Privacy policy

24.2.2.2021

1. ABOUT THIS PRIVACY POLICY

This Privacy Policy concerns the personal data of Solar Foods Oy processed in the context of its operations relating to sales, customer relations, and other business partner relationships, where contact information or other personal data concerning those business-to-business relationships may be processed.

This Privacy Policy may be updated from time to time also without notice so we kindly ask you to review the latest policy from our website solarfoods.com. This Privacy Policy version is valid starting from the date stated above. We will not make any substantial changes without prior notice.

2. CONTACT DETAILS OF CONTROLLER

Solar Foods Oy
Business ID: 2872116-8
Correspondence address: Laserkatu 6, 53850 Lappeenranta
E-mail address: pasi@solarfoods.com
Contact person: Pasi Vainikka, CEO, +358 40 582 5987

3. PERSONAL DATA COLLECTED

The types of personal data we collect and process consist of information about individuals who are employed by or are otherwise connected to the companies we engage with. Those companies could be our customers, potential customers, or other business partners.

In detail, the information includes basic identifying details such as the individual’s name, email address as well as the title and position in the related company.

4. SOURCES OF PERSONAL DATA

We receive personal data directly from you or through your employer or the company to which you are otherwise related to, or through available sources such as social media channels or internet otherwise.

With your consent or when otherwise legally allowed, we may also acquire certain information from relevant authorities or public registers.

5. THE PURPOSE AND LEGITIMATE GROUNDS OF PROCESSING

Our primary purpose is to collect information about our customers who are business entities and not individual data subjects. As part of our sales activities, we will however collect and use personal data for the purposes of being able to provide our products and services to our customers and manage our customer relations. Similarly, we also engage with other business partners and to manage those engagements we may need some personal data.

We collect and process the personal data based on our legitimate interests. In some instances, we may also request your consent.

6. STORAGE PERIOD

We retain the personal data for only as long as that data is necessary for the purposes we have collected it, or if we are required to retain that data for longer periods in order to comply with applicable laws.

7. INTERNATIONAL DATA TRANSFERS

Personal data is primarily stored within the European Economic Area.

However, in certain cases, we may transfer or access personal data outside the European Economic Area. In such cases, we provide adequate protection for the transfers of personal data to countries outside of the European Economic Area through a series of agreements with our service providers based on the Standard Contractual Clauses or through other appropriate safeguards.

8. THE RECIPIENTS OF PERSONAL DATA

We do not share personal data with third parties outside of our company unless one of the following circumstances apply:

For legal reasons

We may share personal data with third parties outside our organization if access to the personal data is reasonably necessary to: (i) meet any applicable law, regulation, and/or court order; (ii) detect, prevent or otherwise address crime and/or security issues.

To authorized service providers

We may share personal data with authorized service providers who perform services for us. Such service providers are for example our IT service providers. Our agreements with our service providers include commitments that the service providers agree to limit their use of personal data and to comply with privacy and security standards at least as stringent as the terms of this Privacy Policy.

With your explicit consent

We may share personal data with third parties outside of our organization for other reasons than the ones mentioned above when we have your explicit consent to do so. You have a right to withdraw such consent at any time.

9. YOUR RIGHTS

Right to access

You have a right to access the personal data processed by us. This means that you may contact us and we will inform you what personal data we have collected and processed regarding you and the purposes such data are used for.

Right to withdraw consent

In case the processing is based on a consent granted by you, you may withdraw the consent at any time.

Right to correct

You have the right to have incorrect, imprecise, incomplete, outdated, or unnecessary personal data we have stored corrected or completed. You have the right to update for example your contact information or your other personal data.

Right to deletion

You may also ask us to delete your personal data from our systems. We will comply with such a request unless we have a legitimate ground to not delete the data.

Right to restriction of processing

You may request us to restrict the processing of personal data for example when your data erasure, rectification or objection requests are pending and/or when we do not have legitimate grounds to process your data.

Right to object

You may have the right to object on grounds relating to your particular situation to the processing of your personal data based on our legitimate interest. We will comply with such objection unless we have a legitimate ground not to.

Right to data portability

You have the right to receive the personal data you have provided us in a structured and commonly used format.

How to use your rights

If you want to use your rights, please send us a letter or secure e-mail.

We may reject requests that are unreasonably repetitive, excessive, or manifestly unfounded.

10. INFORMATION SECURITY

We do our best to keep your data safe and secure. We use administrative, organizational, technical, and physical safeguards to protect the personal data we collect and process. Our security controls are designed to maintain an appropriate level of data confidentiality and integrity.

The personal data stored under this Privacy Policy shall only be processed on a need-to-know basis. The use of personal data is protected by appropriate user rights, passwords, and rights of use. Paper documents shall be stored in locked storage.

11. LODGING A COMPLAINT

In case you consider our processing of personal data to be inconsistent with the applicable data protection laws, you have a right to lodge a complaint with the local supervisory authority for data protection. In Finland, the competent authority is the Data Protection Ombudsman (www.tietosuoja.fi ).