Published 5.7.2019, updated 5.7.2019
In short: we collect some limited amount of personal information you might voluntarily give us, as well as some technical data to monitor and improve our services. You have all the rights that are defined in the data protection laws and you may exercise them at will. We will do our best to protect your data and store it only as long as necessary.
Suan Aahaan Oy (2813927-4)
01150 Söderkulla Finland
tel: +358 (44) 241 6861
Personal Data we collect and the sources of the data
We collect two types of data: 1) User Data you might give us voluntarily and 2) Technical Data which is normally not linked to any individual user but sometimes individuals can be recognized from it and in such case it will be considered as Personal Data.
User Data is given to us voluntarily by our users by using one of our online forms, such as contact or feedback form, or table reservation form. The data may contain user’s:
- email address
- telephone number
Techical data we collect may contain for example:
- user’s IP address
- browser type and version
- preferred language
- geographic location
- operating system and platform
We use Google Analytics to analyze our website usage and get insights of our visitors in general level. To opt-out of Google Analytics, please go to https://tools.google.com/dlpage/gaoptout/. Please note that if you use a new or different computer or browser, or remove your cookies, you will need to opt-out again.
Purpose and legitimate grounds for processing Personal Data
User data we collect is used for communications with our Users, such as receiving feedback or other contact requests, responding to them and making table reservations.
Technical Data may be used for analyzing our website usage and to direct marketing at special customer groups and other business activities.
The legitimate ground for processing of Personal data is the consent given by Our Users.
Transfer of data outside of Europe
Our website’s hosting is located within the European Economic Area and is maintaind by Us. Any User Data you give us, will not be transferred outside the area or third parties.
Sharing of data
We will never give out your Personal Data unless required by law.
We will not store your Personal data for any longer than required to fulfill it’s original purpose, such as responding and concluding communication between Us and Our User. We will also review all the data stored periodically and delete any data that is left over, for example due to incomplete communications. The period for such removal might vary depending on case.
In general, Personal Data is deleted within reasonable time or when it is no longer needed.
Right to access data
Our User’s may contact Us and we will inform what Personal data we have collected, if any, and the purposes such data are used for.
Right to withdraw consent
Our User’s may withdraw the consent given to use at any time.
Right to correct data
Our User’s have the right to correct any incorrect, incomplete our outdated personal data.
Right to be forgotten
Our user’s may ask Us to delete any Personal data we have collected. We will comply with any such requests, unless there is legitimate ground not to delete the data.
Right to object
Our User’s may object to certain use of Personal data if the data is processed for other purposes than originally necessary. User’s may also object any further processing of data.
Right to restrict
Our User’s may request Us to restrict certain processing of Personal Data.
Right to data transfer
Our User’s have the right to receive their Personal data from Us in commonly used data format and transfer the data to a third party.
How to use the rights
Right to file a complaint
If Our User considers Our processing of Personal Data to be inconsistent with the applicable data protection laws, a complaint may be filed with the local supervisory authority.
We will take all reasonable and appropriate technical and organisational security measures to protect the Personal Data We store and process. Such measures are for example encryption, firewall and access controls.
In case of a security breach, We will inform the relevant Users as well as relevant authorities as required by the applicable data protection laws, as soon as reasonably possible.