Paptic Ltd (‘we’ or ‘us’ or ‘our’) value your privacy and we recognise our obligations in meeting the demands of the General Data Protection Regulation (GDPR) and the Finnish law on electronic communications services (laki sähköisen viestinnän palveluista, 7.11.2014/917). This privacy notice is meant to help you understand what personal data we collect and why, and how you can request, update or delete your information.
What personal data we collect?
In general, Paptic collects personal data directly from you, either through web forms on our website, via email discussions or phone calls, through social interactions or through the customer relationship. We only collect data that you provide, and we assume all contact information to be business related (a business email address, for example).
How we use personal data?
Paptic uses the personal data to maintain existing customer relationships and to advertise and keep you informed about the Paptic products, which include sending informational and promotional emails, messages or letters. We might even call you if we feel you might want (or you have indicated you want) to be reached that way. Some parts of the data we use for development and research purposes. In this case the data is anonymized.
On what basis is personal data collected?
The processing of personal data is based on the legitimate interest of Paptic Ltd. If you are our customer, we have a legitimate interest to process your data for maintaining the customer relationship and direct marketing (unless you have told us not to).
If you have filled in a form on our website (ordered a sample, for example) or have otherwise been in business related contact with us, you might have been added to our marketing register, once again based on legitimate interest. We have conducted a legitimate interests assessment to ensure that we can justify our decision. We have decided that your interests, as the individual, do not override Paptic’s legitimate interests. This is especially true as we are dealing with business contact details. However, you can at any time unsubscribe from our marketing list as informed at the end of each marketing message.
How long will personal data be stored?
All personal data we process can be used for marketing and unless you ask us to remove your information (or unsubscribe from the marketing list), we keep your data for the time being.
Who else processes personal data we collect?
Your personal data is processed by big and trustworthy online services Mailchimp and Pipedrive. These companies meet the GDPR requirements and act as Data Processors for Paptic. In practice these services are just tools and all processing work is done by Paptic employees.
If Paptic Ltd stores or transfers personal information outside the EU (to countries not meeting the commission’s criteria), we will have robust procedures and safeguarding measures in place to secure, encrypt and maintain the integrity of the data. We carry out strict due diligence checks with all recipients of personal data to assess and verify that they have appropriate safeguards in place to protect the information, ensure enforceable data subject rights and have effective legal remedies for data subjects where applicable.
How to access your personal data?
You may access your personal data by contacting us via our website’s contact form. You may request information about what personal data we hold about you or you may request to have your information corrected or erased. Additionally, if you are a subscriber to our mailing list, instructions to unsubscribe are provided at the end of each marketing message.