Personal data act (523/99) 10 § ja 24 §
1. Register holder
Paper Planes Oy
Phone: +358 50 3489 297
Business ID: 2635636-3
2. Person in charge of the register
Ville Pelttari, CEO
Phone: +358 50 3489 297
3. Name of the register
Paper Planes Oy customer register
4. Purpose for processing personal data
We use personal data to operate, develop, analyze, and enhance our customer services and relationships. The personal data contained in the register may be used for direct marketing, including direct electronic marketing. Information can also be used to track and detect irregularities, and to plan and develop Paper Planes’ business and services, to measure customer traffic, and to conduct market research.
5. The contents of the register
The register contains the following customer data:
– Name, title, company, email address, phone number, Twitter username
– Customer history (e.g. communication, orders, visits to Paper Planes website)
– direct marketing restrictions and agreements
– other information provided by the customer (e.g. information given by the customer via website forms)
Personal data of Paper Planes job applicants will be deleted without delay or at the latest 4 months after the recruitment process has ended.
6. Regular sources of data
The customer register contact information and other data is acquired from Paper Planes’ customers during cooperation and via the forms on Paper Planes website (including chat).
7. Regular disclosures and transfer of data outside the European Union (EU) or European Economic Area (EEA)
As a rule Paper Planes does not transfer or disclose data to third parties. Data can be disclosed in accordance with Finnish legislation on case-by-case basis. Data can be stored on servers outside the EEA by our service provider HubSpot. Read more about HubSpot’s data security here.
8. Principles of data security
The only personnel authorized to use the systems containing personal data are employees who have the right to process customer data. Using the Paper Planes customer register requires a personal username and password.
9. Right to access, correct, and erase data
Data subjects have the right to review their personal data saved in the customer register, demand corrections to inaccurate data, and otherwise take actions based on their rights secured by the personal data act. All requests regarding access, corrections, or erasing data must be delivered in writing to the person in charge of the register (point 2).
10. Other personal data related rights
According to the personal data act, the data subject has the right to deny the registrar access to information about themselves for the purpose of direct advertising, distance sales, direct marketing, market research, and opinion polls. Restriction request can be made to the contact person mentioned in point 2 at any time.
Cookies can be controlled and deleted according to the user’s wishes: for more information, see aboutcookies.org. If you wish, you can remove existing cookies from your device, or prevent your browser from using them in the future. Note: Blocking cookies might disable some features and functions of the website.
12. Targeted advertising
We use Google Ads Remarketing on our website to promote our services to our website visitors. We use third parties to deliver cookies that collect information about website visits. If you wish to block targeted advertising, you can do so by removing and preventing cookies or at http://www.google.com/settings/ads.
This policy is subject to change. All changes will be published on this website without delay.