Siirry sisältöön

Privacy policy of Asianajotoimisto Tatu Pylvänäinen Oy

This privacy policy gives the information how Asianajotoimisto Tatu Pylvänäinen Oy collects and registers personal data, about the register and the registrar as well as about the personal data that is collected and the rights of the registered person, according to the general data protection regulation.

 

1. Registrar and the contact information

Asianajotoimisto Tatu Pylvänäinen Oy (3409619-4)

Kauppakatu 3 B 22, 33200 Tampere

Contact person:

Tatu Pylvänäinen, Attorney-at-law

tel. 045 207 2738

tatu@pylvanainen.fi

 

2. Purpose for collecting personal data and the legal grounds for collecting personal data

Personal data are collected for the purpose of taking care of the customers` legal cases and for marketing. For taking care of the legal cases personal data is collected for the purpose of checking the lawyer`s competence, for the purpose of communicating with the customers and for other necessary purposes for taking care of cases. Legal grounds for the processing of the personal data is the consent of the registered person, a contract or legitimate interest.

 

3. The personal data that is registered and the sources of the personal data

The personal data are mostly collected from the registered persons them selves. Personal data may also be collected from varying authoritaties and other public sources such as information retrieval services. Also personal data concerning other than customers may be collected, e.g. personal data about the opposite party of a case may be collected. In every case the name, address, phone number and email address of a private person are collected. Also, depending on the case, other personal data including but not limited to, date of birth or social security number, are collected. About companies, the corresponding data of the representatives of the company, are collected.

 

4. Disclosing the information to third parties

Personal data may be disclosed to third parties when it is required by law (e.g. disclosing the personal data to an authoritative for the purpose of taking care of the case).  When personal data is disclosed to the administrator of a system that processes and stores personal data (e.g. the administrator of the customer management and invoicing program) the confidence and legal processing of the personal date is taken care of by using a contract between the registrar and the receiver of the personal data. Information are not disclosed outside European Union.

 

5. The time of storing personal data

Personal data are stored as long as they are needed for the purpose of taking care of the respective case. After this, they are stored as long as it is required byt the respective law, such as the Accounting Act (10 years).

 

6. The rights of a registered person:

To use their rights, a registered person must send a request to the registrar. A registered person has the following rights:

– Right to access their personal data

A registered person has the right to have the information whether their personal data is processed or not and what personal data is processed.

– Right to have the personal data corrected

If the personal data are incorrect, outdated or inadequate, a registered person has the right to have this data corrected.

– Right to have the personal data deleted

If storing the personal data is no longer necessary, a registered person has the right to have their information deleted. If storing the personal data is necessary for conducting the business, for legal grounds or information security, the registrar may have the right to refuse to fullfill the request.

– Right to have the processing limited

A registered person may have to right to have the processing of their personal data limited in some cases.

– Right to object the processing of personal data

When processing of personal data is based on legitimate interest, a registered person has the right to object the processing of personal data that concern them, unless there is such a significant reason that it supersedes this right and if the processing of personal data is no longer necessary for taking care of a legal claim. If a registered person objects the processing of their personal data, the registrar can no longer serve the registered person with their matter concerning a legal case.

– Right to have the personal data transferred to an other system

If the processing of the personal data of a registered person is based on the consent of the registered person or fullfilling a contract, a registered person has the right to have the information that they have provided electronically to the registrar to be delivered to them in a commonly used form for the purpose of transeferring this information to an other service provider.

– Right to cancel their consent for processing the personal data

If the processing of the personal data of the registered person is based only on the consent given by the registered person, the registered person may cancel the consent for processing their personal data.

– Right to refuse direct marketing

A registered person has the right to refuse the use of their personal data for direct marketing.

-Right to appeal

A registered person has the right to lodge an appeal to the data protection ombudsman if they see that the processing of their personal data is not legal.

 

7. The optionality of giving personal data and the effect of not giving personal data

Choosing not to give personal data that is needed for taking care of the case will result in the inability of Asianajotoimisto Tatu Pylvänäinen Oy to receive and take care of the respective legal case.

 

8. Automatical decision making and profiling

The collected personal data is not used for automatical decision making and profiling.

 

A register description in accordance with Section 10 of the Personal Data Act (523/99)

1. Register holder
Asianajotoimisto Tatu Pylvänäinen Oy,
Attorneys-at-Law

Business ID: FI34096194

Kauppakatu 3 B 22
33200 Tampere

Tel: 045 207 2738

2. Contact person in matters relating to the register
Tatu Pylvänäinen

Kauppakatu 3 B 22
33200 Tampere

tatu@pylvanainen.fi

3. Register name
The marketing and analytics register of Asianajotoimisto Tatu Pylvänäinen Oy.

4. The purpose of handling personal data
The purpose of the register is to take care of the customer relationship between the register holder and the customer, as well as marketing and communications. The management of the register and the handling of the data can be outsourced to the co-operative partner of the register holder, who has committed to complying with this register description.

5. The data content of the register
The register may contain the following information about the customer:
– Name
– Telephone number
– Address
– E-mail address
– The name and business ID of the organisation
– Contact log

6. Data sources in compliance with the regulations
The register is compiled from the register holder’s customer information system and the visitor tracking tool on the site, publicly available Internet sources and other public sources, both free and payable ones.

7. Passing on of data in compliance with the regulations
The register holder will not pass on the data to outside parties except for the co-operative partner of the register holder mentioned in point 4, unless actions by the Finnish authorities require it to do so.

8. Transferral of data outside the EU or EEA
As a rule, personal data is not transferred outside the European Union or European Economic Area.

9. The principles of the protection of the register
Personal data is kept confidential. The data network and equipment of the register holder and its possible data technology partners, where the register is located, are protected with a firewall and other necessary technical measures.

10. Cookies
Cookies may be used on the pages of the register holder to improve the user experience. A cookie is a text file which is saved on the user’s computer when they visit the web page. It contains information and it is used, amongst other things, to develop marketing and the site. Cookies do not establish the identity of the user. The user can delete cookies from use with the browser settings. The register holder does not guarantee that the site will work correctly after cookies have been deleted.