PRIVACY POLICY
DATA CONTROLLER
Glomama Music Oy Business ID 3119540-2 Kivalterintie 3 A, 00620 Helsinki
REGISTER CONTACT PERSON
Fredrik Lönnfors ℅ Glomama Music Oy Kivalterintie 3 A 00620 Helsinki FINLAND
E-mail: hello (at) glomamamusic.com
NAME OF THE REGISTER
Glomama Music Oy customer register
PURPOSE OF DATA PROCESSING AND THE LEGAL BASIS FOR PROCESSING
The legal basis for processing personal data in the customer register is the care and maintenance of the Glomama Music Oy customer relationship with its customers.
DESCRIPTION OF PERSONAL INFORMATION PROVIDED BY CUSTOMERS
We collect a number of personal data if you order products online or contact us via chat or feedback form. The main source of information is the information provided by users themselves when placing an order. We collect, store and process your data for processing purchases, services and potential claims. When you place an order we need your name, address, telephone number, and email address. In addition, data is automatically stored on the customer relationship, including ordering information and order payment details. Contact form or chat messages sent through the website, are sent over a secure SSL connection to the Glomama Music Oy email server. The registry is stored and protected so that only authorized processors of personal data have access to the data with a username and password. Data is protected with sufficient security means, such as a secure connection, firewalls, safe facilities, strong passwords, as well as careful operation of data handlers.
AUTOMATICALLY COLLECTED PERSONAL INFORMATION
When you visit the the store we automatically collect information that may be classified as personal data. The gathered information includes the IP address, date and time, used hardware, software and internet browser and browser version. We may also collect information about clicks on the page, and the pages you have visited, as well as products that you have added to your shopping cart.
THE USE OF YOUR PERSONAL DATA
Purpose for the collection of data, in particular personal data, is that we are not able to deliver and process orders without the information collected. We use the information to contact you related to orders, and if you have given us permission for marketing communications, we will send you newsletters, where we'll announce products and special offers only directed newsletter subscribers.
We collect the following types of information: • The visitor events on the site • Customer Data • Data about email messages
Your personal information is used in the following ways: • Orders • Customer Service • Account Administration • Marketing • Communicating with you • Product Reviews • Store Reviews
SHARING THE PERSONAL INFORMATION WITH THIRD PARTIES
We only disclose personal data with our partner which are necessary for the delivery, and customer relationship, order management. In these cases, we follow closely the general EU Data protection Regulation (EU 2016/679). Disclosure of data is limited to the minimum: • Transport company: When you order products from our store we will disclose your address information to the transport company, so that orders can be delivered. • Payment Services: We disclose the order details for the current payment provide. Glomama Music Oy uses Paytrail Oy as its payment provider. During the payment process Paytrail collects the customer ip-address, payment method and payment date. You can read the Paytrail Oy data protection leaflet for how they deal with information in connection with payments. https://www.paytrail.com/tietosuojaseloste-paytrailin-maksupalvelu In addition to the order processing, we may use service providers to process your personal data on our behalf, for instance when sending out newsletters. These service providers have confidentiality clauses and are not allowed to use your personal data for other purposes.
TRANSFERRING PERSONAL DATA OUTSIDE THE EU
Data may be transferred outside the European union within the Privacy Shield framework. You can read more about the Privacy Shield agreement here https://www.privacyshield.gov/welcome
DATA RETENTION
We will keep certain information you provide, including your personal information, either, as long as your account is existing, or as long as is necessary, so that we can provide you with our services, or (if you have been in contact with customer service) as long as is necessary, so we can keep you up to date related to your support request.
RIGHT OF ACCESS AND CORRECTION OF DATA
Customer has the right to have access to the information stored in the registry. Written and signed inspection request must be submitted to the above-mentioned client register the person in charge. Before the release of the data the customer's identity is checked photographic identification or implemented other measures necessary to ensure that the information not be disclosed to any other party, other than the customer himself. If the client detects that the personal data in the register are invalid, incomplete or processed against a register or use of the applicable legislation, the customer may be the above-mentioned email address to ask the controller to correct, change or remove the personal data. You are also entitled to object or request restriction of the processing of your personal data and you have the right to lodge a complaint with a supervisory authority in accordance with rules defined in General Data Protection Regulation EU 2016/679 (from 25.5.2018 onwards). However, we highly encourage you to work with us in good faith and contact us first.