Westenergy Oy Ab (”Registrar”)
Business identity code: 2165379-9
Address: Energiatie 5, 66530 Koivulahti
Phone: +358 (0)10 229 1030
2. The contact person of the register
Phone: +358 50 569 3337
3. The name of the register
The contact information register of Westenergy Oy Ab.
4. Using purpose and ground of personal data
Registrar handles personal data for the following purposes:
- For marketing purposes, including event invitations, stakeholder contacting and other customer communication
- To develop and maintain Registrar’s business
- For analyzing and for compilation of statistics
- To follow the website traffic
The primary ground for handling personal data is the consent of the registered or the legitimate interest of the Registrar and preparation and/or inforcement a deal, where registered is a party.
5. The information content and groups of personal data of the register
Information about contact persons of the registrars customers, suppliers, contractors, other cooperation partners and employees of these organisations and users of the website can be stored in the register.
The following information about the registered can be handled in the register:
- Name and title of the individual, phone number and e-mail
- Name, address and place of business of the individual’s employer
- Other necessary information for contacting
In addition, person’s participation activity to the registrar’s or/and it’s owner companies events, researches and other occasions can be handled and stored in the register.
6. Camera surveillance at the plant
For safety reasons, Registrar is responsible to have a video surveillance at the plant area. As a part of this, the Registrar collects and stores visitors’ picture records of video surveillance. There might be identifiable persons in these picture records.
Registrar uses the information of the video surveillance for securing the safety of the plant, plant’s employees and other persons, who visit the plant. Registrar also uses the video records for preventing dangers to occur at the plant’s safety or incineration process and for clarifying possible dangers, accidents and abuses at the plant. The records are not used for any other purposes.
7. The regular information sources of the register
The data is regularly collected from the registered with the consent of him or her or announced to registrar by the employer of the registered. Data is also collected when using web services (e.g. the websites and social media of Registrar) and from data collected when participating in other events.
The data can also be updated by using person registers such as the person registers of cooperation partners and from authorities and other enterprises to the extent allowed by applicable legislation.
8. Storage of personal data
Registrar stores personal data only so long as is necessary for achieving the purposes defined in this register description acknowledging the limitations set out in the applicable laws. Due to obligations in the applicable legislation, the data might have to be stored longer than the time period mentioned above.
Outdated and unnecessary information will be destroyed in an appropriate way. The data will be marked in the register in the same way as the registered has reported it and the data will be updated when the registered reports an update to the registrar.
9. Transfer of personal data
To handle the information Registrar might use service providers which can access the information from outside the EU/EEC. Registrar is responsible for the transfer being done in a legal and adequate way in accordance with the legislation regarding handling of personal data.
Your personal data can be transferred in accordance with the demands set by a competent authority and in accordance with the conditions based on law.
10. Social plugins etc.
Registrar uses social plugins in it’s services, such as Facebook’s or Instagram ‘s like and share buttons or other links to social plugin websites. These buttons may be seen in our websites but the content comes straight from the source of the button. The social plugin in our services recognizes that the user is logged in to that service and the website shows the tailored content in the plugins. The services of the social plugins may collect informations about the visit of the user in accordance with their valid privacy policies. These services do not transfer the data to Registrar, if the registered had not given the allowance for that.
11. The rights of the registered
Right to access
The registered has the right to control the data which is being stored about the registered in the contact information register of Registrar. The right of access can be denied on the grounds prescribed in the applicable legislation. As a starting point, the right of access is free of charge.
Right to oppose and limit
The registered has the right to oppose the handling of data that concerns the registered if the registered considers that Registrar has handled the data illegally or that Registrar does not have the right to handle data concerning the registered.
The right to oppose does not apply to the extent handling of the data is necessary for Registrar to fulfil its legal obligations or necessary on another legal ground.
Right to eliminate
The registered has the right to have wrongful data corrected or imperfect data complemented. The registered also has the right to demand data which concerns the registered to be deleted from the contact information register of Registrar. The right to eliminate does not apply to the extent handling and storing of the data is necessary for Registrar to fulfil its legal obligations or necessary on another legal ground.
Right to transfer
Insofar the registered self has delivered data to the contact information register of Registrar, and this data is handled on the basis of the consent of the registered or an assignment, the registered has the right to get this data in mainly electronic form and the right to transfer this data to another registrar.
Right of appeal
The registered has the right to appeal to the competent regulatory authority in case Registrar has not complied with the applicable regulation of data protection.
The registered shall send a request regarding the registered’s rights in a written document or via e-mail to address mentioned in section 2.
Registrar may ask the registered to specify the request and to prove the registered’s identity before the enquiry is handled. Registrar can refuse to fulfil the request on grounds specified in the applicable legislation.
Registrar will answer the request within one (1) month from the date when the request was made, if there is no specific reasons to lengthen the answering time.
13. Automatic decision making and profiling
The data in the register is neither used for automatic decision making nor for profiling.
14. Principles for protecting the register
Protecting registered data is important for Registrar. The data is stored in electronic systems, which are protected by firewalls, passwords and other technical and organizational solutions. Only the staff of Registrar and other defined persons who need the data for the purposes of performing their assignments have access to the register. Everyone using the register is bound by confidentiality.