Register and privacy policy

This is the register and privacy statement of the Panko Concept in accordance with the EU General Data Protection Regulation (GDPR). Drafted 14.4.2023. Last change 14.4.2023.

1. Controller
Panko Concept
Puijonkatu 12
70100 Kuopio

2. Contact person responsible for the register
Kaisa Kokko
kaisa@pankoconcept.com
+358442519760

3. Name of the register
Privacy policy of Panko Concept’s website.

4. Legal basis and purpose of processing personal data
The purpose of processing personal data is marketing. The data is not used for automated decision-making or profiling.

5. Data content of the register
This website uses Google Analytics, which collects anonymous information about users through cookies. By using this website, you consent to Google’s data collection for the purposes set out above.

6. Regular sources of information
Information is collected in the register: from the person himself/herself. Registers kept by the authorities to the extent permitted by law (e.g. ytj.fi). Data is also collected using the Google Analytics tool.

7. Regular disclosure of data and transfer of data outside the EU or the EEA
The data is not regularly disclosed to other parties. No stored information will be published.

8. Principles of register protection
The register is handled with care and the data processed by the information systems is protected appropriately. When register data is stored on Internet servers, the physical and digital security of their hardware is taken care of appropriately. The controller ensures that the stored data, server access rights and other information critical to the security of personal data are treated confidentially and only by the employees whose job description it belongs to.

9. Right of inspection and right to demand correction of data
Every person in the register has the right to check the information stored in the register and to demand the correction of any incorrect information or the completion of incomplete information. If a person wants to check the data stored about him or her or request a correction, the request must be sent in writing to the controller. If necessary, the controller may ask the applicant to prove his or her identity. The controller will respond to the customer within the time limit set in the EU General Data Protection Regulation.

10. Other rights related to the processing of personal data
A person in the register has the right to request the removal of personal data concerning him or her from the register (“the right to be forgotten”). Data subjects also have other rights under the EU’s General Data Protection Regulation, such as restricting the processing of personal data in certain situations. Requests must be sent in writing to the controller. If necessary, the controller may ask the applicant to prove his or her identity. The controller will respond to the customer within the time limit set in the EU General Data Protection Regulation.