Privacy Policy

Updated on February 3, 2024

1. Data controller

Karjalaisen Rahti Oy

Ampumaradantie 27, 40320 Jyväskylä
Business ID: 1468245-2

Karjalaisen NostoKuljetus Oy

Akselikatu 9, 41310 Leppävesi
Business ID: 2393303-0

2. Contact person for register matters and data protection officer

Karjalaisen Rahti Oy

Jukka Karjalainen

Tel. +358 400 639 300
jukka.karjalainen@karjalaisen.fi

Karjalaisen NostoKuljetus Oy

Janne Karjalainen

Tel. +358 400 720 594
janne.karjalainen@karjalaisen.fi

3. Purpose of the register

The collected personal data is used to:

  • Fulfill customer orders
  • Maintain and develop the customer relationship

4. Legal basis for data collection and processing

Customer data is collected and processed based on:

  • The customer’s consent
  • The performance of a contract with the customer

5. Data content of the register

Name, email address, phone number, and any additional information voluntarily submitted by the customer via a form.

6. Data retention period

Personal data is retained for as long as necessary to fulfill the contract with the customer or to develop customer service.

7. Regular sources of data

Data is collected:

  • Directly from the individual
  • From public registers maintained by authorities, within legal limits (e.g. ytj.fi)
  • Using the Google Analytics tool

8. Regular data disclosures and transfers outside the EU or EEA

Data is not regularly disclosed outside the company. However, some external service or software providers used by the company may store data outside the EU or European Economic Area.

9. Use of cookies

We use so-called cookie functionality on our website. A cookie is a small text file sent to and stored on the user’s computer, allowing the website administrator to recognize frequent visitors, simplify the login process, and compile combined data about the users.

This feedback helps us continuously improve the content of our website. Cookies do not harm users’ computers or files.

We use cookies to provide our customers with personalized information and services tailored to their individual needs.

If a visitor to our site does not want us to collect the above-mentioned information through cookies, they may decline the use of cookies via the cookie consent window upon entering the site.

However, please note that some cookies may be necessary for the proper functioning of certain pages and services we provide.

10. Register security

Data is transmitted over a secure SSL connection.

Electronic data is protected by a firewall, user IDs, and passwords.

Only those employees of the data controller who need the information to perform their duties have access to the data.

11. Automated decision-making

No automated individual decisions (as defined in Article 22 of the EU General Data Protection Regulation) are made.

12. Rights of the data subject

The data subject has the right to inspect what personal data has been stored in the register concerning them. A written inspection request must be sent, signed, to the person responsible for register matters.

The right to inspect is free of charge once per year.

The data subject has the right to request correction or deletion of inaccurate or outdated data or to request the transfer of their data to another system. They also have the right to restrict or object to the processing of their data under Articles 18 and 21 of the GDPR.

The data subject has the right to withdraw their consent to data processing at any time and to lodge a complaint with the supervisory authority concerning the processing of their personal data.

The data subject also has the right to prohibit the use of their data for direct marketing purposes.