the person in a contact form. Direct marketing is halted at the customer’s request. A person may revoke the approval he has given at any time by contacting the aforementioned contact person. Processing of personal data may be necessary based on the legitimate interests of the customer relationship between the Company and the registered person. The Company has a legitimate interest to process personal data for marketing, service and customer analyses and for the testing of the service. Profiling may also be used for marketing. In this case, the registered person has a right to oppose the processing of personal data.
Access to Personal Data
Access to personal data is only granted to persons responsible for handling customer relations and marketing.
Disclosure of Information
Personal data is not disclosed to third parties and not transferred outside of the European Union or European Economic Area unless it is necessary for the fulfilment of the service for technical reasons. If data is disclosed or transferred, the level of data protection required by data protection legislation and other necessary security measures are complied with.
We protect personal data with appropriate technical and organisational methods. Data is gathered into databases that are protected with firewalls, passwords and other technical data security methods. Databases and their backup copies are located in locked and guarded spaces and access to the data is only available to specific predetermined persons.
Retention Period and Deletion of Personal Data
Personal Data are stored for as long as they are needed for the use for which they were gathered and processed, or until the contract is fulfilled or for as long as the law and regulations require. After this, personal data are deleted appropriately.
The Rights of Registered Persons
Registered persons have the following rights:
The registered person can gain access to personal data about him by asking within the limits of trade secrets and internal estimations. The request shall be sent to the aforementioned contact person in writing and signed, and the person in question must identify themselves in a reliable manner.
The registered person can ask for his data to be corrected if they are inadequate or incorrect.
The registered person can ask for his data to be erased when there is no reason within data protection legislation that is irrespective of the approval the registered person to process them.
The registered person has a right to limit the use of his personal data if the validity or legality of the data requires it or if the registered person requests to limit the processing of his personal data only to the storage of the data in accordance with the right of objection.
The registered person has the right to oppose the processing of his data for direct marketing purposes based on the Company’s legitimate interest.
The registered person can ask for his data to be transferred to another keeper of a register if it is safe and technologically possible.
The registered person shall send requests related to his rights in writing or by email to the following address:
RoHS Management Oy
Request for inspection/related to personal data
The Company will answer requests within one month of the request being presented unless there is a specific reason to lengthen the response time.