Privacy Policy

  1. Register Controller

    Customer company

  2. Contact Person For Register Matters

    Contact person of the customer company

  3. Maintainer of the register

    Grano Oy
    Business ID: 2197935-0
    Kuortaneenkatu 1
    FI-00520 Helsinki
    Harri Pekola
    Tel. +358 29 1800 400

  4. Name Of The Register

    Digtator Publishing customer register

  5. Basis And Purpose Of Processing Personal Information

    The processing or personal information is based on of the use of the service or the registers that are related to the use of the service.

  6. Information Contents Of The Register

    The information content is customized for every customer instance.
    The register includes the following information about customers:
    The customer’s basic information: first and last name, telephone number, e-mail address
    User and order history (e.g. monitoring information for deliveries, information related to invoicing and debt collection, delivery and billing addressess)
    Any other information provided by the customer

  7. Regular Sources Of Information

    The information in the register is collected regularly directly from the customer, consisting of information gathered from the customer’s use of services and the online service or other business conducted with Grano, as well as information gathered from and during making an agreement.

  8. Regular Disclosures Of Information And Transfer Of Information Outside The EU Or The EEA

    Grano does not regularly disclose information in the register to external parties.

  9. Principles Of Protecting The Register And Retention Time Of The Information

    Only employees whose job description entitles them to process customer information are entitled to use the system containing customer information. Each user has a personal username and password for the system. The information is collected into databases that are protected with firewalls, passwords and other technical means. The databases and their back-ups are located in locked facilities, and the information can only be accessed by certain persons designated in advance.
    Personal information is retained as long as necessary for its purpose, with retention times prescribed by laws such as the Consumer Protection Act, the Accounting Act and the Prepayment Act taken into consideration.

  10. Right Of Access And The Right To Have Information Corrected

    The registered person has the right to access and inspect his/her personal information recorded into the register, as well as the right to demand to have information corrected or removed. Requests concerning this matter must be submitted personally or in writing to the contact person mentioned in Section 3.

  11. Responsibilities of the register controller

    The customer company as the controller and the customer contact person is responsible for the accuracy and legality of the user data in the service. In addition, the customer user is responsible for having the right to process and send personal data through the service and to submit them for processing and to grant the service provider (Grano Oy) the right to process them.