This is the register and privacy policy of Dynamik Oy’s contact and customer register in accordance with the EU General Data Protection Regulation (GDPR). Last modified on 26.3.2024.

1. Controller
Dynamik Oy, Tekniikantie 12, 02750 Espoo, Finland

2. Data Protection Contact Person

Data Protection Officer, Jaakko Haukipuro, jaakko.haukipuro@dynamik.fi

3. Name of the Register
Dynamik Oy’s contact and customer register

4. Legal Basis and Purpose of the Processing of Personal Data
Personal data are processed for the purpose of carrying out the company’s business. Personal data are processed
for the fulfilment of the legal and contractual obligations of the company or on the basis of the consent of the individual. The personal data stored in the register is used, among other things, for the fulfilment of
delivery obligations, customer relations, contacts and for sales and
marketing purposes.

Under the EU General Data Protection Regulation, the legal bases for processing personal data are: the data subject’s consent, a contract to which the data subject is a party, and the legitimate interest of the controller (e.g. a pre-contractual customer relationship).

The data will not be used for automated decision-making or profiling.

5. Data Content of the Register
The register contains information about Dynamik’s customer contacts, supplier contacts, and other
business partners. The register includes personal data such as name,
telephone number, e-mail address, street address, website addresses,
IP address, information about ordered services and changes to them, billing information, and other
information voluntarily provided by the customer or disclosed through the use of Dynamik’s services.

In some usage situations, the register can also contain information about a person’s
website browsing activity and materials downloaded from the website. The register does not contain special categories of personal data as defined in the GDPR. The retention period of individual data
is determined by the purpose of the processing, the legal basis, the rights
exercised by the data subject, taking into account the available technology and
reasonable costs.

Website visitor’s IP addresses and the cookies
necessary for the functioning of the service are processed for legitimate interests, such as ensuring information security and collect visitor statistics
in cases where such data can be considered as personal data
. Consent for third-party cookies is requested separately when necessary.

6. Regular Sources of Data
The data stored in the register is obtained from the customer through, for example,
website forms, email, telephone, social media services, contracts,
customer meetings, and other situations where the customer discloses their information.
Data of contact persons of companies and organizations can also be collected from public
sources such as websites, directory services, and other companies. The regular sources of data in the
register include records
created by Dynamik employees in the course of their work and stored copies of received written materials.

7. Regular Disclosure of Data and Transfers Outside the EU or EEA.
The data is not regularly disclosed to other parties, but the data in the register can
be disclosed, as necessary, with parties involved in Dynamik’s business processes or
parts thereof.
Dynamik’s contact register data is stored in an information system managed by Dynamik,
with data located in the EU. Contact Register data is also stored in Google and
HubSpot services, in accordance with those companies’ service descriptions.

8. Principles of Register Protection
The protection of the contact register data follows the general principles set out in the GDPR.
Access to the data is restricted according to: the purpose and nature of processing, available technologies, and reasonable costs. Due care is exercised in processing the register, information processed through information systems is appropriately protected. When data is stored on Internet servers, security measures are implemented regarding the physical and digital security of their hardware. The data controller ensures that
stored data, server access rights, and other information critical to the security
of personal data are handled confidentially and only by the employees
whose job description is involved.

10. Right to Access and Require Correction of Information
Every person in the register has the right to check their personal information stored in the register and
to require the correction of inaccurate information or the completion of incomplete information. If a person wishes to access this information, they must submit this request in writing to the data controller listed in this notice.
The data controller can request proof of identity where necessary and will respond within the period required by the GDPR (generally within one month).

11. Other Rights Related to the Processing of Personal Data
A person in the register has the right to request the deletion of their personal data from the
register (“right to be forgotten”). The people in the register also have other rights under the GDPR, such as the restriction of the processing of personal data in certain
situations. Requests must be sent in writing to the controller. The controller can
ask the requester to prove their identity, if necessary. The controller will respond
to the customer within the time limits set by the EU GDPR (as a general rule, within one
month).

12. Changes to the Privacy Policy
The data controller costantly develops operations and can therefore amend and update privacy practices, when necessary. Changes can also be based on changes in
data protection legislation. If the changes include new
purposes for the processing of personal data or otherwise change significantly, the data controller
will inform data subjects in advance and request consent where required.

13. Cookies

Cookies are pieces of information stored in your browser’s memory. We use cookies on our website to improve your user experience, analyse the attractiveness of content and website structure, compile visitor statistics, and support marketing activities. The cookie information is stored on the device used to access the website. The tracking data generated through cookies can be stored in the website’s content management system and other cloud services, such as Google Analytics.

You can restrict the use of cookies in your browser settings. Links or embedded content on our website may contain third-party cookies. In some situations, such as when downloading brochures, contacting us or opening a newsletter, cookies and tracking information may be linked to your personal data. By continuing to use the site, you agree to the use of cookies.