Register and Privacy Statement
This is Afrodite Beauty Tmi's registration and data protection statement in accordance with the EU General Data Protection Regulation (GDPR).
Prepared on 09/03/2023. Latest change 09/03/2023.
1. Registrar
Afrodite Beauty Tmi
2639870-7
2. The contact person responsible for the register
Afrodite Beauty Tmi
Karen Aunapuu
kestopigmentointihelsinki@gmail.com
045 164 2490
Juutinraumankatu 3,
00220 Helsinki
3. Register name
Afrodite Beauty Tmi's / Permanent pigmentation Helsinki customer register
4. Purpose and background of personal data processing
Personal data of private individuals is collected in the register. Personal data is processed for the maintenance and care of our customers' customer and service relationships, such as the contacts and direct marketing required by the customer relationship, as well as booking services.
Personal data is processed pursuant to Section 25 of the Electronic Communications Data Protection Act, with the consent given by the data subject himself or based on the customer relationship.
.
The information is not used for automated decision-making or profiling.
5. Data content of the register
Information to be stored in the register is:
- Customer's name, address, e-mail and phone number.
We only keep the personal data we collect for as long as the data can be considered necessary for the purposes described in this privacy statement, unless keeping the data longer than this is required by law or permitted by law.
6. Regular sources of information
The information to be saved in the register is obtained from the customer, e.g. From messages sent via web forms, by e-mail, by phone, via social media services, contracts, customer meetings and other situations where the customer gives out their information.
7. Regular transfers of data and transfer of data outside the EU or EEA
When handing over personal data, legislation is followed in all situations.
The customer understands that his personal data is processed in the Timma service offered by our partner. The customer agrees that his personal data can be transferred to third-party data processors through the Timma service, provided, however, that the transfer of personal data is carried out in accordance with EU data protection legislation.
Privacy statement of the Timma service https://timma.fi/privacy
Kestopigmentointi Helsinki website is located on Wix.com's server. The information provided through the contact form is stored on the Wix.com server.
Wix.com Privacy Statement https://www.wix.com/about/privacy
Data can also be transferred by the data controller outside the EU or EEA as it is necessary for the technical functionality of the website.
The above includes the right to transfer personal data to a third country outside the European Union and the European Economic Area, provided, however, that the data transfer has complied with the requirements of EU data protection legislation in all respects.
In addition, personal data may be disclosed to authorities upon request in accordance with the law. The register is stored and protected in such a way that unauthorized parties do not have access to the register data.
8. Principles of registry protection
Care is taken in the processing of the register, and the information processed with the help of information systems is properly protected from outside with firewalls and other technical protection measures. The customer register is treated confidentially. The register is kept only in electronic form. The register is used only by persons whose job description includes its use and who are bound by the duty of confidentiality
9. Right of inspection and right to demand correction of information
Every person in the register has the right to check their information stored in the register and demand the correction of any incorrect information or the completion of incomplete information. If a person wants to check the information stored about him or demand correction, the request must be sent in writing to the controller. If necessary, the registrar may ask the requester to prove his identity. The controller responds to the customer within the time stipulated in the EU data protection regulation (generally within a month).
10. Other rights related to the processing of personal data
A person in the register has the right to request the removal of personal data about him from the register ("the right to be forgotten"). Those registered also have other rights according to the EU's General Data Protection Regulation, such as limiting the processing of personal data in certain situations. Requests must be sent in writing to the controller. If necessary, the registrar may ask the requester to prove his identity. The controller responds to the customer within the time stipulated in the EU data protection regulation (generally within a month).