Privacy policy

1. Register holder

Name: Diter Oy
Address: Hallimestarinkatu 19, 20780, Kaarina
Telephone number: +3582 253 9800
E-mail: mail@diter.com

2. Contact person related to privacy

Nimi: Mika Karsikas
Address: Hallimestarinkatu 19, 20780, Kaarina
E-mail: mail@diter.com

3. Register name

Diter Oy customer information register

4. Purpose of processing personal data

Diter Oy stores and handles its customer information in its customer information register. The register is used for processing orders, invoicing and informing. Customer information is stored as long as the customer relationship is active or until a customer requests for data deletion. The data collection is based on the need to implement the agreements required in the trade. All data processing related to customer data is done manually and no automatic processing or profiling is used. 

5. Registry data content

The following customer information are saved to the registry:

Name
Address
Telephone number
E-mail
Made offers and orders
Agreements and maintenance contracts
Invoices issued
Warranty card information

6. Regular information sources

Customer information is collected from customers themselves in connection with orders. Customer has the legal right to:

- information on data processing
- access their personal data
- be forgotten by requesting erasure of their information
- restrict the processing of their information
- request transfer of the information to another system
- deny the processing of their information for marketing purposes

7. Regular disclosures

The information will not be disclosed outside the company's own personnel.

8. Data tranfer outside of EU or ETA.

Data is not transferred.

9. Register protection principles

A. Manual material

Paper material related to customers' order history is kept locked at the company's premises.

B. Information processed by computer

Order and invoicing information are saved in Lemonsoft Oy servers database. Access to the information is protected with user ID and password. Lemonsoft Oy protects the company's servers from external and unauthorized use.

Personal information gathered via appointment system Timma are held in Timma Oy's database server where they are stored encrypted and protected from outside access. Timma Oy takes care of the protection of data against external and unauthorized use from it's servers.

Contract, offer and order information is stored on Diter Oy's file server, where it is stored encrypted. Access to the server is restricted to authorized users of the company's own staff. 

Diter Oy's online store credit card payment functionality is implemented through Stripe Technology Europe, which processes information related to the payment transaction according to its according to its privacy policy.

10. Right to access and right rectification

Every person in the register has the right to check their information stored in the register and demand the correction of any incorrect information or the completion of incomplete information. If a person wants to check the information stored about him or demand correction, the request must be sent in writing to the controller. If necessary, the registrar may ask the requester to prove his/her identity. The controller responds to the customer within the time stipulated in the EU data protection regulation (generally within a month).

11. Other rights related to the processing of personal data

A person in the register has the right to request the removal of personal data about him from the register ("right to be forgotten"). Those registered also have other rights according to the EU General Data Protection Regulation such as limiting the processing of personal data in certain situations. Requests must be submitted in writing to the controller. If necessary, the registrar may ask the requester to prove his identity. The controller responds to the customer within the time stipulated in the EU data protection regulation (generally within a month).

 
EN