PRIVACY POLICY AND REGISTER DESCRIPTION
This is the privacy policy and register description for Vermilia in accordance with The General Data Protection Regulation (GDPR) (EU) 2016/679.
The controller is Vermilia, Finland.
The contact person responsible for the register is Ground Media Group, info(a)groundmediagroup.com, .
The name of the registry is “Vermilia Mailing List”.
The purpose of processing personal data is cooperation and marketing. The information given in the register will not be further processed in any way and will not be used for purposes other than those mentioned above. You can cancel your press release subscription at any time.
Information stored in the register includes: name of the person, company/organisation and contact details. The data will be kept as long as the cooperation/customer relationship continues and no more than two years after it ends.
The data stored in the register can be obtained from the customer/partner’s web form, website, email, telephone, social media services, contracts, customer meetings and other situations in which the customer/partner releases their information.
Information is not disclosed to other parties. The register is used in the MailChimp application, which is responsible for compliance with data protection regulations in the EU. The company keeps the registry data in Finland. The website also uses Google Analytics and Google Analytics cookies. The data collected by these cookies will be transferred and stored on Google servers, some of which may be located outside the EU. You can ban cookies at any time. Most web browsers accept cookies, but you can change your browser settings and prevent new cookies from being saved, disable existing cookies, or request notification before saving new cookies. If you want your browser to block the use of cookies, set the settings according to the instructions of your browser manufacturer.
Care is taken in the handling of the register and the information processed through the information systems is properly protected. When registry data is stored on internet servers, the physical and digital security of their hardware is properly taken care of. The controller ensures that the stored data, server access and other information critical to the security of personal data are processed confidentially and only by the employees who have the duty to process them. Each person in the register has the right to check their data stored in the register and to require any correction or replenishment of any incorrect information.
If a person wishes to verify or require correction of the information stored about him or her, the request must be sent in writing to the controller. If necessary, the controller may ask the applicant to prove his or her identity. The controller responds to the customer within the time (as a rule, within one month) provided for in the EU Data Protection Regulation.
The person in the register has the right to request the removal of personal data relating to him from the register (“right to be forgotten”). Data subjects also have other rights under the EU General Data Protection Regulation, such as restricting the processing of personal data in certain situations. Requests should be sent in writing to the controller. If necessary, the controller may ask the applicant to prove his or her identity. The controller responds to the customer within the time (as a rule, within one month) provided for in the EU Data Protection Regulation.