The Supplier may collect data other than data classified as personal data from its users using various methods. This data is necessary for monitoring the use of the Service, and we use the data to improve the Service.
In specific, the service collects usage information through Firebase analytics https://firebase.google.com/policies/analytics/
The Supplier collects and processes certain personal data of the users of the Service and other data that the User has submitted on different types of contact request forms through the Supplier’s website or by e-mail.
The data includes basic professional info as well as a name and contact information.
Based on the data submitted on the service / login screen, we ("the Supplier" or "Data processor") can grant access to those parts and contents of the online service that the User has requested and the User's Employer has permitted access into (the "Customer" or "Data controller").
By collecting and processing personal data, we may also send targeted information and messages to the User. If the User does not approve the use of his or her information as described above, the User can prevent the use of his or her information by sending a written request to firstname.lastname@example.org.
The Supplier can submit statistics to third parties including use and user data and data other than personal data, but these statistics do not contain identifier information.
The service is protected using technical and organizational means. The service data is saved on servers and systems that are protected using firewalls, passwords and other technical means. Access to personal data is only granted if necessary for the processing of the data. All data processors have the obligation to observe secrecy.
When the User delivers personal data through the service, the User gives the Supplier and/or third parties the consent to use the data as described on the service in question. Regarding Users' Employer- context information, the Supplier (the "Data Processor") shall ensure that it will process the Customer’s Personal Data on behalf of the Data Controller pursuant to the applicable data protection legislation and as required by the contracts covering the service.
We can transfer personal data outside the EU or the European Economic Area when our partner carrying out a commission is located outside this area. In such cases, we ensure the appropriate protective measures to ensure the rights and freedoms of data subjects in accordance with the applicable data protection legislation, such as the EU’s General Data Protection Regulation (2016/679).
For example, a service provider implementing marketing for us can transfer personal data to the United States in connection with the production of the service. In a case such as this one, the appropriate measures protecting personal data are carried out in such a way that the service provider is committed to what is referred to as the Privacy Shield arrangement between the United States and the EU, or we use the model data protection contract clauses approved by the EU. You can find further information on the Privacy Shield arrangement here https://www.privacyshield.gov/welcome.
Contact person in matters concerning the policy: Antti-Jussi Mäki, Kampinkuja 2, 00100 Helsinki, antti-jussi.maki [ at ] rescomms.com