Privacy Policy

Our company stores and processes personal data in compliance with the practices set by the General Data Protection Regulation (GDPR).

The contents of this privacy policy can be changed by publishing an updated version online. That is why we recommend you check our privacy policy regularly.

Data Controller:

Mevea Ltd.

FI197963-2

Laserkatu 6

FI-53850, Lappeenranta, Finland

Contact for privacy issues:

privacy@mevea.com

Name of the registry:

Registry for maintaining the company’s customer relationships.


The premise for maintaining the registry

The retention of the information in this registry is based on either a contractual agreement with our company, a consent received from an individual, or our company’s legitimate interest.

We collect and store data of potential new customer based on customer relationships or in relation to business activities. The collection of data from potential new customers is based on business activities and we collect the information ourselves.


Reasons for processing personal data

We process personal data to maintain customer or other relevant relationships, for analysis, and for marketing.

Our activities are based on legal business; therefore, we are also compliant with EU legislation about personal data storage:

  • The personal information we store is lawful, reasonable, and transparent in terms of processing. This means, that you have a right review your personal data any time.
  • The information is purposeful – for example, the personal data we collect is tied to only a specific purpose. We do not entrust 3rd parties with your data without a justified reasoning.
  • We minimize the data we store – we only store what is necessary
  • We aim to keep our information up to date
  • We limit the storing of data – the data has a defined use time after which it is either automatically or regularly erased unless there is a legal reason for the data storage.
  • We store complete and reliable data secured with e.g. back-ups

Contents of the registry

  • First and last name
  • Professional title
  • Contact information
  • Other text-based information related to the customer relationship
  • Consent for marketing
  • Information collected through the use of cookies
  • Information collected from social media

We only store the minimum information related to the customer relationship, which typically includes the individual’s name, organization, and contact information such as email address and phone number.


Data sources

The data is collected directly from the person themselves in the start of a customer relationship; directly from the person themselves through contact forms in the Mevea website; or from our partners.

Additionally, we may use e.g. names collected from media based on business activities, and we may contact them in relation to business activities.


Transfer of data

Based on the consideration of the Data Controller, our partners can be authorized to process the data within the limits of applicable legislation unless explicitly forbidden by the person in question. The authorization may be granted only for purposes supporting the objectives of the registry.

Occasionally, we may entrust 3rd parties with the personal data. In practice, this means that:

  • We use an email marketing tool. The information stored within these tools only include the name, organization, and email address of the individual. More information about the privacy policy of the service provider can be found here: https://mailchimp.com/legal/privacy
  • We use a CRM tool to maintain customer relationships. The information stored within the tool in minimized fashion may include e.g.: the name of the individual, contact information, and activities and notes related to maintaining the customer relationship. More information about the privacy policy of the service provider can be found here: https://www.visma.com/privacy

Transferring data outside EU or EEA

Data is not transferred to parties outside European Union (EU) member states or European Economic Area (EEA).

Data may be transferred to services which operate outside EU member states or outside EEA. Data is transferred in accordance with the GDPR and we only transfer data with minimum amount and risk. We only use services of companies compliant with the Privacy Shield framework.


Data protection

Only designated employees of the Data Controller and its subcontractors have access to the information in the registry.


The right of review

Individuals can access, rectify, erase, transfer, object and restrict the processing of all personal data collected from them. These actions can be taken by contacting the designated person mentioned at the beginning of this policy.


Cookies

Cookies are small text files that contain a string of characters and uniquely identifies a browser. They are sent to a computer by website operators or third parties. Most browsers are initially set up to accept cookies since this is required by most website owners in order to access their sites. You may be, however, able to change your browser settings to cause your browser to refuse cookies in general, block third-party cookies or to indicate when a cookie is being sent.

Pixel tags are scripts that executes when a user lands on a website or opens an email.  The pixel itself is not visible and can only be seen in the HTML of the site or email.  It calls an application on a server that will cause a third party cookie to be downloaded to your computer or registers that the email has been opened.

If you would like to know more about cookies and how they work, please visit www.allaboutcookies.org.

Cookies we use

Google Analytics: This cookie allows us to see information on user website activities including, but not limited to page views, source and time spent on a website. The information is depersonalized and is displayed as numbers, meaning it cannot be traced back to individuals. This will help to protect your privacy. Using Google Analytics we can see what content is popular on our websites, and strive to give you more of the things you enjoy reading and watching.

Hotjar: We use Hotjar in order to better understand our users’ needs and to optimize this service and experience. Hotjar is a technology service that helps us better understand our users’ experience (e.g. how much time they spend on which pages, which links they choose to click, what users do and don’t like, etc.) and this enables us to build and maintain our service with user feedback. Hotjar uses cookies and other technologies to collect data on our users’ behavior and their devices (in particular device’s IP address (captured and stored only in anonymized form), device screen size, device type (unique device identifiers), browser information, geographic location (country only), preferred language used to display our website). Hotjar stores this information in a pseudonymized user profile. Neither Hotjar nor we will ever use this information to identify individual users or to match it with further data on an individual user. For further details, please see Hotjar’s privacy policy by clicking on this link.

You can opt-out to the creation of a user profile, Hotjar’s storing of data about your usage of our site and Hotjar’s use of tracking cookies on other websites by following this opt-out link.