Privacy Policy
Registry and Privacy Policy
This is the register and privacy policy of Jezz Moves Oy in accordance with the Finnish Personal Data Act (Sections 10 and 24) and the EU General Data Protection Regulation (GDPR). Created on 19.07.2020. Last modified on 15.03.2024.
1. Holder of the register
Jezz Moves Oy, Kaivomestarinkatu 6A 15 02770 Espoo Business ID: 2523586-9
2. Contact person responsible for the register and data protection officer
Johanna Backman,
info.alpinerace(at)gmail.com
Phone +358400401731
3. Register name
Jezz Moves asiakasrekisteri (Company customs register)
3. Purpose of processing personal data
The collected personal data are used for identifying individuals and managing access rights. They are also used for maintaining and developing the customer relationship with registered users. The purpose of processing personal data is to communicate with customers, maintain customer relationships, marketing, etc. The data is not used for automated decision-making or profiling.
4. Content of the register
The information stored in the register includes: name, contact details (phone number, email address, address), website addresses, internet connection IP address, profiles/accounts on social media services, information about ordered services and their changes, billing information, and other information related to customer relationships and ordered products/ services.
Personal data are retained as long as necessary for the execution of the contract or the development of customer service.
6. Sources of information
The information to be stored in the register is primarily obtained from the customer themselves, e.g., through messages sent via website forms, email, phone calls, social media services, contracts, customer meetings, and other situations where the customer provides their information. Information may also be collected into the register from registers maintained by authorities within the limits of the law (e.g., ytj.fi). Data may also be collected using the Google Analytics analytics tool.
7. Disclosures of data and transfer of data outside the EU or EE
Data is not routinely disclosed to other parties. Information may be published to the extent agreed upon with the customer. Data is not routinely transferred outside the company. Some of the external service or software providers used by the company may store data outside the EU or European Economic Area.
8. Principles of register protection
The processing of the register is carried out with care, and the information processed through the systems is appropriately protected. When register data is stored on Internet servers, the physical and digital security of the hardware is properly ensured. The controller ensures that the stored data, as well as access rights and other data critical to the security of personal data, are treated confidentially and only by employees whose job description includes such tasks.
9. The right of inspection and the right to request correction of information
Every individual in the register has the right to check the information stored about them in the register and to request the correction of any incorrect information or the completion of any incomplete information. If a person wishes to check the information stored about them or request corrections, the request must be sent in writing to the controller. If necessary, the controller may request the requester to prove their identity. The controller responds to the customer within the time frame set by the EU General Data Protection Regulation (usually within one month).
10. Other rights related to the processing of personal data
The individual in the register has the right to request the deletion of their personal data from the register ("right to be forgotten"). Likewise, registered individuals have other rights under the EU General Data Protection Regulation, such as the right to restrict the processing of personal data in certain situations. Requests must be sent in writing to the controller. If necessary, the controller may request the requester to prove their identity. The controller responds to the customer within the time frame set by the EU General Data Protection Regulation (usually within one month).