Discotec Oy, Kampinkuja 2, 00100 Helsinki, Finland
1. Data Processing
The data collected by the Services:
Customer Data is data processed by us on behalf of the Customer using the Services. We collect web analytics data (per visitor), such as Customer specific cookie identifier (CID), IP address, Visited URLs, Referrer URL, Timestamp, Operating system. The purpose of the processing of this data is the provision of customer engagement and analytics tools on the Customer website. The Customer Data is owned by the Customer. In regard to Customer Data the Customer is the data controller and We the data processor in the meaning of the EU data protection legislation.
Most browsers accept cookies automatically. However, you can change the settings of your browser to erase cookies or prevent them. In that case, we cannot guarantee that our website or Services will be able to provide you with the intended user experience.
Third Party Cookies
On our own website we also use third party cookies from the following Service providers to help us analyze trends and for tracking purposes, and to gather general information about our visitor base:
Facebook collects data and analytics regarding traffic flows to/from Facebook and displays ads.
Google Analytics collects data and analytics regarding the visitor base and traffic of the website.
Linkedin Marketing Solutions collects data and analytics regarding traffic flows to/from Linkedin and displays ads.
4. Servers and Data Storage
All Data is physically stored within the European Union. The servers are provided through credible subcontractors. Unless otherwise agreed, we store Customer Data for 5 years.
6. Technical and Organizational Measures
We hereby confirm that we have the appropriate technical and organizational measures in place to meet the data processing requirements of the General Data Protection Regulation.
Credible third party subcontractors may be engaged in the data processing process for data storage purposes (rented servers).
We will provide Customers with a written notice before engaging sub-processors for other purposes.
We confirm that all persons we have authorized to process personal data of the Customer are bound with a written undertaking of confidentiality.
9. Data Breach Notices
In case we become aware of a data security breach affecting personal data we will report this to the Customer within a time frame of 48 hours. In such case we will coordinate and assist the Customer in minimizing any damage and provide the Customer with the required information about the breach.
10. Data Subject Rights
We are committed to assisting our Customers with their responsibilities regarding the data subject rights. Our contact for this type of requests is firstname.lastname@example.org
In cases where such assistance causes us a substantial amount of work, we reserve the right to invoice such work in accordance with our standard hourly fees.
12. Contact & Effective date