Skip to content
Close
LANGUAGE – en
fi
en
fi

PRIVACY POLICY

TABLE OF CONTENTS
loading...

SFR Advisors & SFR Research

Updated on 27.2.2023


1. Introduction

Data protection refers to the realisation of the rights of the person whose data is being processed in the processing of personal data. The purpose of data protection is to indicate when and under what conditions personal data can be processed. Personal data, on the other hand, means information relating to an identified or identifiable natural person. This privacy statement covers the processing of personal data of SFR Research Oy and SFR Advisors Oy ("we") of the SFR Group, as the services of both group companies can be accessed from sfr-group.com address. In paragraphs two and four of this statement, you can read more about the role of each company in the processing of personal data.
 
It is necessary for our operations to process personal data. We follow procedures and processes to protect personal data in accordance with the requirements of data protection legislation. This privacy statement sets out the basis for collecting data and what the collected data will be used for. Examples of application situations include the provision of our services. The privacy statement also applies to the processing of the personal data of our employees and job applicants and the personnel of our other partners. The Group companies act as separate controllers and have agreed on the processing of personal data on behalf of another company.

 

2. Why do we process personal data and on what basis?

Purposes of processing personal data 

SFR Research Oy provides services
related to the research business and SFR Advisors Oy provides consulting services.


Both companies collect and process personal data so that:

• leads, potential customers, and existing customers can be marketed and communicated about our or selected third-party services, for example through newsletters, newsletters, various marketing campaigns, or invitations to events.

• we can fulfil our contractual obligations towards our customers, partners, and, for example, our employees. This includes, for example, the processing of personal data related to research activities and the analysis of responses.

• we can develop our services and improve the user experience of our services.• our services can be administered.

• we can prevent and, in certain situations, investigate possible abuses.

Legal basis for processing personal data
When we fulfil our contractual obligations, we process personal data based on a contract, such as a service, employment, or assignment agreement. In addition, we process personal data to fulfil our obligations arising from legislation, such as accounting and tax legislation

In the research business, we analyse and aggregate the responses of survey participants on the basis of legitimate interest. All information provided by survey participants is processed statistically in such a way that it is not possible to identify individual respondents.

We also have a legitimate interest in developing our products and services. The development of processes and systems related to our business may be based on the processing of personal data. This may also involve the processing of personal data for the prevention and investigation of misuse.


When we market our services or products to persons belonging to marketing target groups, potential customers or our existing customers, we process personal data on the basis of a legitimate interest. We have a legitimate interest in marketing our services and products in different ways. We want to provide people belonging to marketing target groups with as interesting information and marketing as possible, for example, on our website and social media channels. In addition, we may market our or a third party's services, for example, through newsletters or invitations to events. We may use social media tools in our marketing, such as different target groups. We analyse our email campaigns and the operation of our website and social media channels. This allows us to assess, for example, the effectiveness of our marketing campaigns. This information is the basis for the development of our business and future marketing activities.


In certain situations, we will ask for your consent to process your personal data. These situations include, for example, consent to electronic direct marketing or the processing of some special categories of data. The consent request contains information about the processing of such data. If you have given your consent to the processing of personal data, you also have the right to withdraw your consent.

3. What information do we collect?

We collect information necessary for the purposes defined in this privacy policy:

Information you provide to us

The personal data we process includes, for example, name, position in the company, telephone number, address and email address. This data is processed to communicate with customers and provide services.


If you participate in our researc surveys, you will provide us with your answers for analysis. The information provided by the respondents is combined and statistically analyzed in such a way that it is not possible to identify individual respondents.

Muista lähteistä kerätyt tiedot

We collect personal data from publicly available sources, such as registers maintained by public authorities (e.g. population registers, tax administration registers) and commercial data brokers.


4. How long do we keep your personal data?

We retain user's personal data only for as long as it is needed to provide the service or for the maximum period permitted by law.


5. Who can we share your information with?

Companies within the same group

For the purposes set out in paragraph 2, we may share personal data with companies within the same group of companies based on a legitimate interest.

Business arrangements

If we sell, buy, merge or otherwise reorganize our business, personal data may be disclosed to buyers and their advisors.

Service Providers

We transfer personal data only to the extent that third parties need access to the personal data we process to be able to provide our services for the purposes defined in this privacy policy. In this case, the service providers process the data on our behalf.

Partners

We can disclose your contact information to selected partners based on legitimate interest.

Legal reasons

Your personal data may be disclosed in accordance with the requirements and legal requirements of the competent authority.


6. Automated decision-making and profiling

Automated decision-making means a decision based on automated processing which produces legal effects concerning a person or similarly significantly affects him or her. We do not use automated decision-making in our operations.


Profiling, on the other hand, refers to the processing of personal data by automated means, which involves, for example, the assessment or anticipation of a person's interests or behaviour. We specialize in the strategic management of client relationships and client accounts in the financial and investment services industry, and as part of our research activities, we do not evaluate our clients' personal interests or behavior.


We may use profiling in our marketing in such a way that we aim to target the most suitable and interesting products and services to each customer. However, for the most part, the formation of marketing target groups is segmentation, which does not involve profiling


7.  International data transfers

We strive to implement the services and process personal data using operators and services located in the EU or EEA.
However, in some cases, the Services may also be provided using operators, services, and servers located elsewhere. In this case, your personal data may be transferred between different countries. Such transfers may involve transfers of personal data outside the EU or EEA to countries whose legislation on the processing of personal data differs from the requirements of Finnish law. In this case, we ensure an adequate level of protection of personal data, for example by agreeing on the matter with the data processor.


8.  Data protection

Data security is ensured by appropriate administrative, technical and physical security measures.


9. Minors

The service we provide is not aimed at minors and we do not specifically collect personal data of minors.


10. Services of third parties

This privacy policy applies only to the service provided by us and we are not responsible for the privacy practices of other sites. We recommend that you check the privacy statements of the websites you visit.


11. Changes to the privacy policy

We may change this privacy policy. If there are any changes to the privacy policy, we will always notify you of these changes in this privacy policy


12. Your rights

Right to check

You have the right to check what information about you has been stored in the contact information register. Right to request rectification You have the right to demand the correction or completion of incorrect, inaccurate, incomplete, outdated or unnecessary information.

Right to request the erasure of data

You can ask us to delete your personal data from our systems. We will take action in accordance with your request if we do not have a legitimate reason not to delete the data. The data may not be immediately deleted from all of our backups or other similar systems.

Right to restrict the processing of data

You can ask us to restrict the processing of certain personal data about you. A request to restrict the processing of data may lead to more limited possibilities to use our website and services. You have the right to opt out of electronic direct marketing by following the instructions included in all marketing messages we send

Right to object to processing

You can also request restrictions on the processing of your personal data if your data is processed for purposes other than the performance of our service or the fulfilment of a legal obligation. Objecting to the processing of personal data may lead to more limited possibilities to use our website.

Right to data portability

You have the right to receive your personal data from us in a structured and commonly used format so that you can transmit the data to another controller.

Right to withdraw consent

If the processing of your data is based on consent, you have the right to withdraw consent at any time.

Exercising your rights

You can exercise your rights by contacting customer service. We may request additional information necessary to verify your identity. Please also note that there are legal obligations related to our operations, for example in relation to the storage of data, and therefore we may be obliged to process your personal data even if you request the restriction of processing or the erasure of data.


If you feel that the processing of your personal data is incompatible with current legislation, you can complain to your local data protection supervisory authority.

Who can I contact?

You can contact us about data protection through the contact form on our website or by sending an email to sfr@sfr-group.com. Through this, you can also reach the person responsible for data protection issues in our organization.

Please specify when writing the message if your matter concerns data protection. In this case, we can target the message to the right people.