Data protection statement

  1. Data Controller Name: Step Beyond Oy Business ID: 2335953-4 Address: Pitkäjärventie 31 B Postal Code: 02730 Location: Espoo Phone Number: 0505643808 Email Address: info@stepbeyond.eu
  2. Person Responsible for Data Protection Company: Step Beyond Oy Name: Christel Berghäll Address: Pitkäjärventie 31 B Postal Code: 002730 Location: Espoo Phone Number: 0505643808 Email: christel.berghall@stepbeyond.eu
  3. Data Protection Officer Company: Step Beyond Oy Name: Christel Berghäll Address: Pitkäjärventie 31 B Postal Code: 002730 Location: Espoo Phone Number: 0505643808 Email: christel.berghall@stepbeyond.eu
  4. Purpose of the Register: Collected personal data is used for delivering orders of customers, maintaining and improving customer relationships.
  5. Basis for Collecting and Processing Data: Customer data is collected and processed with the consent of the customer or to fulfill a contract with the customer.
  6. Content of the Register: Customer name, Email address, Street address, Phone number.
  7. Data Retention Period: Personal data is retained as long as it is necessary to fulfill a contract with the customer or for the development of customer relationship.
  8. Regular Data Sources: Information is collected from the individuals themselves and, to the extent permitted by law, from official registries (e.g., ytj.fi). Information may also be collected through the Google Analytics analytics tool.
  9. Regular Data Disclosures and Transfers Outside the EU or European Economic Area: Data is not regularly disclosed to external parties. Some external service or software providers used by the company may store data outside the EU or European Economic Area.
  10. Use of Cookies: We use a cookie function on our website. A cookie is a small text file sent to and stored on a user’s computer that allows the website administrator to identify frequent visitors, facilitate user logins, and compile aggregated information about visitors. This feedback helps us continuously improve the content of our website. Cookies do not harm users’ computers or files. We use them to provide our customers with personalized information and services.If a user visiting our website does not want us to collect the above-mentioned information through cookies, the visitor can disable the cookies using our cookie consent banner.However, it is important to note that cookies may be necessary for the proper functioning of some of the pages we maintain and the services we offer.
  11. Register Protection: Data is transferred over an SSL-encrypted connection. Electronic data is protected by firewalls, usernames, and passwords. Data access is restricted to individuals employed by the data controller who need the information for their duties.
  12. Automated Decision-Making: Automated individual decisions (Article 22 of the EU Data Protection Regulation) are not made.
  13. Rights of the Data Subject: The data subject has the right to inspect what personal data concerning them is stored in the personal data register. A written request for inspection should be sent to the person responsible for data protection, signed by the data subject.The right to inspect is free of charge and can be exercised up to once a year.The data subject has the right to request the correction or deletion of incorrect or outdated data or the transfer of data from one system to another. They also have the right to restrict or object to the processing of their data in accordance with Articles 18 and 21 of the EU Data Protection Regulation.The data subject has the right to withdraw their consent for data processing given earlier or to lodge a complaint with the supervisory authority regarding matters related to the processing of their personal data.The data subject also has the right to object to the use of their data for direct marketing purposes.