Privacy and data protection policy
This is Vicion’s privacy and data protection policy according to EU data protection directive (GDPR) .
1. Data collector
2. Contact person
3. Name of the register
Vicion customer register
4. Purpose of the register
The purpose of the register is to collect data of vicion’s customers. The data is used for customer relations.
The data is not used for automatic decision making or profiling.
5. Content of the register
The personal data collected can include: person´s name, job title, employer, contact information (phone, email, address), website addresses, IP-address, social media profiles, information about products and services used, invoicing data and other information related to customer management and used services.
6. Sources of data
The information collected is obtained from the customer for example via email, phone, social media services, contracts, customer meetings and in other situations, when the customer gives their information.
7. Sharing of data and transferring data to countries outside EU or EEA
The data is not shared with other parties. The data can be published, if agreed specifically with the customer. The data is not transferred or disclosed outside the European Union or European Economic Area
8. Keeping the data safe
The register will be handled carefully and data will be protected appropriately. Where third parties are engaged to host electronic data, it is required from them to meet information security requirements. Access to systems and applications used for personal data processing are limited to personnel who need the data for carrying out their job tasks.
9. Right to access the personal data
The persons in the data register have the right to know what personal data we process about them, to receive information about how we process it and to receive a copy of this data. They also have the right to ask to correct outdated or otherwise incorrect data. If a person wishes to check their personal data in the register or ask to correct it, they must send their written request to the responsible contact person. The contact person may ask for a proof of identity. The responsible contact person will answer to the request within 30 days.
10. Other rights concerning personal data
In certain situations, a person has the right to ask for personal data to be deleted (right to be forgotten). In certain circumstances, a person has the right to ask to restrict processing their personal data. If a person wishes excersice their right they must send their written request to the responsible contact person. The contact person may ask for a proof of identity. The responsible contact person will answer to the request within 30 days.