Contact information: Linnoitustie 9, FI-02600 ESPOO, tel.: +358 9 548 050, email:
Contact person in matters related to the register: Samlink communication unit, Linnoitustie 9, FI-02600 ESPOO, Finland, email@example.com
Name of register: Samlink Ltd’s customer register
Purpose of processing personal data and handlers
Samlink Ltd’s customer register is an electronic personal data register. Personal data is collected and processed for customer relationship purposes and to target Samlink’s communication and marketing material. The registered personal data is primarily used to send customer messages (e.g. online magazines, newsletters, bulletins) to Samlink’s current and potential customers and to other subscribers.
Samlink’s communication unit is responsible for the register and its use. In addition, designated persons from Samlink’s customer relationship management and sales have the right to process personal data. With regard to the distribution of the online magazine, Kumppania Oy, the distribution partner, also has access to the register. Extracts of email addresses will also be sent from the register to APSIS International AB’s APSIS Pro tool for the distribution of newsletters.
Data about persons:
• Email address
• Telephone number
• Address of organisation
• Business sector
• Delivered publications (online magazines, newsletters, bulletins, invitations)
• Information about participation in Samlink’s events
Regular sources of data
From electronic publications, data about subscribers is sent directly to Samlink or indirectly via the service provided by Kumppania, Samlink’s partner. Personal data is also collected in the register through Samlink’s activities. Data about potential customers can be collected and updated from public registers and data sources that provide data services, and from business directories and the controller’s partners. Personal data is saved and updated manually in the register.
Regular disclosure of data
For direct marketing purposes, the controller may disclose name and address details from the customer register to partners that have signed a cooperation agreement with the controller. Data subjects can unsubscribe directly through a specific link located in each publication. In addition, data subjects can request that their personal data be erased from the register in full or with regard to specific publications by contacting Samlink’s communication unit or their customer group’s key account manager.
Transfer of data outside the EU or EEA
No data will be transferred outside the EU or EEA.
Data retention principles
Data will be retained in the communication and marketing register as long as each specific data subject works in such a position at which Samlink’s communication or marketing material is targeted, provided that the data subject has not refused to receive communication or marketing material. If a data subject refuses to receive communication or marketing material, Samlink will retain information about the refusal, as well as contact information so that Samlink can ensure that this refusal is complied with.
The register is maintained in a protected intranet service used internally within Samlink. It can only be accessed by Samlink’s personnel from a closed data network. In addition, only specific members of the personnel who need to access the registered data can process the register. Access to the intranet requires the right to use Samlink’s network.
Right to access personal data
According to the Personal Data Act, data subjects have the right to access their data free of charge once a year. Data subjects who want to access their personal data must present a written and signed, or similarly verified, request to the contact person responsible for matters related to the register.
Right to request data to be rectified
The controller will rectify any incorrect data in accordance with the EU General Data Protection Regulation. Any requests to have data rectified must be sent in writing to the contact person responsible for matters related to the register.
Right to file a complaint with the supervisory authority
Data subjects can file a complaint with the supervisory authority if they consider that the processing of personal data is in breach of the obligatory data protection legislation.