Registrar / Registrar
- CF Line Ay
- Business ID: 2704478-3
- Ymmyrkäisentie 12
- 85100 Kalajoki
Contact person for matters concerning the register
- Mikael Näveri
- Tel +358401920816
CF Line Ay is committed to protecting the personal data and privacy of its customers. Customers have the right to access the information we collect and, if necessary, to have incorrect or incomplete information removed from our records.
With this privacy statement, we would like to inform our customers about how we process personal data in relation to contact requests, requests for quotation forms, and information received by e-mail. The customer must accept this notice and its terms and conditions when sending us a request for a quote or a contact form.
Data to be collected
We collect the following information from customers when they place an order:
- First name and surname
- Postal address
- Telephone number
- E-mail address
- Order details
- The information is mainly collected by the customer through our online service.
When ordering by Klarna invoice or installment payment, the Klarna service will always ask for your personal identity number. The Klarna Service Register Description can be found here: https://www.klarna.com/fi/ehdot
When ordering by Collector invoice or installment payment, the Collector service always asks for your personal ID number. You can find the Register Description of the Collector service here: https://www.collector.fi/tietoa-collectorista/tietosuojasta/
When subscribing to Jousto invoices or installments, the Flexo service will always ask you for your personal ID number. You can find the Register Description of the Jousto service here: https://www.jousto.com/tietosuojaseloste
Purpose of use of personal data
The purpose of collecting personal data is to archive customer orders. The data may be used for the development of cfline.fi activities and for statistical purposes. Personal data is processed within the limits allowed and required by the Data Protection Act. Most commonly, personal data is used in cases of :
- For processing and dispatching orders
- Warranty management
- Data processing based on legal obligations.
Data storage and protection
All collected data is protected against unauthorized access, unauthorized use, illegal deletion and is accessible only to employees of CF Line Ay. Our staff is trained to use the data securely. Personal data is only inspected to the extent necessary for the purpose of the matter in hand or the job at hand. Access to personal data is controlled as required by law.
Data will be stored as follows:
- On the payer's server and in the accounting files
- In paper form in folders
- On the password-protected control panel of the website
- CF Line Ay's cloud servers and service providers' data centers are located in Finland by finqu.com. The servers are protected against data breaches.
Direct sales and third parties
Personal data is disclosed to third parties in the context of so-called direct sales. CF Line Ay sells products delivered directly from its own warehouse. Data may also be disclosed to guarantee delivery to various transport companies or courier services. If necessary, the data will be transmitted to the authorities as a result of misuse or other illegal activities or at the request of the authorities.
The following is a list of third parties to whom data may be disclosed:
- Carriers, including Posti, Matkahuolto, DHL or DB Shenker
- To credit issuers
- Suppliers of products
- Service or repair companies for warranty issues
CF Line Ay ensures that when disclosing data to third parties, a high level of security and protection is maintained, in accordance with the EU Data Protection Regulation. Third parties have assured CF Line Ay that they comply with EU data protection legislation and that they process data ethically, securely, and only for the data required for the purposes of the case.
Customer rights and data retention period
CF Line Ay is committed by law to providing the customer with the right to review the data collected. We undertake to send a copy of all data collected if requested. The customer has the right to update, correct, delete incomplete and/or changed data. The customer has the right to withdraw consent to the processing of data at any time. However, data processed or disclosed prior to the withdrawal of consent will not be automatically modified or deleted upon withdrawal of consent.
The data collected for the purposes of ordering and invoicing will be kept for the period of time provided for by the law on books and records. Data may be kept for longer periods, for example for liability or other legal obligations. We aim to clean up data for 1-2 years if there are no accounting reasons to keep it. Data in physical form, for example on paper/memory sticks/CDs, will be destroyed either by incineration or by taking it to a sensitive data disposal company. Destruction is carried out with a high level of security and the company's activities meet the security classifications for this activity. Data in electronic format will be erased and overwritten over time.
We use analytics tools such as Google Analytics and Google Adwords to track our visitor numbers and page views. This information is sent to the services anonymously and cannot be attributed to an individual on our behalf.