This Statement discloses the information practices for Aventra’s Webshop www.aventra.fi/webshop/ what type of information about our Webshop's users is gathered and tracked, and how the information is used, shared or otherwise processed offline. As Data processor Aventra is committed to apply (EU) 2016/679, the General Data Protection Regulation (GDPR).

We collect information from and about you when you register on our site, place an order, subscribe to our newsletter or fill out a form. User can be either private person or company. Your privacy is important to Aventra and in this policy we share transparently, how we process your data. Feel free to contact us, if you have any further questions.

Welcome to Aventra Webshop!

Updated 15.11.2018 

1. Data Processor and Controller

Name

Aventra Oy

Contact Details

Hannu Honkanen

Lanttikatu 2

02770 Espoo

09-4251 1251

If there are any questions regarding this privacy policy, you may contact us using the e-mail below.

privacy@aventra.fi 

2. Registered user

Private person or company using Aventra Webshop is registered user´╗┐.

3. What Personal Data do we process and for which purposes

Collected data is given by registered user or by using our site, we may also automatically collect information about your computer and about your visits to and use of the site. 

Any of the information we collect from you may be used in one of the following ways

4.  Collected Data

Register contains the following information

Mandatory fields are marked with *.

Furthermore, we collect all the additional data given by user and knowledge about route to Webshop

After a transaction, your banking or credit card information will not be stored on our Webshop.

5. Source of your personal information

By using our site, you consent to our privacy policy and the use of your personal information as specified herein.

6. For what period we do retain personal information?

Aventra will retain your personal information for as long as is required to fulfil the purposes for which the information is processed or for other valid reasons to retain your personal information, for example. to comply with our legal obligations. We retain account data according to book keeping laws (currently 6 years).

7. International data transfers

Information that we collect may be stored and processed in and transferred between any of the countries in which we operate to enable us to use the information in accordance with this privacy policy. Information which you provide may however not be transferred to countries outside the European Union Area. Webshop data is stored in servant centre in Finland and the subcontractor is managing data according to ISO 27001 standard. 

Aventra does not share your personal information to third partied for marketing purposes.

We may share personal information trusted third parties who assist us in conducting our business, credit card/purchase processing services, delivering the products you purchase so long as those parties agree to keep this information confidential. We may also release your information when we believe release is appropriate to comply with the law.

In stage of making order we ask separately from every user the consent to save personal information. Data is used only for the purposes mentioned in this policy. 

8. How information is protected

We take reasonable technical and organizational precautions to prevent the loss, misuse or alteration of your personal information. We implement a variety of security measures to maintain the safety of your personal information when you place an order or enter, submit, or access your personal information.

A. Background data (manual material)

Aventra employees are authorised to access personal information only to the extent necessary to serve the applicable purpose(s) and to perform their job functions. When data becomes unnecessary it will be deleted according to data protection principles.

B. Information system data

Webshop is protected from external use and usage of its data is followed.

User has personal access codes and password protection.

Aventra has documented information security management system, that helps Aventra keep information assets secure. It. is a systematic approach to managing sensitive company information so that it remains secure. It includes people, processes and IT systems by applying a risk management process. System is audited and updated regularly.

All Aventra employees are made aware of the information security manual and GDPR and restrictions and obligations within it as may be relevant to them, with the relevant training provided regularly. 

9. Your rights

You have the following rights and you can exercise these choices by sending mail to privacy@aventra.fi

9.1 Right to access your data

You can also ask us for a copy of information about you. Copy is delivered as csv file, which is easy to read with text editor (like Notepad) or Microsoft Excel. If requested, you need to proof your identity to receive a copy.

9.2 Right to rectify

If you come across inaccurate personal data concerning you, you can request the controller to rectify it.

9.3 Right to object

You can ask us to stop using all or some of the information about you (for example, if we have no legal right to keep using it) or to limit our use of it (for example, if the information about you is inaccurate).

9.4. Marketing denial

You may instruct us not to process your personal information for marketing purposes.

9.5 Right to erasure data and to be forgotten

You can ask us to erase or delete all or some of the information about you without undue delay, when the personal data are no longer necessary in relation to the purposes for which they were collected, or it was used unlawfully. We handle the request and either erase the data immediately or indicate the data subject ‘the retention period of the personal data or, where this is not possible, the criteria used to determine this duration’.

9.6 Data Portability

You have the right to receive the personal data concerning you from the controller to deliver them to another service provider. Data transfer will be processed like described in 9.1 when registered asks access to own data.

9.7 Right to complain

If you feel that the controller has refused your request without adequate grounds, you can contact the Data Protection Ombudsman.

Contact details of Data Protection Ombudsman: www.tietosuoja.fi/en/contact-information

10. Do we use cookies?

This website uses Google Analytics for the purpose of evaluating usage of the website and compiling reports on website activity. Collected data is not associated with any personal information.

Most browsers allow you to turn off cookies. To do this look at the “help” menu on your browser. Switching off cookies may restrict your use of the website and/or delay or affect the way in which it operates. We also provide our own cookie management tool for you to make more specific choices about how cookies are used for your visits to our site.

Yes. A cookie is a piece of data that a website can send to your browser, which may then be stored on your computer as a tag that identifies your computer. While cookies are often only used to measure website usage (such as number of visitors and duration of visit) and effectiveness (such as topics visitors are most interested in) and to allow for ease of navigation or use and, as such, are not associated with any personal information, they are also used at times to personalise a known visitor's experience of a website by being associated with profile information or user preferences. Over time this information provides valuable insight to help improve the user experience.

Furthermore, you can prevent Google’s collection and use of data) by downloading and installing the browser plug-in available under www.tools.google.com/dlpage/gaoptout/