Privacy and data protection statement in accordance with the EU General Data Protection Regulation (GDPR).
The statement was prepared on 23.05.2018. Updated on 24.8.2022.
1. Data controller
Risk Control Services Finland Oy, Keilaranta 1, 02150 Espoo. tel. +358 45 319 7219
The auxiliary business names of Risk Control Services Finland Oy are RCS Training, Conflict Control and Kehokoodi.
This privacy and data protection statement applies to all of Risk Control Services Finland Oy’s business operations, auxiliary business names and brands, including DG Healing.
2. Name of the register
Risk Control Services Finland Oy customer and marketing register
3. Legal basis and purpose of the processing of personal data
The purpose of this statement is to inform visitors to the websites of Risk Control Services Finland Oy and its auxiliary business names, as well as users of Risk Control Services Finland Oy’s services, about the collection, use and storage of personal data.
The legal basis for the processing of personal data under the EU General Data Protection Regulation is the management of the customer relationship, the realization of the rights and obligations of the customer and Risk Control Services Finland Oy, and the processing of personal data in accordance with the Personal Data Act for purposes related to web services, as well as the targeting of advertising and/or direct marketing of Risk Control Services Finland Oy and/or its partners based on customer data through Risk Control Services Finland Oy’s media and services without disclosing personal data to external parties.
Our website may also contain links to other, external websites or resources. This privacy statement does not apply to their use, so we encourage you to review their privacy statements separately. A link to a site other than that of Risk Control Services Finland Oy or its auxiliary business names is not an indication that Risk Control Services Finland Oy is responsible for the content of that site or supports its owner.
4. Data content of the register
Information that may be stored in the register includes – First and last name – Email address – Mobile phone number – Company and position – Address details
By ordering or using the services of Risk Control Services Finland Oy, you accept that we collect information about you in accordance with this privacy and data protection statement.
The provider of Risk Control Services Finland Oy’s online coaching and courses is Kajabi LLC. Read about Kajabi’s privacy practices here: https://kajabi.com/policies. For those completing online coaching, first name, last name and email address are stored. Online course purchases are made in the online store, where the payment intermediary is Stripe. Read about Stripe’s privacy practices here: https://stripe.com/en-fi/privacy.
Customer relationship management and newsletters
Anyone may subscribe to the Risk Control Services Finland Oy and/or its auxiliary business names’ newsletter via the subscription form on samisallinen.fi. Name and email address are stored by the newsletter provider Kajabi LLC. You can unsubscribe from the list at any time. Read about Kajabi’s privacy practices here: https://kajabi.com/policies.
Data retention period
Risk Control Services Finland Oy retains personal data for at least the period required by law or regulations. The retention period for customer data may be longer in order to achieve normal and lawful business objectives. Regarding terminated customer relationships, all stored data is reviewed periodically and unnecessary personal data is deleted.
5. Cookies
Cookies are used on our websites to maintain user sessions. Technical cookies do not collect or store personal data of the user. The pages can also be used without cookies, but in that case some functionalities may not be available.
Cookies are used, among other things, for measurement and research purposes to determine site usage and the number of users. Cookies are also used for ad targeting. With cookies, ads can be targeted based on browsing behavior, and cookies also help the system identify whether a user has seen an ad before, so that the same ads aren’t shown all the time to the same user.
Advertising targeted by third parties based on cookies
The following parties collect cookie data on our website that is used for ad targeting:
- Facebook Inc. Read more about Facebook’s privacy practices here: https://www.facebook.com/policy.php
- Google Ads. Read more about Google’s privacy practices here: https://policies.google.com/technologies/ads?hl=en-US
The following parties collect cookie data on our websites that is used for the development of the websites:
- Google Analytics. Read more about Google’s privacy practices here: https://policies.google.com/technologies/ads?hl=en-US
- Microsoft Clarity. Read more about Microsoft’s privacy practices here: Microsoft Privacy Statement.
Other possible use of data
Mandatory and legally required disclosures of data: At the request of authorities and by law, it is possible that we are obliged to disclose personal data. Disclosure or processing of data may also become relevant if Risk Control Services Finland Oy must defend its rights in civil, corporate or criminal court.
Corporate transactions: We may disclose or transfer collected data in connection with the sale of the company, sale of shares, merger with another company, other corporate restructuring or bankruptcy.
6. Regular sources of information
Information stored in the customer and marketing register is obtained from the customer information system or at the person’s own request.
7. Regular disclosures of data and transfer of data outside the EU or EEA
The data controller does not disclose data outside the EU or EEA. The aforementioned third parties may transfer data, but they comply with the regulations required by the EU. More information about each party’s data protection is available from each party.
8. Principles of register protection
The register is processed carefully and the data processed in information systems is appropriately protected. The data security of the servers storing the register data is taken care of appropriately.
The stored data, server access rights and other information critical to the security of personal data are processed confidentially. They are processed only by employees whose job description includes this.
9. Rights of the data subject
Every person in the register has the right to check the data stored about them in the register and to require correction of any incorrect data or completion of incomplete data. If a person wishes to check the data stored about them or require its correction, the request must be sent in writing to the data controller.
A person in the register has the right to request that personal data concerning them be removed from the register ("the right to be forgotten"). They also have other rights under the EU General Data Protection Regulation, such as the restriction of processing of personal data in certain situations.
The data controller may, if necessary, ask the person making the request to verify their identity. The data controller responds to the customer within the period set out in the EU Data Protection Regulation, generally within one month.
10. Changes to the statement
We continuously develop our services. Risk Control Services Finland Oy reserves the right to change and/or update this privacy statement. We will inform of changes in this document, so please check for any updates from time to time. The changes always take effect immediately after publication on this page.