Use of Cookies in Marketing

We analyze visitors to our Website to improve our customer experience. We automatically collect information about visitors to sievo.com with “cookies” which provide information about your computer or mobile device, inform us what pages you visit, and if you’re a repeat visitor. You can choose to prevent the use of cookies within your internet browsers settings, but this may limit your ability to take advantage of all the features on our website.

We also use cookies to improve our marketing communications. Our advertising network partners, such as Google AdWords, use non-personally identifiable cookies to serve relevant advertisements. We only partner with online advertising networks that comply with the strictest common online advertising standards.

Email Marketing Lists and Opt-Out

Sievo sends emails to potential new customers who have shown interest in Sievo’s software and solutions. We only use your contact details to provide you with information on us and our products. You can unsubscribe at any point. We never sell or give your information to any third party. We treat your information as confidential and apply best practice information security practices to protect it. We adhere to applicable laws regarding personal data protection.

Sievo and GDPR

Sievo is committed to comply with GDPR regulations across our software and solutions.

Sievo delivers SaaS Services for enterprises and government organizations. Security of customer data is a standard key element in these deliveries. In case of data breach or data security issues, the impact on the core business of Sievo would be immense. Privacy is only an additional element to ensure data security. Data security at Sievo is standard, with regular security assessments, including penetration tests and ISAE 3000 (implemented in the course of 2018) & ISO 27001 certification audits. Below you can find details of our actions in regards of GDPR:

Task Status
Appoint a Data Protection Officer Our appointed Data Protection Officer (DPO) is Bruno Dureault.
Conduct privacy impact assessment on all of our systems containing personal information COMPLETE
Rewrite our Data Protection Agreement and contracts COMPLETE
Implement the required changes to our internal processes and procedures required to achieve and maintain compliance with GDPR

 

COMPLETE
Communicate GDPR compliance and changes with customers COMPLETE
Promoting awareness about GDPR within Sievo COMPLETE
Privacy Policy is implemented COMPLETE
Data Breach Policy is implemented COMPLETE
Update our register descriptions COMPLETE

 

Register description

1.Name of register

Sievo marketing register

2. Data controller

Sievo Oy

Address: Mikonkatu 15A, 00100 HELSINKI

3. Contact person

Data Privacy Officer

Email: privacy@sievo.com

4. Purpose of collecting and handling information in register

The purpose of the collected customer data is to develop our products and services, and to provide a better customer relationship.

5. Information content of register

  • Name
  • Company
  • Email address
  • Phone number

6. Regular information sources

Information is gathered directly from data subjects

7. Regular information disclosure and transfer of data outside of the EU or the EEA

Data can be transferred or disclosed, within the framework of the GDPR, to companies providing services on Sievo’s commission, within and outside the EU and EEA.

8. Protection of this register

Personal data is protected by Sievo and our partners with up-to-date principles of data protection. When personal data is processed, we rely on secure browser connections and encryption. Only pre-designated employees of Sievo and our partners have access to client data and we regularly review our information security practices.

9. Right to inspect and correction of data

According to 26§ of the Finnish Personal Data Act, a person has the right to inspect what information has been recorded about them in the applicant register. Request for inspection shall be sent to the email address provided under item 3.

Furthermore data subjects are entitled to request rectification of erronous or incomplete data contained in the register. The request for rectification shall identify the error to be rectified, and provide the correct information. Requests shall be sent to the email address provided under item 3.

10. Right to be forgotten

Data subject can request him/her data to be removed from the register. Requests must be submitted to the email address provided under item 3.