MotoCut logo

Privacy policy

1. Purpose

The purpose of this Privacy Policy is to set forth the obligations, main principles and operating models that must be followed to ensure compliance with Data Protection Act 1050/2018 and the EU General Data Protection Regulation 2016/679 (GDPR).

The purpose of this Policy is to ensure that MotoCut Oy complies with the GDPR, national data protection legislation and other legislation that concerns the processing of personal data and that such compliance may be demonstrated through appropriate and up-to-date documentation.

2. Scope

This Privacy Policy describes Our policies and procedures on the collection, use and disclosure of Your information when You use the Service and tells You about Your privacy rights and how the law protects You.

We use Your Personal data to provide and improve the Service. By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy.

3. Definitions

  • Personal data: means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
  • Company: (referred to as either "the Company", "We", "Us" or "Our" in this Agreement) refers to MotoCut Oy.
  • Website: refers to www.motocut.fi, accessible from https://www.motocut.fi/ or https://www.motocut.com/.
  • You: means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable. Under GDPR (General Data Protection Regulation), You can be referred to as the Data Subject or as the User as you are the individual using the Service.
  • Processing: means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
  • Profiling: means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements.
  • Controller: means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
  • Consent: of the data subject means any freely given, specific, informed, and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
  • Third party: means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorized to process personal data.

4. References

  • Data Protection Act 1050/2018
  • EU General Data Protection Regulation 2016/679 (GDPR)

5. Responsibilities

  • Top Management of MotoCut – is responsible for ensuring institutional compliance with data protection laws and for implementing the required monitoring activities.
  • The data protection officer – is responsible for preparing and providing guidelines and training on data protection and data security within MotoCut Oy.
  • Employees – shall perform all their tasks in compliance with data protection legislation, the MotoCut Data Protection Policy and other instructions and guidelines governing data protection and data security issued by MotoCut.
  • All employees are obligated to comply with, maintain and monitor data protection and information security.

All the members of MotoCut Oy (top management, employees and visitors) are obligated to adhere to this Data Protection Policy and all the other practices, regulations and instructions governing data protection and information security within MotoCut Oy.

6. Privacy Policy

6.1 Registry and Privacy Statement

This is the Registry and Privacy Statement on the processing of personal data in accordance with the Data Protection Act 1050/2018 and the EU General Data Protection Regulation 2016/679 (GDPR).

The description will be updated as necessary.

Last Updated Date: 16.11.2023

6.2 The Controller

MotoCut Oy
Menotie 1
33470 Ylöjärvi
Finland
ID: 2467886-0

6.3 Contact person responsible for the register

Marko Tamminen, CEO
Marko.tamminen@motocut.com
Phone: +358 50 434 7529

6.4 Name of the register

MotoCut Oy customer and contact information registers.

6.5 Legal bases and purpose of processing personal data

The legal basis for the processing of personal data under the EU General Data Protection Regulation is:

  • the person's consent (documented, voluntary, individualized, informed, and unambiguous)
  • an agreement to which the data subject is a party
  • legitimate interest of the controller (e.g., customer relationship, employment relationship)

Personal information is used in accordance with existing laws and regulations to manage and develop customer relationships, marketing, and communications. The data is not used for automated decision making or profiling.

6.6 Information content of the register

The information stored in the register includes name, position, company / organization, contact information (telephone number, e-mail address, address) and website addresses.

6.7 Retention period of personal data

Company processes and stores personal data only for as long as required by a legal obligation or when necessary for the pre-defined purpose of the personal data. Personal data that has become redundant and that companies no longer have a reason to store or process is deleted at regular intervals in accordance with the Group's own data protection policies.

6.8 Regular sources of information

The information stored in the register is obtained from the customer e.g., messages sent via web forms, e-mail, telephone, via social media services, agreements, customer meetings and other situations in which the customer or a partner provides information himself or herself or his or her employer.

In addition, information is obtained from public / publicly available sources such as the Internet or the Trade Register.

6.9 Regular transfers of data and transfers of data outside the EU or the EEA

The data will not be disclosed or regularly transferred to other parties, either within the EU or outside the EU or the EEA.

6.10 Registry security principles

The register shall be handled with due care and the data processed by the information systems shall be adequately protected.

If manual information is generated, it will be handled properly and stored in a locked space.

When registry information is stored on Internet servers, the physical and digital security of their hardware is adequately addressed.

The controller shall ensure that the data stored, as well as the access rights to the servers and other information critical to the security of personal data, are treated confidentially and only by the employees whose job description it includes.

6.11 Rights of the data subject

Every person in the register has the right to check the information stored in the register and to request the correction of any incorrect information or the completion of incomplete information.

If a person wishes to check the data stored about him or her or to request their correction or deletion, the request must be sent in writing to the data controller.

If necessary, the controller may ask the applicant to prove his or her identity.

The controller will respond to the customer within the timeframe set out in the EU Data Protection Regulation (generally within one month).

7. Links to Other Websites

Our Service may contain links to other websites that are not operated by Us. If You click on a third party link, You will be directed to that third party's site. We strongly advise You to review the Privacy Policy of every site You visit.

We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.

8. Changes to this Privacy Policy

We may update Our Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page.

We will let You know via email and/or a prominent notice on Our Service, prior to the change becoming effective and update the "Last updated" date at chapter 6.1 of this Privacy Policy.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

9. Contact Us

If you have any questions about this Privacy Policy, You can contact us:

linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram