top of page

FENNEC SAFETY

PRIVACY POLICY

Data Controller

Fennec Safety

Fennec Consulting Oy, Itälahdenkatu 14 E 135, 00210 Helsinki, Finland

Business ID: 3174994-6

Email: ralf@ralfmolander.com

 

Contact Person for Register Matters

Coach / ralf@ralfmolander.com

 

Name of the Register

Customer Register

 

Legal Basis and Purpose of Processing Personal Data

Personal data is collected and processed based on contracts for organizing training and courses, invoicing in accordance with the Accounting Act, and communication with participants or those interested in the training, based on legitimate interest. Data collected from pilot groups may also be used to develop digital training services, also based on legitimate interest.

 

Personal data is not used for automated decision-making or profiling. The data will be stored for a maximum of three years.

 

Contents of the Register

The register may include the following information: name and contact details of the person (phone number, email address, postal address).

 

Regular Sources of Information

Data is collected directly from the customer via email, phone, online forms, contracts, meetings, and other occasions where the customer voluntarily provides their information.

 

Regular Disclosures and Transfer Outside the EU or EEA

Data is not regularly disclosed to third parties and is not transferred outside the EU or EEA. Data may be published with the customer's consent, for example, as testimonials.

 

Principles of Register Protection

Careful handling of the register is ensured, and data processed digitally is protected appropriately. If data is stored on internet servers, appropriate physical and digital data security measures are in place. The controller ensures that only authorized personnel with relevant job responsibilities have access to the data.

 

Right of Access and Rectification

Every individual has the right to review their stored data and request correction or completion of inaccurate or incomplete information. Requests must be sent in writing or by email to the data controller. The controller may ask the requester to verify their identity. A response will be given within the timeframe defined in the EU General Data Protection Regulation (usually within one month).

 

Other Rights Related to Personal Data Processing

The data subject has the right to request the deletion of their personal data from the register (“right to be forgotten”) and other rights defined by the GDPR, such as the right to restrict processing in certain situations. Requests must be submitted in writing to the controller. The controller may ask the requester to verify their identity and will respond within the timeframe defined by the GDPR (usually within one month).

bottom of page