Privacy policy

ARCHITECTS ARCTILA OY PRIVACY POLICY

Arctila Architects Ltd is committed to protecting your privacy. This Privacy Policy applies to the processing of personal data of our customers, potential customers, partners and website users. This Privacy Policy explains more about this:

  • Who is the controller and what are its contact details
  • What kind of personal data we process and where the data is collected from
  • For what purposes do we use personal data and what is the legal basis for the processing?
  • How long we keep your data
  • How we use cookies
  • What kind of influence do you have
  • Where we transfer and disclose data
  • How we protect your data
  • When do we act as a joint registrar?
  • How we can make changes to the Privacy Policy

Please read the contents of this Privacy Policy. Please also note that our website may contain links to third party services. If you click on these links and go to a third party service, we invite you to read the privacy policy of that site.

  1. WHO IS THE CONTROLLER?

Architects Arctila Oy

Business ID: 3332272-7

Address: Huopalahdentie 24 A4-1, 00350 Helsinki

WHAT KIND OF DATA WE PROCESS AND WHERE IS THE DATA COLLECTED FROM?

We typically process the following data:

  • consumer and business customer contact information, such as name, contact details, contacts, billing information, order information, such as information on products purchased and their product and registration numbers (if any), direct marketing consents and opt-outs, information on websites opened through customer or marketing communications, other information provided by the data subject.
  • contact details of potential customers and partners, such as name, contact details, title and details of the organisation represented by the contact person, such as name, business ID, contact details, details of websites opened through customer or marketing communications.
  • website visitors’ data, such as name and contact information provided through a contact form or chat, automatically collected log data and data collected by cookies describing the user’s terminal equipment and use of the website, in accordance with section 5. You can also visit our website without providing any information that can identify you personally.

We obtain information about our customers and partners from the data subject or the organisation he or she represents, from partners providing credit information or from public authorities. We collect information about potential customers from public sources, such as business registers, company websites or professional profiles such as LinkedIn, or through contacts made through websites.

  1. FOR WHAT PURPOSES DO WE USE PERSONAL DATA AND WHAT IS THE LEGAL BASIS FOR THE PROCESSING?

We process data for the following purposes:

  • Provision of services and delivery of products:We process the information you provide to fulfil a contract we have with you or an organisation you represent. Without processing your personal data, we will not be able to contact you in relation to your contract, manage your digital customer account, deliver the newsletter you subscribe to, or bill you for our products or services, or monitor or collect payments. This processing is based on a contractual relationship (if you are party to the contract) or a material connection and legitimate interest based on a contract with the organisation you represent.
  • Marketing: we process and may disclose your information for marketing purposes based on our legitimate interest. Marketing, such as cookie-targeted advertising and direct-to-consumer electronic marketing, may also be based on your consent.

We use partners for marketing and digital advertising. For example, we use Facebook “custom audiences”, where we target advertising on Facebook to our existing customers. Facebook custom audiences are created by using your email address or phone number to create an encrypted identifier in your browser that is compared to Facebook’s encrypted identifiers. This allows us to target advertising on Facebook to our customers or create audiences that are similar to our customers’ profiles. We have no information about which tags that are passed to Facebook end up in the final target group and which tags have no equivalent on Facebook. Facebook, on the other hand, does not receive any information from us about who is behind the tag. We can also do similar advertising and marketing with our other partners. For more information about third parties and cookies used for digital advertising, please see sections 5 and 7 of this Privacy Policy.

  • Prize draws and competitions: we organise prize draws and competitions in which you can participate if you wish. Processing is based on consent given at the time of participation. You can withdraw your consent at any time, in which case you will no longer be entered into the draw or competition.
  • Business development: we process your data to develop our business and services. This processing is based on our legitimate interest.
  • Ensuring data security and investigating misuse: we process data to ensure data security in accordance with our legal obligations. We may also need to use the information from time to time to prevent and investigate misuse. For example, automatically collected log data allows us to monitor and investigate the activities of the user of the information system and the legitimacy of the use of the data in accordance with our legitimate interest.
  • Safeguarding our rights: we may need to process personal data, for example, to resolve disputes. This processing is based on our legitimate interest.
  • To comply with legal obligations: we may be required to retain some of your personal data to comply with accounting or other mandatory legislation, such as product liability law. From time to time, we have to carry out repair and recall campaigns as required by the Authority. In this case, the processing is based on compliance with a legal obligation.

To the extent that the processing is based on legitimate interests, we consider the processing to be of benefit to both you and us. The processing of personal data enables us to provide you with relevant information about our contract or services. Given the nature and purpose of the data, we consider that the processing is not incompatible with your fundamental rights or freedoms. You can object to marketing at any time. You can object to other processing based on legitimate interests on grounds relating to your personal situation as described in section 6.

We do not make automated decisions that would have legal consequences or otherwise significantly affect you.

  1. HOW LONG DO WE KEEP THE DATA?

We will keep your personal data for as long as necessary to fulfil the purposes described above. The main retention periods are as follows:

  • we retain personal data for as long as the customer or contractual relationship is active (for example, the contractual relationship or direct marketing agreement is in force or the business customer contact has not opted out of marketing) and for approximately two years after its expiry for the purposes described in this Privacy Policy, such as managing the contractual relationship, business development and marketing;
  • after the above-mentioned retention period, we will retain the data for approximately five years to respond to any complaints; and
  • any personal data contained in the supporting documents will be kept for seven years to comply with accounting obligations.

Once the above retention periods have expired, we will delete the data unless it is necessary to retain it for a longer period of time, for example, to respond to a legal request or inquiry from a public authority or to comply with product liability or other mandatory legislation.

  1. HOW ARE COOKIES USED ON THE WEBSITE?

We may collect information about the user’s terminal device on our services through cookies and other similar technologies. A cookie is a small text file that the browser stores on the user’s terminal. Cookies contain a unique, anonymous identifier that allows us to identify and count the browsers that visit our site.

Cookies do not move around the network on their own, but are only placed on the user’s terminal device with the website they visit. Only the server that sent the cookie can later read and use the cookie. Cookies or other technologies do not harm the user’s terminal equipment or files, and cookies cannot be used to run programs or spread malware.

We use cookies to collect technical information about your terminal device and information about your use of our websites. This information includes, for example:

  • device-related information, such as device type, browser version, screen size, operating system, IP address;
  • a unique cookie or mobile identifier; and
  • information about your use of online services, such as page loads, time spent on online services, duration of time spent on online services, navigation on online services or content viewed, such as articles or products in an online store.

We may use session cookies, which expire when you close your browser, and persistent cookies, which remain on your device for a certain period of time or until you delete them. Persistent cookies typically have a lifespan of a few months to a few years.

Ns. first-party cookies are set by the website displayed in the address bar. In addition to these, our website uses so-called. cookies from third parties, such as advertising technology providers and social media services.

We classify cookies according to their purpose as follows:

  • Necessary cookies: these cookies are necessary to use our services and their functions, for example to log in or to implement chat and shopping cart functionality.
  • Analytical cookies: these cookies allow us to obtain information about how our websites are used. Among other things, we use Google Analytics, a web analytics service provided by Google Inc., to analyse the use of our websites and to improve our websites to better serve our users. The information stored in the cookies used by Google tools is sent for further storage on Google servers around the world. As a result, such data may be processed on servers located in a country other than the user’s country of residence. Google uses this information to evaluate your browsing habits and compile aggregated reports on website usage. Google also compiles reports on the services provided in connection with websites and produces statistics on internet usage. Google may also transfer data to third parties where required to do so by law, or where such third parties process the data on Google’s behalf.
  • Advertising cookies: these cookies are used to target advertising elsewhere on the Internet. Advertising cookies are, by default, third-party cookies. Some of these third parties process data as independent data controllers, and you can find out more about their processing of personal data in their privacy policies. Advertising barriers include. Google and Facebook.

You can influence cookies in the following ways:

  • Delete cookies: you can delete or clear cookies in your browser settings, which will reset the profile associated with the previous identifier.
  • Blocking cookies: you can block cookies in your browser settings. Blocking cookies may affect the functionality of our services or prevent you from using our services, such as the login or shopping cart functionality.
  • Preventing the use of Google Analytics: you can prevent Google Analytics from accessing your site’s data by installing the browser add-on to prevent the use of Google Analytics here. This add-on prevents Google Analytics JavaScript (ga.js, analytics.js and dc.js) running on websites from sharing website traffic data with Google Analytics.
  • Preventing ad targeting: the Your Online Choices website offers a comprehensive information package on online advertising and the possibility to opt out of browser-based advertising. It’s important to note that after you opt out, you will be shown as much advertising as before, but the ads will not be targeted to you or necessarily of interest to you. You can also influence the targeting of advertising directly on a third-party site. For example, on Facebook, you can influence advertising here.
  1. WHAT KIND OF INFLUENCE DO YOU HAVE?

To the extent permitted and required by law, we will exercise the rights described below:

  • Right of access: you have the right to obtain confirmation that personal data concerning you is or is not being processed. If your personal data is processed, you have the right to a copy of the personal data, provided that the disclosure does not adversely affect the rights and freedoms of others.
  • Right to rectification and erasure: At your request, we will rectify or erase personal data that are inaccurate, incomplete or unnecessary for the purposes of processing. Data will not be deleted if it is necessary, for example, for the establishment, exercise or defence of legal claims.
  • Transfer of data: if you wish, you can have the personal data you have provided, which we process automatically on the basis of consent or a contract, transferred to you or to a third party in a machine-readable format.
  • Right to opt-out of direct marketing and related profiling: you can opt-out at any time from the disclosure and processing of your data for direct marketing purposes.
  • Right to withdraw consent: you can withdraw your consent at any time.
  • Right of objection and restriction: you can object to processing based on a legitimate interest on grounds relating to your personal situation. For example, in such a situation, processing will be limited for the time it takes to assess the grounds for objecting to the processing. Processing may also be limited, for example, if you contest the accuracy of the personal data, in which case processing will be limited for a period of time during which we can verify the accuracy of the data. If there is a substantial and legitimate ground for the processing which overrides your rights or freedoms, or if the processing is necessary for the establishment, exercise or defence of legal claims, we will contact you to continue the processing.
  • Right to complain: you can lodge a complaint with a public authority if your personal data has been processed in breach of this Privacy Policy and the applicable law. The contact details of the supervisory authority, the Data Protection Ombudsman, can be found at: http://www.tietosuoja.fi. However, we kindly ask you to contact us first so that we can resolve the matter amicably.

To exercise the rights described above, please contact us at the address in section 1. You can also object to or withdraw your consent to direct marketing via the link at the end of each message. We will ask you to verify your identity to ensure that the information is not disclosed to anyone other than the data subject.

  1. WHERE IS THE DATA TRANSFERRED AND DISCLOSED?

We use subcontractors, such as carriers, warehouse operators, and information system providers to process the data, and we have contractual arrangements in place to ensure that the data is processed in accordance with applicable laws. If we transfer data outside the EU or EEA, we ensure an adequate level of protection of personal data, including by agreeing on confidentiality and processing issues as required by law, such as using EU standard contractual clauses.

We do not disclose information to third parties for their own independent purposes other than as set out below:

  • Authorities: we may disclose personal data as required by the competent authorities, in accordance with the law in force from time to time.
  • Marketing: we may share your information with selected partners for marketing purposes, unless you have opted out.
  • Partners: we may share your information with our partners for their legitimate purposes, unless you have opted out.
  • Mergers and acquisitions: if we sell, merge or otherwise reorganise our business, personal data may be disclosed to buyers and their advisors.
  • Collection and claims: we may disclose your information to selected partners for the purpose of collecting our claims and for legal claims.
  1. HOW IS THE DATA PROTECTED?

We use appropriate technical and organisational security measures to protect personal data against unauthorised processing. These include the use of firewalls and encryption technologies, appropriate access control, limited access rights, training of staff involved in the processing of personal data and careful selection of subcontractors.

  1. WHEN WE ACT AS JOINT REGISTRAR

To the extent that we maintain a page on Facebook or other similar social media services or use their functionalities, such as a like button on our website, we may be a joint controller of that page. with your service provider. For example, through our Facebook fan pages, we collect statistics such as. Likes and visits to our Facebook pages, the visibility of our publications and the demographic profiles of the people who have reached our publications. We also see public information about people who have liked or commented on our pages, such as their name and profile picture, and other information in accordance with the privacy settings you have set up on Facebook. For more information on the processing of personal data, please consult the privacy policy of Facebook or another similar social media service.

  1. CAN CHANGES BE MADE TO THIS PRIVACY POLICY?

We are constantly developing our services and may change this Privacy Policy. Changes may also be based on changes in legislation or regulatory guidance. We recommend that you regularly consult the contents of the Privacy Policy on our website.

This Privacy Policy was last updated on 09.02.2024

Contact us

We are happy to help! You can contact us using the form below or by calling +358 44 7550210.

Architects Arctila Oy

Business ID: 3332272-7

Address: Huopalahdentie 24 A4-1, 00350 Helsinki

ContactInformation: laura.kaveri@arctila.fi