Register and Privacy Statement

This is Arctic Divers Dive Center Oy's combined register and data protection statement in accordance with the Personal Data Act (Sections 10 and 24) and the EU's General Data Protection Regulation (GDPR). Prepared on 1 April 2022.

1. Registrar
Arctic Divers Dive Center Oy
Hakaniemenkatu 5, 00530 Helsinki
info@arcticdivers.fi
arcticdivers.fi

2. The contact person responsible for the register
Ari-Pekka Arponen, ari-pekka@arcticdivers.fi,+358 40 517 4582

3. Register name
Arctic Divers Dive Center Oy's customer and marketing register

4. Legal basis and purpose of personal data processing
According to the EU's General Data Protection Regulation, the legal basis for processing personal data is
– an agreement to which the data subject is a party
– the legitimate interest of the controller (e.g. customer relationship, employment relationship, membership).

The purpose of personal data processing is communication with customers, maintenance of customer relations, marketing and business development.

The information is not used for automated decision-making or profiling.

5. Data content of the register
Information stored in the register includes: person's name, date of birth, company/organization, contact information (phone number, e-mail address, address), website addresses, IP address of network connection, credentials/profiles in social media services, information about ordered services and their changes, billing information, other information related to the customer relationship and ordered services.

As a general rule, personal data is processed as long as the customer contract for which we need the data is valid. We enter the information in the register as we receive it from the data subject himself and they are updated according to what the data subject informs the controller.

We delete unnecessary personal data from our customer and marketing register every six (6) months.

6. Regular sources of information
The information to be saved in the register is obtained from the customer, e.g. From messages sent via web forms, by e-mail, by phone, via social media services, contracts, customer meetings and other situations where the customer gives out their information.

7. Regular transfers of data and transfer of data outside the EU or EEA
Information is not regularly disclosed to other parties. Information can be published to the extent agreed with the customer.

8. Principles of registry protection
Care is taken when processing the register and the information processed with the help of information systems is properly protected. When registry data is stored on Internet servers, the physical and digital data security of their hardware is taken care of accordingly. The registrar ensures that stored data as well as server access rights and other data critical to the security of personal data are handled confidentially and only by those employees whose job description it is.

9. Right of inspection and right to demand correction of information
Every person in the register has the right to check their information stored in the register and demand the correction of any incorrect information or the completion of incomplete information. If a person wants to check the information stored about him or demand correction, the request should be sent by e-mail to the controller. If necessary, the registrar may ask the requester to prove his identity. The controller responds to the customer within the time stipulated in the EU data protection regulation (generally within a month).

10. Other rights related to the processing of personal data
A person in the register has the right to request the removal of personal data about him from the register ("right to be forgotten"). The same applies to registered usersother rights according to the EU General Data Protection Regulationsuch as limiting the processing of personal data in certain situations. Requests should be sent by e-mail to the controller. If necessary, the registrar may ask the requester to prove his identity. The controller responds to the customer within the time stipulated in the EU data protection regulation (generally within a month).

Newsletter subscriptions

We use Brevo to send our newsletters. As an individual, you must order our newsletter yourself via our website and confirm the newsletter subscription via the link sent to your e-mail. We will not add you to such a newsletter list without your consent. You can also unsubscribe from the newsletter at any time from the link at the end of the newsletter or by contacting Arctic Divers Dive Center.

Brevo collects information about the recipients of our newsletters, for example the name and email address you entered when ordering the newsletter. Brevo also studies how you react to the newsletter you receive, for example which articles included in the newsletter you open and read. Through this, we at Arctic Divers Dive Center understand better how we could improve the content of our newsletters.

As a subscriber to the newsletter, e.g. as a trade fair visitor, in addition to shared information, you also give permission to approach you after the trade fair.

Brevo's data centers are located in the EU region. Brevo's head office is located in France. The personal data of end users of European client companies (i.e. newsletter subscribers) is not transferred to the United States.

Brevo's privacy statement can be found here:https://www.brevo.com/legal/privacypolicy/#privacypolicy

Cookie Policies

Cookies are small text files that are saved on your computer or other terminal device when you visit websites. The purpose of cookies is to improve your user experience and make it easier to use the site. With the help of cookies, we can e.g. to recognize your device when you return to the page and to remember your preferences and choices.

Cookies are used on almost all websites, and websites may not function properly without cookies.

You can find more information about cookies on the pagewww.aboutcookies.org. There you can also find instructions for managing cookies in different web browsers.

Essential cookies

Necessary cookies should be kept enabled so that we can store, for example, the cookie settings you choose.

If you wish, you can disable essential cookies in the settings of your web browser. However, deleting cookies may affect the operation of the site.

Analytics

Our website uses the Google Analytics service, which collects information about how users use our website (e.g. the most visited pages). The information collected by cookies is anonymized and is used to improve the functionality of our pages and develop the site's content to better meet the needs of users.

If you do not give us your consent to use these cookies, or if you continue to use this website without making a choice, these analytical cookies will not be placed on the site.

Cookies are not used to identify an individual user, and the information describing the use of the site is under the control of the webmaster of the site.

You can find more information about Google's privacy practices on the following pages:

How Google uses your data on partners' sites and applications

How Google Analytics protects the information collected from the visitor

You can also prevent the collection of data if you wishbrowser add-onthrough.

You can changeyour cookie settings here.

We are constantly developing our services and reserve the right to change this privacy statement by reporting it in our services. Changes can also be based on changes in legislation. We recommend that you familiarize yourself with the content of the privacy statement regularly.