The combined customer register and privacy statement plus information about cookies
In accordance with the GDPR, data subjects have a right to be informed by the controller. This statement meets that obligation.
- Company name: Fish Creek – TWW Ltd
- Address: Itäinentie 1 A, 06100 PORVOO, Finland
- Business ID: FI21749395 (Sokiro Oy)
The data protection officer’s contact information with regard to the register and data protection
- Contact person: Tom Kåhre
- Email: email@example.com
- Phone: +358 400 313 777
2. Data subjects
Customers and potential customers
3. The justification for and purpose of use of the register
- Personal data is only processed on the basis of the customer relationship with the data subject.
- Personal data is processed on the basis of consent.
4. The purpose of processing personal data and the register
Personal data is only processed for purposes specified in advance, which include:
- Email marketing materials and newsletters
- Marketing and contact by mail
- Contact by phone and/or via WhatsApp
- Contact via some other communications channel
5. The personal data stored in the register
The customer register contains the following data:
- information about the purchased products/services
6. Rights of the data subject
The data subject has the following rights. Any requests pertaining to these rights should be submitted to tom(a)fishcreek.fi.
The right of access and the right to rectification
The data subject may request access to the personal data stored by us. The data subject may request us to rectify any erroneous or incomplete data pertaining to them.
The right to object
The data subject may object to the processing of personal data, if they feel that their personal data has been illegally processed.
Direct marketing ban
The data subject has the right to ban the use of their personal data for direct marketing.
The right to erasure
The data subject has the right to request the erasure of their personal data, if it is no longer necessary to process the data. We will process the erasure request, after which we will either erase the data or provide a justified reason for why we are unable to erase the data. Please note that the controller may have a legal or other right to refuse the erasure of the requested data. The controller is obliged to store accounting materials for a period (of 10 years) in accordance with the Accounting Act (section 2, subsection 10). For this reason, any materials related to accounting cannot be erased before the expiry of the deadline.
The right to withdraw consent
If the processing of the data subject’s personal data is solely based on consent and not, for example, a customer relationship or membership, the data subject may withdraw the consent. The data subject may appeal the decision with the Data Protection Ombudsman. The data subject has the right to request that we limit the processing of disputed data until the matter has been solved.
The right to complain
The data subject has the right to make a complaint to the Data Protection Ombudsman if they feel that we are in breach of established data protection legislation in the processing of personal data. Contact information of the Data Protection Ombudsman: www.tietosuoja.fi/fi/index/yhteystiedot.html
7. Regular data sources
We obtain customer data regularly:
- at fairs and events
- from the customer when a customer relationship is established
- contact channels (such as social media or our website) and forms
8. Regular disclosure of data
9. Preventing the processing
The data subject can unsubscribe from our marketing or email list using the link in the marketing email sent by us or by contacting us.
10. Personal data processors
The customer register is processed by the employees or partners of Fish Creek – TWW Ltd. Personal data is processed by the controller and its employees. However, we may outsource the processing of personal data to third parties, in which case we ensure by contractual arrangements that the personal data is processed in accordance with established data protection legislation and in an otherwise appropriate manner.
11. Transferring data outside the EU
Personal data will not be transferred outside the EU/EEA, unless it is required by applications/functions provided by third parties.
12. Automatic decision-making and profiling
We do not disclose data for automatic decision-making or profiling purposes.
Social media plug-ins
Information about cookies
Using cookies is safe, and cookies are not harmful to the users’ computers or files. No personal data is stored in cookies. A cookie is not an application, and it does not enable viruses or other malware to enter the computer. Cookies are not harmful to the computer.
Cookies make it possible to keep track of the number of users, save the choices made on the site (such as language settings), and monitor the way the page is used. That said, we do not monitor the data of individual users. Instead, we compile statistics on the user information anonymously. It is possible to link the data to the personal data received from the user.
Use of Google Analytics and Ads
We monitor the use of our website with tools such as Google Analytics and Google Ads. Google Analytics cookies store anonymous data on the route users took to the page, the pages visited, how long the users stayed on each page, and so on. This information enables us to develop our website.