Privacy policy statement


Nor-Maali Oy (VAT: FI27772545), Vanhatie 20, 15240 Lahti

Registrar's representative in matters relating to the Register:
Nor-Maali Oy, Kimmo Svanbäck
e-mail: kimmo.svanback(a)

Registry name:
Nor-Maali Oy Customer and supplier register

Purpose of processing personal data:
The register maintains Nor-Maali Oy's customer and supplier information. The purpose of processing this data under this register is to manage and maintain the customer relationship between Nor-Maali Oy and the customer and supplier.

Data content of the register:
We will deal with the following information in connection with the register: name data, address information, email address, company or organization, company position, telephone number.

Regular sources of information:
The information is primarily collected from the registered user himself. In addition, personal data may be collected and updated for the purposes described in this Privacy Statement from publicly available sources.

Ordinary deliveries of information:
The controller may disclose information as permitted and mandated by current legislation
including, but not limited to, the registrar's range of partners to provide a service unless the data subject has denied such disclosure.

Transfer of data outside the EU or EEA:
Data is not transmitted outside the EU or EEA.

Principles of registry protection:
Data stored and processed by information systems are accessible to restricted and designated persons. Use requires login to the information system with your personal username and password. Information systems are protected with appropriate antivirus software and firewalls. Databases and backups are located in locked spaces and only certain pre-designated persons can access the data.

Data retention:
We keep personal information as long as it is necessary on the basis of customer or supplier relationship, or until the data subject requests the deletion. In this case, however, the register retains the statutory data and data removal information of that person.

Registered Rights:
The data subject has the right to check what information has been stored in the register and, if necessary, require the controller to rectify or supplement the information contained in the register. The Registrant is itself responsible for the accuracy of the information provided. Registered must inform if the data entered by the data subject change. The registrar can also correct incorrect information on his or her own initiative after receiving information about the wrong information.

In accordance with the Data Protection Regulation, the data subject has the right to object or request restriction of processing of data, to lodge an appeal against the processing of personal data to the supervisory authority, and to request the removal or transfer of data from one system to another. All registered requests should be sent in writing to the registrar's representative mentioned in section 2.

Changes to the Privacy Statement:
If we change this report, we will make the changes appear in the report as dated. If the changes are significant, we can also inform you of these in some other way, such as email or on our website.

Updated: 24.5.2018