Axsoter

1§ Data controller

Daniel Tuomola
Email: daniel@axsoter.com
Phone: +358 41 7426220

2§ Contact person responsible for the register

Daniel Tuomola
Email: daniel@axsoter.com
Phone: +358 41 7426220

3§ Name of the register

Customer register

4§ Legal basis and purpose of processing personal data

The legal basis for processing personal data in accordance with the EU General Data Protection Regulation is
- the person's consent (documented, voluntary, specific, informed and unambiguous)
- a contract to which the data subject is a party
- the legitimate interest of the data controller (e.g. customer relationship before the contract, employment relationship, membership).

The purpose of processing personal data is to contact customers, maintain customer relationships, invoicing customers, marketing, etc.

5§ Data content of the register

The data stored in the registers are: First name and last name, billing address, postal code, city, country of residence, telephone number, username, hashed (protected) password(s) for the service, and email address. The IP addresses of website visitors and cookies necessary for the service's functions are processed on the basis of legitimate interest, for example to ensure data security and to collect statistical data on website visitors in cases where they can be considered personal data. If necessary, consent is requested separately for third-party cookies.

6§ Regular data sources

The data stored in the register is obtained from the customer, for example, from messages sent via www forms, by email, by telephone, via social media services, from contracts, customer meetings and other situations in which the customer provides their information. Information about contact persons of companies and other organizations can also be collected from public sources such as websites, directory services and other companies.

7§ Regular disclosure and transfer of data outside the EU or EEA

Data is not regularly disclosed to other parties.

8§ Principles of register protection

The register is handled with care and the data processed using information systems is protected appropriately. When register data is stored on Internet servers, the physical and digital security of their equipment is appropriately taken care of. The controller ensures that the stored data, as well as the access rights to the servers and other information critical to the security of personal data, are handled confidentially and only by employees whose job description requires it.

9§ Right of inspection and right to demand correction of data

Every person in the register has the right to check their data stored in the register and to demand correction of any incorrect data or completion of incomplete data. If a person wishes to check the data stored about them or to request a correction, the request must be sent in writing to the controller. The controller may, if necessary, ask the person making the request to prove their identity. The controller will respond to the customer within the time period set out in the EU Data Protection Regulation (generally within one month).

10§ Other rights related to the processing of personal data

A person in the register has the right to request that personal data concerning them be deleted from the register ("right to be forgotten"). Data subjects also have other rights under the EU General Data Protection Regulation, such as the restriction of the processing of personal data in certain situations. Requests must be sent in writing to the controller. The controller may, if necessary, ask the person making the request to prove their identity. The controller will respond to the customer within the time period set out in the EU Data Protection Regulation (generally within one month).