Korona Invest processes personal data confidentially, in accordance with the EU’s General Data Processing Regulation (GDPR). This privacy policy describes what kind of personal data are collected, what purposes they are used for and what possibilities data subjects have to affect these matters.
Controller
Korona Invest Oy
Business ID 2037737-4
Korkeavuorenkatu 30, 00130 Helsinki
firstname.lastname@koronainvest.fi
Collection and processing of personal data
Personal data are collected primarily from data subjects themselves. Personal data can also be collected from public or other official sources, such as from registers of the Finnish Patent and Registration Office or the Business Information System.
Personal data that are collected and processed can include, for example:
- name, email address, telephone number
- information related to agreements
- information related to the recruitment process
Korona Invest can also collect and process information on people who visit the company’s websites in the form of cookies. These details are not processed for identifying individuals.
Details that are collected and processed can include, for example:
- browsing details on the online service
- cookie data on the online service (such as a user’s method of entering the service, browser and equipment details, time spent in the service, geographical location)
- requests for contact
Korona Invest collects and processes personal data only in accordance with pre-determined purposes to fulfil mandatory requirements and obligations imposed by legislation, such as in order to prevent money laundering.
Korona Invest can collect and process personal data in order to develop, manage and maintain customer and business relationships between the company and customers.
In addition, Korona Invest collects and processes personal data to make recruitment decisions and to manage employment relationships. In these operations, the collection of personal data is based on either the law or contractual obligations.
Storage of personal data
Korona Invest stores personal data until they are no longer needed for the purpose for which they have been collected or, if a data subject withdraws their consent and Korona Invest is not legally obligated to store the personal data collected.
Personal data that Korona Invest has collected on the basis of the law are stored for the period laid down in the law (such as for 10 years from the end of the financial year according to the Accounting Act or for 5 years from the end of the business relationship under the Money Laundering Act).
Korona Invest evaluates the necessity of storage of personal data regularly, taking account of applicable legislation.
Protection of personal data
Korona Invest uses the necessary technical information security measures to protect personal data. Such measures include use of firewalls, encryption technologies and safe equipment facilities, controlled issuance of access rights and supervision of their use.
Rights of the data subject
The data subject has the right to verify information stored on him or her in the personal register and to obtain the rectification or erasure of inaccurate information, if legal grounds for this exist. The data subject also has the right to withdraw consent or to alter it.
In accordance with the GDPR, the data subject has the right to object to or request restriction of processing of data on him or her, and the right to lodge a complaint with a supervisory authority. Furthermore, the data subject has the right to obtain his or her data from our systems in a standardised format, as prescribed in detail in the GDPR.
Further information
The controller is Korona Invest Oy. The user can contact the controller at any time.