Orsitie 9, FI-13430 Hämeenlinna, Finland
Business ID 0924710-6
Controller Riina Sairio, tel. +358 3 628 0144, riina.sairio(a)accepta.fi
Purpose of personal data processing
The ERP register refers to our systems containing customer and supplier information: Sap Business One, Accepta Logistics Management (ALM), online store, and manual material (e.g., agreements).
The purpose of data processing is to maintain Accepta Oy’s customer and supplier relationships, process sales and purchase orders, and take care of stock control, archiving, as well as communication and marketing.
Data content of register
The register may contain the following information on the contact persons for our customers or suppliers:
- First and last name
- Email address
- Phone number
- Position in the customer or supplier company
Rights of the data subject
The data subject has the right to check the personal data saved about them in Accepta Oy’s ERP register. A written, signed request for checking the data must be sent to the person responsible for register-related matters. The request may also be made in person at the controller’s office located at the above-mentioned address. Requests for data checks will be answered without delay, usually within two weeks of sending the request.
If necessary, Accepta Oy shall correct, supplement, and delete any incorrect, incomplete, or outdated information in the register on its own initiative or at the justified request of the data subject.
The data subject has the right to forbid the use of their data for direct advertising, direct marketing, or other communication.
Regular sources of data
For the register, data shall be collected directly from the company to be set as a customer or supplier or the contact person to be registered.
Regular disclosure of data
The information in the register shall only be used by Accepta Oy, except when Accepta uses an external service provider, either to provide a value-added service or support a credit decision.
Data shall not, however, be disclosed outside Accepta Oy or for the personal use of its partners, except in matters related to credit applications, collection, or invoicing and when required by law.
Transfer of data outside the EU or EEA
The controller may disclose data to the extent permitted and required by applicable law, and the data may be transferred outside the EU or European Economic Area in a manner permitted by the Finnish Data Protection Act.
Principles of protecting the register
Manual material: Printed personal data shall be stored on the controller’s premises, which are lockable and monitored by access control.
Data processed by computer: Access to the customer register is limited to the persons employed by the controller, and other specified persons, who need the information in their work.
Such users must have a username and password to access the information in the register.
The data is technically protected by a firewall and a password-protected server.
Who can I contact?
In other matters, please contact our customer service: