Contact us

Privacy Policy

Peiron Oy Privacy Policy

This is Peiron Oy’s privacy policy in compliance with the Data Protection Act (1050/2018).

Modified 20 August 2025.

This privacy policy specifies what types of personal data we may collect on you when you order our services or contact us through the peirox.fi website, and the purposes we may use such data for. By using our website, you agree to the processing of your personal data in accordance with this privacy policy.

We may make changes to this privacy policy by publishing a new version of it on our website, so please check it regularly. By continuing to use the website and the related services after the publication of a new version, you are deemed to have accepted the modified terms and conditions.

Controller

Peiron Oy
0134183-5
Teollisuustie 4
32810 Peipohja

Register name

Peiron Oy/customer and marketing register

Legal basis and purpose of the processing of personal data

Personal data are used for various purposes in accordance with the Personal Data Act, including:

  • Customer relationship management and maintenance.
  • Customer newsletters and bulletins.
  • Customer enquiries and gathering customer information.
  • The execution, sales, management, invoicing, and development of services and the marketing of products or services provided by Peiron Oy or its partners.

Peiron Oy has the right to use and disclose any data in the register for reasonable purposes (e.g. opinion and marketing polls) in accordance with the Personal Data Act and other applicable legislation.

Data content of the register

  • Classification data provided by data subjects themselves (e.g. objects of interest)
  • IP addresses or other identifiers
  • Customer feedback information
  • Ordering, invoicing and delivery data
  • Other data collected with the customer’s consent
  • Data collected from the Peirox.fi online service
  • Name of the company, given name and surname of the data subject, address, email address, telephone number, publicly available classification data, and information concerning permissions and bans for marketing purposes.

Regular data sources

Data stored in the register are received from the customers via messages sent through online forms, email, telephone, contracts, customer meetings and other situations where the customers give their personal data. The data are automatically stored in the register when users give information to Peiron Oy when using the www.peirox.fi service.

Data storage

We do not store personal data longer than necessary for its purpose of use or than is required by the agreement or legislation. However, the retention time of personal data may vary depending on the purpose of use or situation. The retention time of personal data may also be based on legislation such as the Accounting Act. We aim to update your data when needed. Unnecessary data will be removed.

Regular disclosures of data

For purposes of direct marketing in accordance with section 19 of the Personal Data Act. For opinion polls, market research or similar surveys.

Disclosure of data

To provide you the Service in the best way possible, we may disclose data to companies in the same corporation or to our partners, who may process your data solely within the limits demanded for delivery of the Service. Our partners do not use data for any other purposes or disclose data to third parties. However, Peiron Oy may disclose information to the extent permitted and required by applicable legislation. Data can also be disclosed outside the EU or EEA, for purposes including technical maintenance and processing of data by our subcontractors.

Principles of register protection

The processing of personal data in the register is carried out with due care, and appropriate measures are taken to protect the data that is processed through data systems. If personal data are stored on online servers, appropriate measures are taken to ensure the physical and digital data security of such equipment. The controller ensures that the stored data, server user rights and other data that is critical for the security of personal data are processed in confidence and only by employees whose work duties require them to do so.

Right to the inspection and correction of data

Each data subject in the register has the right to inspect their data stored in the register as well as demand the correction of any erroneous data or supplementing of incomplete data. The right to inspection is free of charge once per year. If data subjects want to inspect their personal data stored in the data register or demand the data be corrected, they must submit a request to the controller in writing. If necessary, the controller may ask the data subject submitting a request to prove their identity. The controller must respond to the data subject’s request within the time period specified in the EU General Data Protection Regulation (as a general rule, within one month).

The controller may on their own initiative or upon request remove, correct or complete any data that is erroneous, unnecessary, incomplete or outdated. Requests for correction shall be made in writing.

Other rights related to the processing of personal data

Data subjects have the right to request the deletion of their personal data from the register (‘the right to be forgotten’). Data subjects also have other rights, as set out in the EU’s General Data Protection Regulation, including restrictions on the processing of personal data in certain circumstances. Requests shall be submitted to the controller in writing. If necessary, the controller may ask the data subject submitting a request to prove their identity. The controller must respond to the data subject’s request within the time period specified in the EU General Data Protection Regulation (as a general rule, within one month).