Skip links

Privacy Statement

AINA – Privacy Policy

Privacy statement in accordance with Section 3, Section 10 and Section 24 of the Personal Data Act of AINA-kitchens (523/99)

Registrar

Name: Mellano Oy
Address:
Kivistöntie 36, 73100 Lapinlahti
Phone number:
020 770 7700
E-mail address:
 asiakaspalvelu@mellano.fi

Contact person in matters concerning the register

Name: Janne Lehtonen
Phone number:
050 408 7575
Email address: 
janne.lehtonen@mellano.fi

Registry name

Mellano Oy’s customer and marketing register

Purpose and basis of processing personal data 

Personal data is processed for the company’s advertising, marketing and sales needs with the data subject’s consent in order to acquire new customers.

Personal data is processed in accordance with the law for the implementation of customer contracts, assignments and orders, as well as for the needs of customer communication.

The basis for processing is the customer relationship prevailing at any given time on the basis of agreements, orders or assignments.

Personal data processed and their respective retention periods

The controller only collects personal data that is necessary for the purposes described in this privacy policy. The register may contain the following information about customers:

First and last name
Email address
Registration date
Telephone number
Address, postal code, city
Billing information
Quote and purchase history
Conversations and other information saved by the chat

 

Company name
Business ID/VAT-number
Company contact person
Position/Title
Company address and contact information
Company billing information
Quote and purchase history
Conversations and other information recorded by chat

In addition, AINA-kitchens uses cookies in its digital services on its websites, and cookies can be transferred to the computer of visitors using digital services from time to time to improve the user experience. Cookies are small text files sent to the user’s computer at the request of the browser and stored there. You can disable cookies by adjusting your browser settings.

Information about cookies, the use of cookies and how to manage the use of cookies. Read more about cookies and cookie policy »

Customer data is stored for 25 years. The storage period is based on the fact that home furnishings are renewed every 15–25 years.

Regular sources of information

Public registers and/or the persons to be registered themselves.

The information in the marketing register is collected when registering for the newsletter list or starting other communication, such as a chatbot conversation. Personal data can also be collected, for example, through social media channels and various marketing events.  As a rule, the register is maintained by manual updating.

The information in the customer data register is recorded manually and is maintained by manual updating.

The controller considers it important that personal data is always up-to-date, which is why personal data may be obtained from external sources, such as public registers.

Regular disclosure of data

The controller does not disclose customers’ personal data to third parties, except when required to do so by Finnish authorities.

However, information may be disclosed to a third party in connection with mergers and acquisitions if the business is restructured or sold.

Data transfers outside the EU and EEA

The data is transferred outside the EU/EEA for the purpose of financial administration and the controller has in force the appropriate contractual terms for the transfer of personal data required by the Data Protection Regulation, the purpose of which is to ensure the implementation of privacy protection.

Principles of register protection

Manual material is stored in locked premises and separately lockable storage cabinets or drawers, which can only be accessed by persons whose work tasks require the processing of the material. The premises are equipped with access control. The information is treated as confidential and the statutory confidentiality obligations are complied with.

Electronic material is stored centrally on servers protected by a firewall.  Access to files and personal data records are protected by a username and password, and access is restricted according to processing needs.  The information is treated as confidential and the statutory confidentiality obligations are complied with.

Personal data processors are required to have at least the same level of security principles and, in addition, to implement the instructions and security requirements specified separately in the processing agreement.

Right of Access

Everyone has the right to be informed of what information about them is stored in the register.  In order to provide information, it is required that the request is submitted in writing and, if necessary, accompanied by sufficient information to ensure the identity of the requester.  The request must be addressed to the contact person of the controller mentioned in section 2 above.  The inspection request is free once a calendar year, otherwise a reasonable compensation (50 €+ VAT) may be charged for the request.

Right to request rectification of data

The data subject has the right to demand the rectification of inaccurate data concerning him or her.  The controller may also, on their own initiative, correct information that they find to be incorrect.  The request for rectification must be made in writing and, if necessary, it must be accompanied by sufficient information to verify the identity of the person making the request. The rectification request must be addressed to the controller’s contact person mentioned in section 2 above.

Right to request removal

The data subject has the right to demand the erasure of data concerning him or her.  Deletion may be limited by legal or technical reasons for retaining the data. The request must be made in writing and, if necessary, accompanied by sufficient information to verify the identity of the person making the request. The request must be addressed to the contact person of the controller mentioned in section 2 above.

Leadoo chatbot – user tracking

We use Leadoo’s user tracking to monitor how our users move around our website and combine this data with user information that is collected, for example on the user’s website Chat interactions.  Leadoo uses etag tracking, which technically differs from cookie-based tracking, but is subject to the same laws as cookies.  Check Leadoo Marketing Technologies Oy’s Privacy Policy (https://leadoo.com/privacy-policy/) to know more about what is tracked in the system. With GDPR in mind, we act as a controller and Leadoo as a data processor. If you do not want to be tracked, you can clear your browser’s cache. For more information on how Leadoo works, check https://leadoo.com/privacy-policy-processor/

Hubspot privacy policy

Read more: https://legal.hubspot.com/privacy-policy