We value your privacy
Every person values their privacy. So do also our customers and employees. That’s why we are committed to protect your privacy and follow the laws applicable to processing personal data. However, our business and operations require collection and use of personal data. Our privacy principles describe for instance what personal data we collect and use, for what purposes, who has access to your personal data and what rights you have relating to your data.
- Your privacy is important! Marketing services companies typically collect and use a lot of personal data. However, we value your privacy and we are committed to follow all applicable privacy laws.
- Personal data is confidential. Your personal data is confidential and primarily our employees have access to it, or in limited situations subcontractors with whom we have made a written agreement.
- We collect and use personal data according as planned. We avoid unnecessary collection, use and storing of personal data.
- Written agreements with subcontractors. We use only such subcontractors who execute a written agreement with us and who are committed to protecting your personal data.
- If we process our customer’s personal data, we do it only for their benefit. We often also process our customer’s personal data as their subcontractor for marketing services. This is always based on written agreements and we do not use their data for any other purpose than for the customer’s benefit in accordance with their instructions.
- Main purposes for processing personal data. We collect and use personal data mainly for providing and delivering our services, marketing, customer relationship management, invoicing and development of the marketing services business.
How do we use your personal data?
We collect, store and use personal data relating to you only for predefined purposes. The main purposes are:
Offering and delivering our services, customer relationship management. We use personal data in matters relating to customer relationship management, such as provision and delivery of our services, invoicing and collection of payments, handling customer complaints, customer support and customer satisfaction. Some of our services may be used also by logging into an online service with a personal user account. We may also use personal data in connection with services notifications.
Marketing and communications of our services. Within the boundaries of applicable laws, we may also collect and use personal data for marketing and direct marketing purposes. This may include the use and analysis of personal data for targeting marketing and service offerings. We may for instance show in our channels targeted messages and content based on what you have previously been interested in.
Product development of marketing services. We believe in continuous development. That’s why we may also use personal data for developing our marketing services, such as designing new service concepts or improving our processes.
Fulfilling legal obligations. Personal data may also be collected and used for fulfilling legal obligations, such as book-keeping and responding to requests made by authorities.
Human resources management. Personal data relating to employees and job applicants are mainly collected and used for human resources management purposes, fulfilling rights and obligations relating to employment contracts, meeting legal requirements relating to employment as well as evaluating and selecting candidates for open positions.
What personal data do we collect and from which sources?
We collect personal data about you mainly from yourself and later when using our services. We may also collect personal data relating to customers from public sources or registers, such as LinkedIn or other social media channels. We also collect website visitor information with Google Analytics and HubSpot services, so that we can analyze and further develop our website and target relevant marketing to our website visitors.
We collect and use personal data mainly relating to our customers (including potential customers), employees and job applicants.
Typically we may get the following personal data directly from our customer’s contact person:
- Name of the employer of the customer contact person, contact person’s name, work address, work email, phone number, job title;
- Information about marketing consents and/or opt-outs of the contact person;
- Classification information given by the person, such as areas of interest;
- Information given through online forms or chat;
- Feedback information.
While using our services, we may also process the following personal data:
- IP address;
- Order and invoicing details containing personal data;
- Data collected through cookies;
- Data relating to the use of our website.
From third party sources we may receive the following personal data relating to customers:
- Use of social media, such as Facebook, LinkedIn and Instagram.
Regarding data relating to employees and job applicants, we process mainly the following personal data received from the employee or during the employment:
- Contact information relating to the employee or applicant;
- Job applicant’s application, resume and reference details received with the applicant’s consent;
- Data required for paying salaries;
- Data required to fulfill rights and obligations relating to the employment;
- Certain special categories of data relating to the employee (union membership and data relating to health), but solely for complying with legal obligations of the employer.
With your consent we may collect and process also other data.
What is the basis for using personal data?
We make sure that we always have at least one condition required by law to collect and use your personal data. We may process your data on a several different basis.
Personal data relating to potential and existing customers are processed mainly for performing and executing contracts or to further our legitimate interests, which are especially provision and delivery of our services, customer relationship management, direct marketing, development of marketing services, handling customer complaints and feedback as well as offering support and other services.
We may also process personal data based on your consent, which mainly concerns the use of your email address for email marketing. If we process your personal data based on consent, you can whenever withdraw the consent you have given.
We may also process your personal data for fulfilling legal obligations.
Who will have access to your data?
Primarily your personal data is processed by people within our own organization in relation to the tasks they are executing.
Your personal data may occasionally be provided confidentially to our subcontractors, who process the personal data based on a written agreement. Our subcontractors process personal data only as agreed and instructed by for furthering the purposes defined in these principles.
We may use subcontractor relating to customer data especially for storing and managing data (cloud storage, project management, communications, CRM), technical support and for developing websites.
In employment matters we may use subcontractors especially for accounting and payroll services, occupational healthcare and storing data (cloud services).
We may also provide personal data to a third party for fulfilling contractual obligations or due to a legal obligation or requirement by an authority.
We may also provide personal data to a third party if we are involved in a business sale.
We may also transfer anonymized or statistic data, from where it is not possible to identify a person. If this kind of data is no longer considered personal data, we may provide the data to third parties also for other purposes than those described here.
Is your personal data transferred outside the EU?
In certain situations your personal data may be transferred outside the EU. Some of the cloud services we use may locate outside the EU. Sometimes we may also use development subcontractors that are outside the EU.
If personal data is transferred outside the EU, we make sure that the transferee is located in a country with adequate safeguards (as decided by the EU commission from time to time), the transferee is Privacy Shield certified (if a US-based company) or the transfer occurs by using model clauses published by the EU commission.
How long is your personal data stored?
We will not store your personal data for longer period than is necessary for its purpose or required by contract or law. The storage times for personal data may vary based on its purpose and the situation. Storage period may also be based on law, such as bookkeeping. We also intend to keep your data up to date. Unnecessary data is deleted.
How is your data kept secure?
Your data is stored primarily in electronic form on the servers provided by our service providers, which are secured according to general industry standards and practices. We consider and keep your personal data confidential and do not disclose them to anyone else than those who need it for their work or confidentially to our contract partners, such as subcontractors. Access to your personal data has been protected with user-specific logins, passwords and user rights. Our premises are also secure and safe.
Is it mandatory to provide personal data?
If you don’t provide us some of your personal data or allow processing of it, it is very likely that we cannot serve you and fulfill the purpose of our business. If you don’t want us to process your data, we ask you to not provide us any personal data.
What rights do you have?
Withdraw your consent
If we process personal data based on your consent, you can at anytime withdraw your consent by notifying us, for instance by sending email to [firstname.lastname@example.org].
Access to data
You have the right to have confirmed if we are processing your personal data and also to know what data we have about you. In addition, you have right to some supplemental information described in the law about the processing activities.
Right to have errors corrected
You have the right to request that we correct any inaccurate or outdated personal data we have about you.
Right to prohibit direct marketing
You have the right to request that your personal data is not processed for direct marketing purposes by sending us email to [email@example.com].
Right to object processing
If we process your personal data based on public interest or our legitimate interest, you have the right to object processing of your data, to the extent that there is no such significant other reason that would override your rights or the processing is not necessary for handling legal claims. Please notice that in this situation we may not be able to serve you anymore.
Right to restrict processing
In certain situations you have the right to require that we restrict processing of your personal data.
Right to data portability
If we process your personal data based on your consent or fulfilling of a contract, you have the right to require transfer of the data you have provided to us to another services provider in a commonly used electronic format.
How can you use your rights?
You can execute and use your rights by contacting us, for instance by sending email to [firstname.lastname@example.org]. In such case, we ask you to provide us your name, contact details, phone number as well as a copy of valid personal ID, such as a driver’s license or passport, so we can verify your identity. If you consider that the processing of your personal data is not lawful, you can always also make a notification to a supervisory authority.
Who can I contact in privacy matters?
Advance B2B Oy
Malmin raitti 17 A
Business ID: 2615844-7
Advance B2B's contact person: Mikko Seppä, email@example.com
Data protection officer: LAKIUS Oy, Villy Lindfelt, firstname.lastname@example.org