• Tripadvisor logo
  • Facebook logo
  • Instagram logo
  • Youtube logo
Visit Bomba logo

All places

See all >>

The story of us

Read more >>

Sustainability

Read more >>

Accessibility

Read more >>

Privacy policy

Compilation date 17.12.2019

Controller

Pielisen Karjalan Kehittämiskeskus Oy PIKES
Kauppatori 1
75500 Nurmes
etunimi.sukunimi@pikes.fi
www.pikes.fi
Business ID: 2042869-6

The person responsible for the register

Kati Lipponen
0504066122
email: kati.lipponen@pikes.fi

Name of the register

Pielisen Karjalan Kehittämiskeskus Oy PIKES tourism marketing register.

Grounds for keeping the register

Customer consent, customer relationship management and legitimate interest.

Purpose of the register

The register consists of contact details of tourists, businesses and associations. Personal data are processed by PIKES in order to send marketing material to tourists in the region. The register data is collected for customer, marketing, communication and stakeholder purposes. PIKES processes personal data of minors to the same extent as other customers, taking into account the requirements of the Data Protection Act. The register data may be used for tourism marketing in the region, including electronic direct marketing. The data subject has the right to object to direct marketing concerning him/her.

Information contained in the register

The register contains information on the name, title or profession of the customer, the function and position in business or public office, the name of the company represented by the customer, information on the company’s field of activity, contact details for contacting the customer, and information on direct marketing authorisations and prohibitions.

Source of data for the register

Personal data has been obtained through various marketing activities such as marketing competitions, telephone sales and by collecting information from customers themselves. Personal data is also collected through PIKES’ own activities at different stages of the customer relationship.

Disclosure of information

Personal data in the register will not be disclosed without the consent of the data subject. With the written consent of the data subject, the data may be disclosed to experts and financial institutions for the purpose of carrying out activities in accordance with the needs of the customer. Personal data will not be disclosed for commercial purposes or to commercial parties.

Personal data will not be transferred outside the EU or EEA.

Principles for the protection of the register and confidentiality of the register

PIKES is committed to taking appropriate measures to ensure the security of personal data. Technical, administrative and physical processes are designed to protect personal data against accidental, unlawful or unauthorised loss, access, disclosure, use, alteration or destruction. Staff are trained and instructed in the appropriate and secure handling of data. All company staff and external persons acting on behalf of the company are bound by a duty of confidentiality in relation to all customer information.

The register is kept electronically, but records extracted from the register, known as sub-registers, may be kept as separate Excel files in written form with due care. All written personal data material will be destroyed through the destruction service. The electronic register is protected from unauthorised access by personal user IDs and passwords. Access to the data contained in the register is restricted to PIKES staff whose duties require them to process the data contained in the register. PIKES ensures that the databases are not accessible via the network (e.g. firewall technology). Although systems are protected, PIKES cannot guarantee that computer systems or the transmission of data via the Internet or other public networks is completely secure.

Rights of the data subject

The customer has the right to inspect the personal data stored in the register. The request for inspection must be made in writing, either by post or by e-mail, and addressed to the controller. The request for inspection may also be made in person at the controller’s premises. The request for inspection must state that the request concerns data contained in the PIKES Tourism Marketing Register. The company will provide the customer with a printout of the stored data relating to the customer, either in writing or electronically, within one month of receipt of the request.

Requests for verification can be sent in writing, signed and addressed to.

Pielisen Karjalan Kehittämiskeskus Oy PIKES
Kauppatori 1
75500 Nurmes
or by e-mail to the person responsible for the register.

The customer controls all personal data that he or she provides to PIKES. In certain circumstances, the Customer has the right to request the deletion of personal data concerning him/her from the register. The Customer also has the right to restrict the processing of personal data and to object to the processing of his/her personal data. The controller will correct, delete or complete personal data which are inaccurate, unnecessary or outdated for the purposes of the processing in the register, on its own initiative or at the request of the customer. The customer has the right to lodge a complaint with a supervisory authority if he or she considers that the processing of personal data concerning him or her infringes applicable law.

PIKES reminds you that the provision of data and the authorisation of processing may, in certain circumstances, be a condition for accessing or using the service. The Company reserves the right to suspend the provision of services or to deny access to services if the customer does not provide or requests the deletion of data relevant to the service.

Data storage

Personal data will be kept by PIKES only for as long as the data can be considered necessary for the purposes described in this Privacy Policy, unless longer retention is required or permitted by law.

Reporting a personal data breach

In the event of a personal data breach that is likely to result in a high risk to the rights and freedoms of natural persons, PIKES, as the controller, will inform the customer of the breach.