Personal information refers to information that can be combined with a specific person. This document describes in more detail the procedures for the collection, processing and disclosure of personal data, as well as the rights of the user, ie the data subject. To the extent that the user register contains personal data, their processing shall comply with the Data Protection Act and other applicable laws, regulations, ordinances and official instructions concerning the processing of personal data.

Purpose of collecting personal data

a) User registration in the service maintained by Renda Oy

The purpose of the register is to maintain the registrar's User Register of those users who have registered for the service maintained by Renda Oy

The register is also used for Renda Oy's marketing and information The persons mentioned in this section (a) are hereinafter referred to in this description as the “user”.

b) Recording of data based on consent.

To the extent that the right to register under the aforementioned laws or circumstances is exceeded, or in the absence of such other legal basis, the user is specifically asked for consent to the storage, processing and storage of personal data.

If the controller does not receive the information referred to in points (a) and (b), the use of the service may not be commenced or continued, or any other agreement or legal action may be taken with the user.

Purpose of the data

The information in the user register can be used for the following main purposes:

Service management and development

Producing, providing, developing, improving and protecting services

Invoicing, collection and verification of customer transactions

Advertising targeting

Analysis and statistics on services

Customer communication, marketing and advertising

The controller and other persons and bodies involved in the services

Protection and safeguarding of rights and / or property, The performance of the controller 's statutory obligations, and

Other similar uses

Renda Oy processes information to maintain the service and the user register.

Renda Oy processes, or can process, information belonging to the following groups:

Basic user information such as full name, address, email, phone number.

Billing and collection information

Information related to registration and contractual relationship, such as the services provided to the user, the date of their use, the date and information of the purchase offer, its acceptance, conclusion of the lease or sale agreement, destination information, commission fee, service seller information and other similar information

Authorization information and prohibitions, such as direct marketing authorizations and prohibitions

Points of interest and other information provided by the user

Other transaction information for the Services

The information obtained from the creation of the user's registration will be kept for a maximum of ten (10) years from the moment of registration.

Other personal data will be deleted when there is no longer a need to retain personal data. If the collection and storage of personal data has been based only on the user's consent, the personal data will be deleted at the request of the user.

Personal data is collected from the user of the service using personal data forms filled in by the service user, otherwise using the services of the registrar or otherwise directly from the user, from the contact forms on the registrar's website and from customer satisfaction surveys and sweepstakes. Data based on consent shall be collected directly from registers or sources maintained by the user or, with his consent, by the authority or a third party.

The controller may disclose personal data to the extent permitted and binding by applicable law, as well as for the implementation of an agreement between the parties or when a material connection is established. The data may also be transferred outside the European Union or the European Economic Area, as permitted by law. The transfer outside the EU takes place in connection with the use of various cloud services, such as OneDrive, iCloud, Google Drive or Dropbox. Information is provided to the authorities in cases required by law. The controller may also disclose the information to third parties with the express written consent of the user. In connection with the outsourcing of the controller's information management, the processing of personal data may also take place by the controller's subcontractors, but in that case only on behalf of the controller.

Only those employees of the controller and the employees of subcontractors shall have access to the information necessary for the performance of their work-related tasks. The information is collected in the service's databases, which are protected by firewalls, passwords and other technical means. The databases are located in locked and guarded premises and the data can only be accessed by certain pre-defined persons. User data is stored electronically.

To the extent that personal data are processed on behalf of the controller by its subcontractor, agreements between the controller and the subcontractor shall ensure that appropriate safeguards are in place and that the processing of personal data complies with data protection law.

The user has the right to check what information about him is stored in the User Register. The user must submit a request for verification to the controller in writing in a handwritten form or an equivalent certified document, or by e-mail.

The controller shall provide the above information to the user within 30 days of the request for verification.

The user has the right to have his / her customer data concerning him / her transferred to a third party in a structured and generally used machine-readable form. However, the controller will keep the transferred data in accordance with this privacy statement.

The user has the right to correct the personal data stored in the personal register insofar as they are incorrect. The user has the right to object to the processing of personal data for direct advertising, distance selling and other direct marketing, market and opinion research and the development of the controller's business, and to restrict the processing of personal data already registered for that purpose would be. If the information in the register is based on the consent given by the user, the consent can be revoked at any time by notifying the representative of the controller mentioned in this description.

Upon request, all information that is not or cannot be retained pursuant to law or any other ground mentioned in this Privacy Statement will be deleted. An inspection, correction or other request may be made by contacting the registrar's customer service in writing with the contact details mentioned in this description.

The user has the right to refer the matter to the Data Protection Officer if the data controller does not comply with the user's request for rectification or other.

The registrar does not profile the user on the basis of personal data or use automatic decision-making.

We use cookies on our websites. By using our websites, you accept the use of cookies. A cookie is a small text file that a website, phone or tablet stores on a website user’s device. Utilization of cookie information in accordance with the cookie message displayed on the service to a new user requires that the user has accepted cookies using our online service. The use of cookies is a common practice on most websites.

We use cookies:

To improve the user experience of the website.

Remembering your personal settings

Providing relevant content and information, To ensure the security of websites, and

To collect statistics on the use of our websites and to measure the effectiveness of our advertising.

You can clear cookies from the browser settings of the device you are using. In this case, the identifier used to collect information about you will change. You can also completely block the use of cookies by changing the browser settings of the device you are using. Blocking cookies may affect the functionality of our services. If you choose to block cookies, you may not be able to take full advantage of the online services we provide.

User tracking

Our websites may use tracking software, such as Google Analytics, to provide us with information about your business on our websites. For this purpose, the tracking program uses cookies, in which case the information about the use of the website created by cookies is transferred and stored, for example, by Google or a similar service provider. We will use IP address encryption in any monitoring program. Contact the controller for more information on possible monitoring programs or their use and terms of use.

Changing privacy policies

The controller is constantly evolving its operations and may need to change and update its privacy policy as necessary. Changes may also be based on changes in data protection legislation. If the changes involve new purposes for the processing of personal data or otherwise change significantly, the controller shall give prior notice and, if necessary, request consent.

All rights reserved.