Customer experience and privacy policy

Customer experience and privacy policy

At the heart of AccessPoint’s operations is always the customer. There is no business without a customer, so we systematically monitor the development of the customer experience in AccessPoint. We carry out monitoring as a continuous process for our customer service and at regular intervals as a broader survey also aimed at our customer contact persons.

We also collect customer data in our new customer acquisition, e.g. with various forms on our website.

We process personal information in connection with these activities.

We hope you give us feedback. You can do it in less than a minute with the attached form https://palaute.accesspoint.fi/.

If you have any questions regarding the operation of AccessPoint and the processing of personal data, please contact our data protection officer by e-mail tietosuoja@accesspoint.fi. Below is our privacy statement for monitoring customer satisfaction and acquiring new customers.

Privacy policy

This is a Data Protection Statement prepared in accordance with Sections 10 and 24 of the Personal Data Act and the EU General Data Protection Decree (2016/679) prepared in order to fulfill the data subject’s obligation to provide information.

Registrar
AccessPoint Oy
business ID: 1457511-2
Itämerenkatu 11-13, 00180 HELSINKI

Contact person responsible for the register
The contact person is the data protection officer Tomi Launiainen
e-mail: tietosuoja@accesspoint.fi

Name of the register and information systems to be used

Customer register; Trustmary online service

Cookies

Cookies and web analytics allow us to provide you with seamless roaming, more personalized services, and more engaging ads. If you accept all cookies, you give us permission to collect and use your information to develop AccessPoint services and target advertising. You can also choose which cookies you allow. Some cookies are necessary for the reliable and secure operation of the website.

Legal basis and purpose of the processing of personal data

The legal basis for the processing of personal data under the EU General Data Protection Regulation is:

– the legitimate interest of the controller; in this case, the customer relationship and the employment relationship.

The purpose of processing personal data is to communicate with customers, maintain a customer relationship and collect feedback to maintain and improve the quality of the service. For personnel, the purpose is to measure employee satisfaction.

The data is never used for automated decision making or profiling.

Information content of the register

The information to be stored in the register is:
name,
company / organization,
email address
city
(photograph)

Regular data sources

The information stored in the register is obtained from the customer from, among other things, messages sent via online forms, e-mail, telephone, via social media services, contracts, customer meetings and other situations in which the customer discloses his information.

Employee representatives shall provide their information to the controller at the latest at the time of entering into an employment relationship.

Regular data transfers and data transfers outside the EU or the EEA

The information is not regularly disclosed to other parties.

The data will not be transferred outside the EU or the EEA by the controller.

The information may be published to the extent that this has been agreed with the customer / employee or that the customer / employee has otherwise given his or her consent.

Registry security principles

The register shall be handled with due care and the data processed by the information systems shall be adequately protected. Where registry information is stored on servers, the physical and digital security of the hardware is adequately addressed. The controller shall also ensure that stored data, server access rights and other information critical to the security of personal data are treated appropriately, confidentially and only by the employees whose job description it includes.

Right of inspection and right to request correction of information

Every person in the register has the right to check the information stored in the register and to request the correction of any incorrect information or the completion of incomplete information. If a person wishes to check or request the rectification of data stored about him or her, the request must be sent in writing to the data controller. If necessary, the controller may ask the applicant to prove his or her identity. The controller will respond to the customer within the time limits set out in the EU Data Protection Regulation, but generally within one month of receiving the request.

Other rights related to the processing of personal data

A person in the register has the right to request the removal of his or her personal data from the register, “the right to be forgotten”. Data subjects also have other rights under the EU’s general data protection regulation, such as restrictions on the processing of personal data in certain situations and the right to have data transferred from one system to another. Requests must be sent in writing to the controller. If necessary, the controller may ask the applicant to prove his or her identity. The controller will respond to the customer within the time limits set out in the EU Data Protection Regulation, but generally within one month of receiving the request.

Play Video