Ehrensvärd Society ry, customer registry
The Ehrensvärd Society ry (Business ID: 0220249-0)
Suomenlinna B 40
2. Persons responsible for the registry
Name: Carita Wilenius-Rantala Postal address: Suomenlinna B 40, FI-00190 Suomenlinna
Telephone: +358 9 68999850
3. Controller’s contact information
Name: Carita Wilenius-Rantala
Postal address: Suomenlinna B 40, FI-00190 Suomenlinna
Telephone: +358 9 68999850
4. Collected customer information and data sources
The booking, purchasing and using of the services and products offered by the Ehrensvärd Society and its subsidiary, Suomenlinnan Matkailuexpert Oy, require providing certain personal information. Your personal information may be collected in various ways. We mainly collect and process personal information received primarily;
We may also obtain information from other sources to the extent allowed by applicable laws, including but not limited to e.g. the Finnish Trade Register, the Finnish Population Information System, the Finnish Business Information System or the address data system of the Finnish postal service Posti.
You do not have to provide us with your personal information, but in this case we may not be able to provide our service for you.
Examples of the personal information categories that we collect and process:
You may prevent the setting of cookies, limit their use or remove them from your browser. Since cookies enable the functionality of our website, limiting their use may affect the usability of the website.
5. Purpose and legal grounds for the processing of personal information
The processing of personal information is typically based e.g. on the data subject’s consent, on the legitimate interest of the controller, or on the fulfilment of such a contract whereto the data subject is a party.
We only collect and process personal information that is necessary for the running of our business operations, for maintaining customer relations and for appropriate commercial purposes.
We will process your personal information for the following purposes, based on applicable data protection legislation:
Providing a service and maintaining customer relations
For example: When at issue are customers and the data pertaining to users of the webshop up until the performance of the order, the processing and storing of data is necessary in order to fulfil the agreement and to realise the procedures preceding the agreement (e.g. maintenance of customer relations, orders, invoicing, payment control, granting payment time and collecting, customer communications). When at issue are customers after the fulfilment of the agreement and those who have handed over their data for marketing purposes (e.g. participants in contests and newsletter subscribers), the processing is necessary in order to realise the controller’s legitimate interests (e.g. maintenance, development and analysis of customer relations, customer communications, planning of activities and tracking).
Developing services and products, data protection and internal reporting
Compliance with laws
6. Personal information processors
Your personal information will only be processed by persons specifically authorised for it by the Ehrensvärd Society, in order to carry out their work tasks and for the purposes and on the grounds stated in this notice. Your personal information will only be processed to the extent necessary for the processing. (See also section 7)
7. Transferring and handing over personal information
Your data will not be handed over or transferred outside of the EU, the European Economic Area or such countries where the European Commission has determined that the level of data protection is sufficient, an exception being companies party to the Privacy Shield arrangement between the European Union and the United States. The latter is here represented by the Google Analytics cookies used on our website. The data collected by said cookies is transmitted and stored on Google servers, some of which may be located outside of the EU. Google Inc. is a member of the Privacy Shield system instituted between the European Union and the United States. All data will be transmitted safely and legally within this arrangement and in accordance with the European Commission decision concerning sufficient data protection. The data will be stored for 26 months.
8. Storing personal information
9. Your rights
10. Data security
11. Modifying this notice
12. Contact us