Protect

Protect

Privacy Policy

1 Data controller

SK Protect Oy, Y1700958-9

Satamatie 330, 67100 Kokkola, Finland,

http://www.protect.fi

 

2 Contact person for matters concerning the registers

CEO: Pertti Salo, 044 0665 916,protect

Data Protection Officer: Saija Pottala, 043 8200 064,protect

 

3 Name of the register

Customer register, marketing register and jobseeker register.

 

4 Purpose of processing personal data

We collect, store and process personal data only for predefined purposes.

  • Customer register
    • We process personal data to manage the customer relationship and to ensure that the legal rights and obligations of both the customer and the controller are met. This includes, for example, providing a service or product, providing customer service, processing orders and payments, meeting legal accounting and tax obligations, and safeguarding rights and interests in the event of a contract or dispute. The basis for processing is the contract. (Art. 6.1 b)
  • Marketing register
    • Remarketing based on web behaviour online and in social media, marketing and developing services. By subscribing to the service, the person gives consent to be sent marketing communications. The basis for processing is consent or legitimate interest (Art. 6.1a, f).
  • Register of jobseekers
    • Processing job applications and communicating with jobseekers. Processing is based on consent. (Art. 6.1a)

Your data may also be collected and processed to fulfil legal obligations, such as for accounting and regulatory purposes (Art. 6.1 c).

The data subject has the right to withdraw his or her consent to the processing of personal data at any time by contacting us using the contact details set out in this Privacy Policy.

5 Data content of the register

The register may contain the following information about customers:

  • Name, business name and contact details
  • Company and position
  • Legal persons, name and contact details
  • Customer number and/or other equivalent identifier
  • Customer and contract information and history
  • Billing information
  • Other additional information obtained from the customer or collected with the customer's consent.
  • Other classification data describing the activity of the enterprise/customer
  • Customer feedback
  • IP address or other identifier
  • Data collected through cookies
  • Newsletter subscription and analytics
  • What expert material have you ordered/downloaded?
  • Site behaviour and analytics
  • Data collected from social media channels
  • Participation in events
  • Photo and video material from events or specially organised filming
  • Marketing ban
  • Job application, curriculum vitae and other additional information provided by the jobseeker
  • Information on the progress and outcome of recruitment
  • Recruitment-related communication with the jobseeker
  • Application for sponsorship and additional information provided by the applicant
  • Communication related to sponsorship applications

The controller will process and store personal data only for as long as necessary for the predefined purpose for which the personal data is collected. The retention period is determined by applicable law, contractual obligations and legitimate interests. We will regularly assess the necessity and delete unnecessary data.

 

6 Regular sources of information

The data is collected directly from the data form on the website, either entered by the individual or otherwise directly from the data subject. Personal data may be updated from public or publicly available sources (e.g. LinkedIn and business registers).

Personal data is stored in the marketing register when a person subscribes to SK Protect Oy's services or downloadable material, registers for an event or webinar, or submits a contact request or application. Personal data is stored in the customer register if the person belongs to a partner or customer company of SK Protect Oy. For direct marketing, register data is obtained from the data subject or from a public network. Personal data is stored in the register of job applicants if the person submits a job application or otherwise expresses in writing his/her interest in working for the company.

 

7 Regular disclosures of data

Data is not disclosed on a regular basis.

With the separate consent of the data subject, data may be disclosed to the controller's partners. Without consent, data will only be disclosed to a public authority in situations required by law. In addition, the controller uses reliable service providers for the technical implementation of its services, who process personal data on behalf of the controller. Contracts for the processing of personal data in accordance with data protection legislation have been concluded with these service providers.

 

8 Transfer of data outside the EU or EEA

As a general rule, personal data is not transferred outside the EU or EEA. Where personal data is transferred outside the EU or EEA, we will ensure that there is a basis for the transfer under data protection law. This may include, for example, EU standard contractual clauses and, where necessary, additional safeguards. For more information on the safeguards in place, please contact us using the contact details set out in this Privacy Notice.

 

9 Principles of register protection

  • Personal data is processed only in electronic form. If personal data is temporarily in paper form, it will be converted into electronic form without delay and the paper versions will be destroyed appropriately.Appropriate technical and organisational measures are taken to protect personal data against unauthorised access, alteration, loss or destruction. These measures are based on a risk assessment and comply with the principles and requirements of the ISO 27001 information security standard.

    Technical safety measures include firewalls, encryption, user authentication and access management. Organisational measures include safety training for staff, access control and regular review of safety policies.

    Only employees and service providers who are entitled and obliged to have access to personal data by virtue of their work and who have undertaken to respect confidentiality.

    We process personal data in a way that minimises the risks to data subjects. In the event of a personal data breach, we will act in accordance with the applicable data protection legislation and notify the authorities and, where appropriate, the data subjects without undue delay.

    We regularly assess the data protection risks of processing activities. If the processing is likely to pose a high risk, we will carry out a data protection impact assessment before starting the processing and implement the necessary risk management measures.

 

10 Cookies on the website

Cookies are small text files that are automatically stored on your device when you visit a website. We use cookies to make our service user-friendly, functional and of high quality.

The cookies we use are divided into essential cookies and cookies requiring consent:

  • Necessary cookies are based on legitimate interest (Art. 6.1 f) and enable the technical functioning of the website.
  • Marketing and analytics cookies require your consent (Art. 6.1a).

Cookies are used to analyse, develop, target and optimise the use of the website. We also use cookies to tailor content and advertising, support social media features and track visitor numbers. We also share information collected through cookies with our marketing, analytics and social media partners, who may combine it with other information.

You can manage and change your consent through the cookie notice. For a detailed list of the cookies we use, please see our cookie banner. Most browsers also allow you to block cookies, but this may affect the functionality of the service. You can block the use of Google Analytics by following Google's instructions.

This website also uses third party cookies.

Necessary (8)

Necessary cookies help make the website usable by allowing basic functions such as page navigation and access to secure areas of the site. The website will not function properly without these cookies.

 

11 Rights of the data subject

In accordance with Articles 15-21 of EU GDPR 679/2016, the data subject has the right of access, rectification or erasure, restriction of processing, portability and objection to the processing of personal data.

We use job titles to target marketing communications. This means, for example, that we may send you messages that are likely to be related to your profession or job. This is profiling under Article 4(4) of the GDPR, but we do not make decisions based solely on automated processing that would have legal or similarly significant effects on data subjects (Art. 22). You have the right to object at any time to the processing of your personal data for direct marketing and related profiling.

With reference to the above-mentioned rights, requests must be sent in writing and signed to the address mentioned in section 2 or may also be made in person to Port Tower, Satamatie 330, 67101 Kokkola, Finland.

If your request is manifestly unfounded or unreasonable, we may either charge a reasonable fee based on administrative costs to carry out the requested action or refuse to carry out the requested action.

If you believe that the processing of your personal data infringes data protection law, you have the right to lodge a complaint with a supervisory authority. In Finland, the supervisory authority is the Office of the Data Protection Ombudsman (www.tietosuoja.fi).

 

12 Other rights relating to the processing of personal data

The register will not be disclosed to third parties for direct marketing, distance selling, other direct marketing or market or opinion research.

SK Protect Oy reserves the right to amend this Privacy Policy if necessary. The latest version will be published on the website and can be checked when you visit the website.

Privacy policy updated 30.9.2025