The privacy of visitors to our site is very important to us and we are committed to protecting it. This Privacy Policy tells you how we use your personal information.
This is MyLure’s EU General Data Protection Regulation (GDPR) Registry and Privacy Policy. Prepared on 24.06.2021.
1. The company that collects the data
Rock Fishing Finland Oy
Business ID: 3150091-3
Siulatie 11, 90810 Kiviniemi
info@mylure.com
2. Contact person responsible for the data
Rock Fishing Finland Oy
Business ID: 3150091-3
Siulatie 11, 90810 Kiviniemi
info@mylure.com
3. Name of the company
MyLure e-commerce customer register.
4. Purpose of the processing of personal data
Personal data is processed for purposes related to the management, administration and development of customer relationship, the provision and delivery of services and invoicing. Personal data will also be processed for the purposes of resolving any complaints or claims. It will also be used for sending our newsletter for those who have opted in. (you can unsubscribe from the newsletter at any time).
5. Information about the collected data
The data collected includes: person’s name, position, company / organization, contact information, telephone number, e-mail address, address, website addresses, IP address of the network connection, information about ordered services and their changes, billing information, other information related to customer relationship and ordered services.
We will retain your personal information for as long as is necessary to fulfil the purposes of the register. In addition, some information may be retained for longer than is necessary to perform statutory obligations, such as accounting and consumer trade responsibilities.
The IP addresses of the website visitors and the cookies necessary for the functions of the service are processed on the basis of a legitimate interest, e.g. to ensure data security and to collect statistics about visitors to the Site in cases where they may be considered personal data. If necessary, the consent of third-party cookies will be requested separately.
6. Regular sources of information
Personal information is collected from the registered person himself.
Personal data shall also be collected and updated, within the limits of the applicable law, from publicly available sources through which the collector of data fulfils its customer relationship responsibilities.
7. Regular transfers of data and transfers of data outside the EU or the EEA
The collected personal data will not be transferred outside the EU or the EEA.
8. Data Security Principles
The data shall be handled with due care and will be processed by the information systems which shall be adequately protected. When data is stored on Internet servers, the physical and digital security of their hardware is adequately addressed. The data collector shall ensure that the data stored, as well as the access rights to the servers and other information critical to the security of personal data, are treated confidentially and only by the employees whose job description it includes.
9. Right to review or request data correction
Every person in the register has the right to check the information stored in the register and to request the correction of any incorrect data or the completion of incomplete information. If a person wishes to check or request the rectification of data stored about him or her, the request must be sent in writing to the data collector. If necessary, the collector may ask the applicant to prove his or her identity. The collector will respond to the customer within the timeframe set out in the EU Data Protection Regulation (generally within one month).
10. Other rights related to the processing of personal data
A person in the register has the right to request the removal of his or her personal data from the register (“the right to be forgotten”). Data subjects also have other rights under the EU’s general data protection regulation, such as restrictions on the processing of personal data in certain situations. Requests must be sent in writing to the collector. If necessary, the collector may ask the applicant to prove his or her identity. The collector will respond to the customer within the timeframe set out in the EU Data Protection Regulation (generally within one month).