Privacy policy

Privacy statement 

Data controller
Fabrica Oy Oy, Business ID 1958361-3, Pellavantori 2, 33100 Tampere
Contact person: Anu Gröning, tel. 050 5020180, Email: [email protected]

The purpose of and grounds for the processing of personal data
The personal data may be used for Fabrica Oy’s marketing and for customer and business partner communication. 

Disclosure of personal data 
Personal data may be disclosed to our accounting company for salary or commission payment purposes and to Fabrica’s health care provider. Data may be shared using an encrypted connection. Personal data may be disclosed to the authorities according to the Finnish legislation. Fabrica does not share personal information outside the company for marketing, sales, or other commercial purposes. The register is saved and processed in a manner which prohibits third party access. 

Registered persons
Registrants have or have had a customer relationship or a potential customer relationship with Fabrica. 

Data collected from customers
The following data is collected from customers and companies:

  • Name
  • Role in the organization
  • E-mail address
  • Phone number
  • Company / organization
  • Size of the organization and business revenue
  • Organization’s contact information
  • Other information related to the company 

Sources of data
Personal data is collected when Fabrica starts co-operation with a person or a company. Personal data may also be collected from Suomen Asiakastieto or from other public and private registers. 

Disclosing personal data
We may share your personal data within Fabrica, complying to personal data act and European Union Data Protection Regulation, and to authorities in legal matters. 

Transferring data outside of the EU or EFTA
As a general rule, data is not transferred outside EU Member States or EFTA countries. In case of exception, transferring and processing of data shall comply with standard contractual clauses of the European Commission. In case data is disclosed to the United States, the transfer shall comply to the EU-US Privacy Shield. 

Protecting of personal data
Manual material is stored in a locked place away from third parties. Digital material is stored using data transfer encryption software ensuring that the data is kept unchanged and protected from inappropriate access. Only specified Fabrica employees have access to the data. 

Procedure to grant rights
Everybody has a right to know the data Fabrica is keeping about them. The request to access the data is free of charge and the registrant must be able to prove their identity for example with a signed or otherwise certified document. By request, the data is disclosed in a written form. 

Right to demand rectification of data
The data controller removes, rectifies, or completes any data that is inaccurate, unnecessary, defective or outdated unprompted or by a request, provided that there are no legal obligations to store the data. The registrant has the right to complain about a personal data handling violation claim by appealing to the Data Protection Ombudsman.

Data breach reporting
In the event of a personal data breach, data controllers notify the appropriate supervisory authority without undue delay and not later than 72 hours after having become aware of it. If the breach is likely to affect registrants, the data controller must inform them as well. 

Additional information 
Please contact the data controller if you have any questions. 
Privacy statement updated 25.11.2021.