Privacy policy
This privacy policy explains how Helsinki Contract and Legal Services HSLP Ltd processes the personal data of representatives of client organisations in accordance with applicable legislation, official guidelines, and good data protection practices.
It is necessary to process personal data in the management of the client's assignment, customer service and customer communications. We ensure the appropriate protection of the client's representative's data.
Data Controller and Contact Information
Helsinki Contract and Legal Services HSLP Ltd
Contact for data protection inquiries: tietosuoja@sopimusjalakipalvelut.fi
Data We Collect and Process
Personal data related to assignments
We collect the personal data necessary for the performance of the client organisation's assignment primarily from the organisation's representative himself/herself.
In addition, information can be obtained from the authorities, credit information companies and other similar reliable parties, if necessary.
In addition to the information mentioned above, we may also collect other information about the organisation's representative with their consent.
Contacts made through the website and information collected about website visits
A representative of the organisation can make a contact via the contact form on our website. In this context, the following information is collected about the person: name and email address, as well as other information provided voluntarily by the person. The information is obtained from the person filling in the contact form. In addition, we record the date and time when the message was sent.
Our website uses cookies to collect user statistics on website visits, such as the date and time of the visit, and total number of the visits.
In addition to statistical information, we use cookies to collect the following information: website visitor's operating system, web browser used and IP address.
If you wish, you can prevent the use of cookies by disabling cookies in the cookie banner. However, it is good to know that some cookies are necessary for the website to function properly.
The information collected from the website visit is not combined with other personal data of the client representative. Cookies are not used for advertising purposes.
Purpose and legal basis for processing personal data
Regarding the performance of the assignment, the purpose of the processing of personal data is to provide legal services to the client organisation with which we have entered into a relevant assignment agreement. The data of the organisation's representative collected for the purpose of the assignment is used only for the performance of the assignment, i.e. for the implementation of the assignment agreement or for the implementation of measures prior to the conclusion of the assignment.
In addition, the personal data of the organisation's representative is processed to the extent that is necessary to fulfil our legal obligations, e.g. related to accounting.
We may also process personal data based on our legitimate interests in connection with the development of our services, or it may be processed separately on the basis of the consent given by a representative of the organisation for a specific processing purpose.
Data retention period
We store the data of the representative of the customer organisation for as long as necessary based on the purpose for which the data is used. Data controller's statutory obligations, e.g. regarding the storage of accounting material, also require the retention of customer data for a certain period of time. Client data related to the assignment will be deleted when the period for legal actions and complaints related to the assignment or customer relationship in question has expired (as a rule, three years after the end of the assignment).
We regularly assess the necessity of retaining the data. We take care of measures to ensure that no incompatible, outdated or incorrect personal data is stored in the personal data register in relation to the purposes of processing.
The retention period of cookies depends on the type of cookie. Session cookies expire when you close your browser. The duration of persistent cookies may vary. You can delete cookies at any time in the settings of the browser you are using. We store the log data containing the visitor's IP address on our website for one month, after which it is automatically deleted.
Disclosure and transfer of data outside the EU or EEA
The personal data we collect will not be disclosed to third parties, such as authorities, unless we are obliged to do so by mandatory legislation or an order of an authority.
We may transfer personal data to our service providers who act as processors of personal data in accordance with the EU General Data Protection Regulation and whom we use to collect, store and process the data. We oblige our service providers to ensure a sufficient level of data security and compliance with current data protection legislation through contractual arrangements.
As a rule, personal data is not transferred outside the European Union or the European Economic Area. If the performance of the assignment requires the processing of personal data outside the EU or EEA, we will ensure that this is done in accordance with data protection legislation.
We do not share cookie information with social media or advertising operators.
Protecting your personal data
We use technical and organisational security measures to protect personal data from unauthorized access or disclosure. Personal data is stored protected by a firewall in a secure server room, access to which is restricted by access control and other security measures. Personal data is backed up so that it can be restored if needed. The level of information security is audited regularly.
Personal data may only be processed by separately specified persons who have the right to process personal data on the basis of their work or a contract, and who log into the systems with a personal username and password. Processors of personal data are bound by a duty of confidentiality. We instruct and oblige the service providers we use through agreements to process personal data in accordance with the law and good data protection practices.
Rights of the data subject
As a
representative of the customer organisation, you have the right to access the
data stored about you in our customer register, as well as the right to have
incorrect or outdated data corrected or deleted.
You can object to the processing of your data or request the restriction of the processing of your data. In connection with your claim, you must specify the specific situation based on which you object to the processing. You also have the right to lodge a complaint about the processing of personal data with a supervisory authority (Data Protection Ombudsman, https://tietosuoja.fi)
Data controller will immediately take the necessary steps to comply with the requestor, if justified, after identifying the requestor.
Requests and inquiries under this section can be sent by email to: tietosuoja@sopimusjalakipalvelut.fi
Changes to the privacy policy
The development of our services and changes in data protection legislation or case law may require us to update this privacy policy from time to time. We will inform you of any updates to the privacy policy on our website.