Privacy Notice

This Privacy Notice of Sovellin Oy has been prepared in accordance with the EU General Data Protection Regulation (GDPR) and the Finnish Data Protection Act.
Prepared: 28 November 2025. Last updated: 26 February 2026.

1. Controller

Sovellin Oy
Linnoitustie 4 A
02600 ESPOO
+358 40 510 1094
Business ID: 2508170-8
contact@sovellin.com

2. Data Protection Matters

For any questions or requests related to data protection, you may contact us via email at contact@sovellin.com. Our customer service will respond to inquiries and feedback regarding the register within two business days.

3. Name of the Register

Sovellin Oy’s customer register.

4. Purpose and Legal Basis of Processing Personal Data

Personal data is processed for the following purposes:

  • Performance of a contract and provision of services
  • Management and development of the customer relationship
  • Invoicing and debt collection
  • Development of services and products
  • Marketing and communications (based on consent)
  • Compliance with legal obligations

Legal bases:

  • Consent (GDPR 6.1.a)
  • Contract (GDPR 6.1.b)
  • Legal obligation (GDPR 6.1.c)
  • Legitimate interest (GDPR 6.1.f)

5. Data Content of the Register

The register may include the following customer information:

  • Name, contact details (address, phone number, email)
  • Company name and contact person details
  • Customer relationship data (contracts, billing information, usage data)
  • Consents and prohibitions (e.g., direct marketing)

6. Regular Sources of Data

  • Information provided by the customer
  • Data generated during the use of the service
  • Public registers (e.g., Posti, Digital and Population Data Services Agency)

7. Cookies and Consent Management

Cookies and technical identifiers
We use cookies, device identifiers, and other tracking technologies for service delivery, analytics, visitor tracking, and both personalized and non‑personalized advertising.

Consent
Cookies are set only according to the user’s consent. Our website uses Google’s Consent Mode to transmit consent signals to Google.

Personalized advertising
If the user gives consent for personalized advertising, Google and other partners may display personalized ads using cookies and identifiers. Without consent, only non‑personalized ads are shown.

More information about how Google processes personal data: https://business.safety.google/privacy/

8. Disclosure of Data

Sovellin may disclose data within the limits permitted and required by applicable legislation, for example to authorities.

Data may be transferred outside the EU/EEA only if GDPR‑compliant safeguards have been implemented (e.g., EU Standard Contractual Clauses).

Google: We use Google services (e.g., Google Ads, Google Analytics). More information about how Google processes personal data can be found here: https://business.safety.google/privacy/

9. Data Retention

Personal data is retained for as long as the customer relationship is active and thereafter for the period required by legal obligations.

10. Protection of the Register

  • All processors are bound by confidentiality obligations
  • Data is stored in technically and organizationally protected systems
  • Access rights are restricted with personal user credentials

11. Rights of the Data Subject

The data subject has the right to:

  • Access their data
  • Request rectification or deletion of data (“right to be forgotten”)
  • Restrict processing
  • Object to processing and direct marketing
  • Transfer data to another system
  • Lodge a complaint with the Data Protection Ombudsman (www.tietosuoja.fi)

Requests must be sent in writing to:
Sovellin Oy, Linnoitustie 4 A, 02600 Espoo
or via email: contact@sovellin.com.

12. Data Protection Officer

Arno Lindroos
arno.lindroos@sovellin.com

www.sovellin.com