Effective date: 13 January 2022
Thank you for choosing Visiosto’s services! Holding on to your private information is a serious responsibility, and we want you to know how we’re handling it.
The terms defined in the General Service Terms also have the same meanings in this statement.
What information Visiosto collects
Information you provide directly to us
We collect some basic information about you that we need to provide the services. This includes your personal information, like full name, phone number, email address, and mailing address. We also collect contact personal information for communications with you.
Depending on your payment method choice, we may collect your payment information, like billing address and credit card information. Please note that we do not process or store your credit card information, but our third-party payment processor does.
We get all of the personal information from you.
Information we automatically collect
When you purchase services from us and we charge you for them, we automatically collect information on your orders through our accounting system. This information is naturally aggregated as part of executing the agreement.
What information Visiosto does not collect
We do not intentionally collect sensitive personal information, such as personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation. If you choose to store any sensitive personal information on our servers, you are responsible for complying with any regulatory controls regarding that data. Please note that even though we provide many services that may relate to or be used in political activities, we don’t collect, store, and process sensitive personal information in our data registers.
If you are under the age of 18, you may not order our services. We do not knowingly collect information from or direct any of our content specifically to children under 18.
How Visiosto uses your information
We may use your information for the following purposes:
- We use your personal information for providing you the services.
- We use your payment information for providing you the services.
- We use your email address for official communications related to the services. We may also use your email address to communicate with you for other purposes, if you’ve said that’s okay, and only for the reasons you’ve said that’s okay.
- We may use your phone number for communications related to the services. We don’t use your phone number for other communication purposes.
- We use personal information to respond to support requests.
- We use the information we automatically collect by aggregating to better understand how customers order and use our service and to improve our services. We also use this information collected from our customers, as a group, in non-personally identifiable form, to display the performance of our services.
- We may use your personal information to comply with our legal obligations, protect our intellectual property, and enforce our terms and conditions, like the General Service Terms and Additional Service Terms.
We limit our use of your personal information to the purposes listed in this Privacy Statement. If we need to use your personal information for other purposes, we will ask your permission first. You can always see what information we have, how we’re using it, and what permissions you have given us by contacting us.
Our legal bases for processing information
As our processing of your personal information is subject to certain laws, like the European Union’s General Data Prootection Regulation (GDPR), we are required to notify you about the legal basis on which we process personal information. We process personal information on the following legal bases:
- Contractual obligation:
- When you order our services, you give us your personal information. We require this information for you to enter into the agreement with us, and we process that information on the basis of performing that contract.
- As you must pay for the services you order, we collect and process your payment information on the basis of performing that contract.
- We rely on your consent to use your personal information for marketing purposes where applicable. You may withdraw your consent at any time.
- Legal obligation:
- After the agreement has terminated, we process your personal data as required to comply with our legal obligations. For example, the Accounting Act requires us to store some of your personal information up to six years after the agreement has ended.
- Legitimate interests:
- Generally, the remainder of the processing of personal pnformation we perform is necessary for the purposes of our legitimate interest, for example, for legal compliance purposes, security purposes, or to maintain ongoing confidentiality, integrity, availability, and resilience of the services.
If you would like to request deletion of data we process on the basis of consent or if you object to our processing of personal information, please contact us.
How we share the information we collect
We may share your personal information with third parties under one of the following circumstances:
With your consent
We share your personal information, if you consent, after letting you know what information will be shared, with whom, and why.
With service providers
We share personal information with a limited number of service providers who process it on our behalf to provide or improve our services, and who have agreed to privacy restrictions similar to the ones in our Privacy Statement by signing data protection agreements or making similar commitments. Our service providers perform payment processing, network data transmission, security, storage, and other similar services. Our service providers may process data outside of the European Union. If you would like to know who our service providers are, please see our page on subprocessors.
For legal disclosure
We strive for transparency in complying with legal process and legal obligations. Unless prevented from doing so by law or court order, or in rare, exigent circumstances, we make a reasonable effort to notify you of any legally compelled or required disclosure of your information. We may disclose personal information or other information we collect about you to law enforcement if required in response to a valid subpoena, court order, search warrant, a similar government order, or when we believe in good faith that disclosure is necessary to comply with our legal obligations, to protect our property or rights, or those of third parties or the public at large.
Aggregate, non-personally identifying information
We share certain aggregated, non-personally identifying information with others about how our customers, collectively, use and order the services, or how our customers respond to our other offerings.
We do not sell your personal information for monetary or other consideration.
If you have ordered a service that makes it possible to make content available to the public, its up to you to decide which information you want to make public using them. If you make personal information, sensitive personal information, or confidential information, such as email addresses or passwords, public through the services, that information may be indexed by search engines or used by third parties, and we are not responsible for it.
How you can access and control the information we collect
If you’re already our customer or you have subscribed to receive communications from us, you may access, update, alter, or delete your basic information by contacting us. You can control the information we collect about you by contacting us.
If we process information about you, such as information we receive from third parties, and you are not our customer and you have not subscribed to receive communications from us, then you may, subject to applicable law, access, update, alter, delete, or object to the processing of your personal information by contacting us.
As our customer, you can always take your data with you. You can contact us to download information we have about you.
Data retention and deletion of data
Generally, we retain personal information for as long as needed to provide you services.
If you would like to cancel your services or delete your personal information, you may do so by contacting us. We retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements, but barring legal requirements, we will delete your information (within reason) within 90 days of your request. You may contact us to request the erasure of the data we process on the basis of consent within 30 days.
How Visiosto secures your information
Visiosto takes all measures reasonably necessary to protect personal information from unauthorized access, alteration, or destruction; maintain data accuracy; and help ensure the appropriate use of personal information.
Transmission of data in Visiosto is encrypted using SSH or HTTPS (TLS). We store our data on password-protected storage units and workstation, and when data is stored with a third-party storage provider, it is encrypted.
No method of transmission, or method of electronic storage, is 100 % secure. Therefore, we cannot guarantee its absolute security.
Cross-border data transfers
We and our subprocessors may process your personal information both inside and outside the European Union and the European Economic Area. We rely on standard contractual clauses as the legally provided mechanism to lawfully transfer data from the European Economic Area.
If you have concerns about the way Visiosto is handling your personal information, please let us know immediately. We want to help. You may contact us by sending us email. We will respond promptly—within a month at the latest.
Dispute relution process
In the unlikely event that a dispute arises between you and Visiosto regarding our handling of your personal information, we will do our best to resolve it. Additionally, as per GDPR, you have the right to file a complaint with the supervisory authority.
The controller of the collected information is Visiosto oy, and our Finnish Business ID is 3010084-6.
Changes to our Privacy Statement
Although most changes are likely to be minor, we may change our Privacy Statement from time to time. We will provide notification to you of material changes to this Privacy Statement by sending you email at least 30 days prior to the change taking effect.
This Privacy Statement is licensed under this Creative Commons Zero licence.
You can contact us by sending email to firstname.lastname@example.org.