Jounin Kaupan Privacy Policy & Cookies
Privacy Policy Jounin Kauppa
We comply with the data protection law. In addition to our own privacy policy, we comply with the privacy policies of these third parties to provide our services.
Data protection in Travel Services
Register Description Jounin Kauppa Oy
Register Description
Personal Data Act (523/99) § 10
Completion date 31.5.2018
1.1. The controller
Jounin Kauppa Oy
0426724-7
Sannanrannantie 3
95970 Äkäslompolo
Lapland, FINLAND
1.2. Responsible for the register
Louru Oy
Tievantie 4
95980 Ylläsjärvi
Janne Pasma
janne@louru.fi
+358 20 7498 100
1.3. Name of the register
Jounin Kauppa Oy customer register
1.4. Purpose of processing personal data (purpose of the register)
The personal data stored in the user register of the Jouninkauppa.com website is used to manage customer relations, to handle contacts, for marketing purposes and for other purposes related to online services.
1.5. Data content of the register
The register collects basic information about the data subjects, such as:
- name
- address
- phone number
- email address
1.6. Regular sources of information
The data controller registers the information about the user of the Jouninkauppa.com website that the user provides through the "Contact Us" section of the website.
1.7. Regular disclosures and transfers of data outside the EU or the European Economic Area
The company's online services are hosted on Finnish servers. However, user data on the website is stored in the Google Analytics visitor tracking Google cloud environment, which may also be located outside the EEA (in Privacy Shield countries). Otherwise, no personal data will be transferred outside the EU or EEA.
https://privacy.google.com/businesses/adsservices/
1.8. Principles of register protection
The data of the user register of the Jouninkauppa.com website is stored in the system of the controller, which is protected by operating system security software. Access to the system requires entering a user ID and password. The system is also protected by firewalls and other technical means. Only certain predefined employees of the controller have access to and are authorised to use the data stored in the register. The physical data contained in the register are located in locked and guarded premises.
Access to the system is allowed to employees, the employer and the data controller, who have been trained to act in accordance with the Data Protection Act.
1.9. Rights of the data subject / Subscriber
In accordance with Articles 12-22 of the General Data Protection Regulation, the user has the following rights:
- The data subject's right of access
- Right to rectification
- Right to erasure ("right to be forgotten")
- Right to restriction of processing
- Obligation to notify rectification or erasure of personal data or restriction of processing
- The right to transfer data from one system to another
- Right to object
- Prohibit the processing and disclosure of data concerning him or her for direct marketing, distance selling and other direct marketing, market research and public opinion polls
- In addition, the data subject has the right to object to processing, automated decision-making and profiling.
The request for verification must be made in writing, signed and addressed to the contact person of the controller, including a copy of the photo ID.
1.10. The data subject's right of access
The user has the right to inspect and obtain copies of the personal data stored in the register. The request for inspection must be made in writing and addressed to the person responsible for the register. Users also have the right to ask the controller to delete their data, the so-called "right to be forgotten".
1.11. Correcting information and storage period
The controller shall correct, erase or complete personal data in the register which are inaccurate, unnecessary, incomplete or outdated for the purposes of processing, on its own initiative or at the request of the data subject. The data subject shall contact the controller's person responsible for the register in order to obtain the correction of the data.
Jounin Kauppa Oy deletes customer data from the register when there is no longer a business reason for processing the data. The personal data will be processed for the duration of the customer relationship and for the period necessary to manage warranty and defect liability afterwards.
However, the data will not be deleted if the law provides otherwise, or if a competent authority has initiated a process requiring Jounin Kauppa Oy to retain the data, or if another party has applied to Finnish law for a data protection decision.
The user-level and event-level data stored by Google Analytics will be automatically deleted from the Analytics servers after 26 months.
Contacts are kept for a maximum of one year, after which they are deleted from the registers, unless there is a legal or regulatory basis for processing them.
1.12 Other
No information about the user is collected by jouninkauppa.com for other services than those mentioned. Employers and employees are familiarised with the Data Protection Act.
1.13 Approval of the Privacy Statement
The Privacy Policy was adopted on 31.5.2018, and updated on 15.6.2020.
Cookies
What is a cookie?
Cookies are files that are automatically stored on a user's device when they visit a website. They are usually used to improve the user experience, such as remembering the contents of your shopping cart. Cookies can also be used to collect user information and to personalise the content of the site based on previous visits or use of the site, for example for marketing purposes.
We use cookies to improve the user experience of the site, such as remembering when administrators log in. We also use cookies to collect general information about users of the site.
What information do we collect?
Cookies and analytics tools help us to get an indicative picture of our data.
- on visitor numbers
- location of users (country, city)
- from users' devices
- the operating system of users' devices
- users' Internet access provider
- most popular pages
- links clicked on the website
- traffic sources
Traffic sources tell us how a user arrived at the site. For example, by typing an address directly into the address bar, from Google search results or via Facebook. However, we don't know the exact address from which the user came to the site. We can also see the search terms that have been used to find our site in Google search results and how many times a link has led to our site.
If a user has a third-party DoubleClick cookie on their device, we can also get an approximate picture of the user's
- the target group (e.g. age)
- of interests
What of the information collected can be attributed to a specific person?
Nothing. We only see indicative figures on the number of visitors and what they do. None of this can be attributed to anyone.
What is the data collected used for?
The data is not collected for marketing purposes, but mainly for interest. From the information collected, we can see what interests users most about the site and how many people visit the site in general. These figures can then be published later for others to see, for example in the form of a news article: 'In 2019, x number of visitors came to our site, which is y more than in 2018'.
Content embedded from other sites
Articles on this site may contain embedded content (e.g. videos, images, articles, etc.). Accessing embedded content from other sites is comparable to visiting a third-party site yourself.
These sites may collect information about you, use cookies, embed third party tracking cookies and monitor your interaction with embedded content, including tracking your interaction if and when you are logged in as a user to the site.
For administrators
If you have an account and log in to the site, we will set a temporary cookie to determine whether or not your browser supports cookies. This cookie does not contain any personal data and is deleted when the browser window is closed.
When you sign in, we set a number of cookies that store your login and display preferences. Login cookies are deleted after two days, display cookies are deleted after one year. If you select "Remember me" at login, your login information will be stored for two weeks. If you log out, the login cookies will be deleted at the same time.
If you publish an article or edit an existing one, we store a cookie in your browser containing the ID of the article you are editing. The cookie expires in one day.
The name and email address of the administrators are collected. You have the right to see the information collected about you, the right to have your information corrected and the right to have your information deleted, which in this case means deleting your account.
Website administrators are familiar with data protection law and cookies.