Legal Policies
Privacy Policy
Latest update: 1st of August, 2024
Your privacy is important to us, and we are committed to protecting the personal information that you may provide to us. This privacy statement explains what information we may collect about you if you browse our website, if you would like to learn more about our services, future development, or other similar matters, and in the connection you provide us with your contact details.
This privacy statement is prepared by Renue Partners Oy, with business ID 3460025-8 (“Renue Partners“) regarding the collection of data related to websites www.renuepartners.com (and any of its sub-sites), blogs, events arranged by Renue Partners, and to other marketing purposes.
The purpose of this statement is to provide information to i) website visitors and ii) subscribers of newsletters, blogs and other materials iii) prospective customers about what information may be collected and how the information is used. By using our website and/or if you submit your personal data to Renue Partners, your personal data may be processed as explained in this data privacy statement. This privacy statement also explains your rights concerning the personal data that we process in connection with the above-mentioned activities.
By using our website, you may be asked to provide us with your e-mail address if you are interested in our service, so that we may be in contact with you. By contacting you, we may provide you with more information about our service, provide you with instructions about scheduling a discovery session, answer any questions that you may have, or in general provide you with relevant updates concerning the development of our service and other interesting details about current updates.
If you would just like to receive relevant updates, you may subscribe to our newsletter and blog updates, and ask for a discovery meeting later, if you and/or your organization think that Renue Partners service would be useful to your organization.
After you have provided us with your contact details, you may at any time change your mind and use the unsubscribe button at the bottom of each email that you receive from us. After this, you will not receive any more relevant updates from Renue Partners.
Renue Partners will only use your contact details in accordance with this Privacy Policy, which may be found in full below. We will not use your e-mail address for direct marketing purposes without your explicit consent, or sell your contact details to any third parties.
1. Name of the register
The name of the personal data register is Contact Register of Renue Partners (“hereinafter Register”). Data subjects of the Register are the users of Renue Partners’s website and the subscribers of newsletters and/or other materials through Renue Partners’s website, product presentation or by other identifiable means.
2. Controller
Renue Partners Oy
Klubbintie 5 A2
FI-67700 Kokkola
Finland
3. Contact Information
https://www.renuepartners.com/contact/
Klubbintie 5 A2
FI-67700 Kokkola
Finland
Data Privacy Officer: [email protected]
4. Purpose and legal basis for processing personal data
When using the site, some personal data that can be connected to an individual person may be collected and processed. The legal basis for processing personal data is Renue Partners’s legitimate interest and/or consent provided by an individual, when providing his/her personal data in connection with a subscription of blog posts, newsletters or other materials at our website, product presentation or by other identifiable means. Data subject has the right to withdraw his or her consent at any time in an easy way, for example by using the unsubscribe link at the bottom of each email that is sent to data subjects and following the simple instructions on the unsubscription page.
Processing of personal data will be limited to what is justifiable to provide our website users with an improved experience when browsing at our website, and to what is deemed necessary for Renue Partners in carrying out its business and improving its services, provided that these interests are not outweighed by the data subjects rights and interests.
If a data subject has provided personal data with his/her consent, they are referred to in this statement as a “Participant”. Participant means a person, who fills in forms of Renue Partners or otherwise registers or attends to any of the seminars, meetings or events. With Participant is also meant any other person, who submits his/hers information for contact purposes to Renue Partners for example through Renue Partners’s website, online chat, by e-mail or any other way.
Personal data of the Contact register may be processed for the following purposes:
– sending monthly newsletters and blog notifications,
– registration to the events of Renue Partners and provide information regarding the events,
– direct marketing, if the Participant has given consent;
– operational management, administration, analysis, categorization and development of the participant data,
– improve and develop Renue Partners’s services and products,
– statistical analyses,
– development and reporting related to the business operations, and
– fulfill the obligations based on the law and orders of the authorities.
5. Regular sources of Personal Data
Renue Partners collects personal data primarily from the Participants, from Renue Partners’s customer database, and through cookies.
6. Content of Personal Data in the Register
If the Participant decides to provide Renue Partners his/her personal information, Renue Partners collects the information the Participant provides by filling in forms or contacting us. This includes information needed to fulfill the necessary actions regarding newsletter subscriptions, content downloads, registration to events and webinars, informing participants, and marketing objectives. To improve services Renue Partners may ask Participant to provide us with additional information about Participant such as professional interests, experiences with Renue Partners as well as more detailed contact preferences. When you provide Renue Partners with any personal information you consent to us collecting and using that information according to this policy.
The Register may contain the following personal data:
– Basic information (name, title, position, profession, country),
– Contact information (phone, e-mail address),
– The Company/Organisation represented and its technology stack,
– Chat or meeting discussions, and
– Participant’s activity (submission of reviews, information on received/opened e-mails from Renue Partners)
7. Use of cookies and related technology
With the cookies, Renue Partners can collect information about Participant’s usage of the internet and online service in general. With this information, we can improve our website and the services to meet the needs of the Participant such as offering services targeted more accurately to Participant’s liking, e.g. by saving your favorites and by identifying you every time you return to our site. Cookies may be disabled from Participant’s browser. Please note that disabling cookies can prevent you from using some content/services on our website.
Renue Partners may use other technologies or third-party analytical software to collect and use certain non-personal data that does not enable Renue Partners to identify the person. Renue Partners may use such non-personal data for purposes of analyzing usage of the websites and services, and managing, providing, and further developing the websites and services.
Non-personal data may include general, aggregated or demographic information. It will not be linked to any personal information, through cookies or other means, without the person’s consent. This type of anonymous, aggregated profiling and session data may include information that the person has provided to Renue Partners through the use of the websites, services or products, or taking a part in surveys, polls, etc. However, it will not be tied to any personal information, without the person’s consent.
8. Transfers and handling of Information
The data that Renue Partners collects from Participant may be transferred to, and stored at, a destination outside the European Economic Area (“EEA”). It may also be processed by staff operating outside the EEA who work for us or for one of our suppliers (e.g. if our service provider or supplier is located outside EEA). The information may also be disclosed to a third party during a negotiation of any merger or acquisition and the receiving party has undertaken to follow non-disclosure liabilities with respect to the disclosed information. Only necessary personal data is shared with these third parties.
Renue Partners will only disclose personal data based on a contract to third parties operating outside EU/EAA, which have taken steps to ensure that adequate data protection arrangements are in place in accordance with the data protection regulation. These may include, but are not limited to, Data Protection Agreements or standard contractual clauses provided by the European Commission.
Personal Data may be disclosed to authorities in cases required by the mandatory local legislation or court order. Data may also be disclosed if the disclosure is permitted by applicable law, regulation or agreement or consented by the Participant.
9. Retention of Personal Data
Personal data will be stored only as long as and only to the extent that is necessary in relation to the initial and compatible purposes of processing. When such requirements no longer exist, personal data will be deleted. The requirements is deemed to exist during the period that the Participant receives emails or other materials from Renue Partners based on consent. If the data subject has unsubscribed from receiving any communication from Renue Partners and there is no other legal basis for processing, personal data will be stored for a limited amount of time, should the Participant wish to re-subscribe to receive information from Renue Partners. Renue Partners will keep up-to-date internal policies regarding the erasure of such personal data from the Register.
In any event, the personal data is stored in accordance with possible applicable lawful storing period.
Renue Partners evaluates the need to store personal data regularly. In addition, Renue Partners performs all possible reasonable measures to ensure that any inaccurate, incorrect or outdated personal data will be deleted or corrected without delay.
10. Data Protection Principles
The information security of personal data and processing and confidentiality, integrity, and usability are ensured with appropriate technical and administrative measures in accordance with Renue Partners’s information security principles.
The vast majority of Renue Partners’s personal data is in electronic form. In case there are physical documents containing personal data, such documentation is destroyed immediately.
All databases and information systems are accessible only with individual and personal login information (username and password) granted by Renue Partners. The rights to access the database are restricted so that the information can only be viewed and processed by persons who are legally admitted and required to do so.
The employees of Renue Partners have bound themselves to comply with professional secrecy and concealment regarding the information they receive during the processing of personal information. Privacy and security guidelines have been communicated to employees and Renue Partners shall strictly enforce privacy safeguards within the company.
11. Rights of the Data Subject
Data Subjects have the following rights concerning the information that has been recorded into the Register.
Information and access to personal data
Data subject has right to receive information; what data is being collected, the purposes of the processing for which the personal data are intended as well as the legal basis for the processing and the recipients or categories of recipients of the personal data, if any.
Right of access by the data subject
Data subject has the right to obtain from Renue Partners confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data. If a request is made by the data subject, Renue Partners will provide a copy of the personal data undergoing processing. Obtaining a copy of personal data shall not adversely affect the rights and freedoms of others.
Right to rectification
Data subject shall have the right to obtain from Renue Partners, without undue delay, the rectification of inaccurate personal data concerning him or her.
Taking into account the purposes of the processing, data subject shall have the right to have incomplete personal data completed, including by means of providing a supplementary statement. In case there are changes in personal data recorded in the Register, the data subject must notify such changes to Renue Partners. In addition, Renue Partners is responsible for ratifying data it recognizes to be erroneous itself without delay.
Data used for direct marketing
Data subject has the right to object processing, to the extent that it is related to direct marketing, whether with regard to initial or further processing, at any time and free of charge.
Renue Partners shall communicate any rectification or erasure of personal data or restriction of processing carried out to each recipient to whom the personal data have been disclosed, unless this proves impossible or involves disproportionate effort. Renue Partners will inform data subject about those recipients if data subject requests it.
Right to erasure
Data subject has the right to request the erasure of personal data in the Register, if the legal basis for the processing of personal data has ceased. Despite the request for erasure, the data may not be erased if Renue Partners is obliged to process personal data for the establishment, exercise or defense of legal claims.
Right to data portability
Data subjects have the right to receive personal data concerning him or her, which he or she has provided to Renue Partners, in a structured, commonly used and machine-readable format and it is deemed technically appropriate and not disproportionate for Renue Partners, the right to transmit the data to another controller.
Contact details for requests
All requests concerning the exercise of data subjects’ rights may be submitted primarily to the following address [email protected].
Request for access to personal data (Article 15), request for rectification (Article 16), and request for restriction of processing (Article 18) may, in addition, be delivered to Data Privacy Officer.
You may also lodge a complaint to the supervisory authority if you consider that the processing of personal data violates the relevant data protection legislation in force. The national supervisory authority in Finland is Data Protection Ombudsman ([email protected]).
12. Changes to the privacy statement
Renue Partners has the right to change or update this privacy statement at any time. Please read the privacy statement from time to time.
But the truth is, there is no silver bullet. Sustainable growth is the compound effect of incremental, step-by-step improvements that accumulate over time to drive commercial excellence. A solid foundation combined with agile development creates a strong and unified growth engine.
Customer Register
1. Controller
Name: Renue Partners Oy (Business-ID 3460025-8) (hereinafter “Renue Partners”).
Address: Klubbintie 5 A2, 67700 Kokkola
Contact Details: [email protected]
2. Data Privacy Officer
Contact Details: [email protected]
3. Name of Register
The name of the personal data register is the Customer Register of Renue Partners (“hereinafter Register”). Data subjects of the Register are Customers of Renue Partners.
4. Purposes and legal basis for processing personal data
The main purpose of the register is the management of customer relationships.
The personal data of the Customers is processed for the following purposes:
– Carrying out and administering the customer relationships
– To create, develop, operate, deliver, and improve products, services, content, and advertising
– Customer communications such as sending notices, communications about purchases, and changes to our terms, conditions, and policies
– Carrying out customer satisfaction surveys and monitoring the results
– Creating statistics and analytics about customers and
– Direct marketing based on customer relationship
The legal basis for the processing of personal data is the performance of a contract and the legitimate interest of the controller.
5. Legitimate interest of the controller
The processing of personal data for marketing purposes based on prior business and/or contractual relationship with the Customer is regarded as a legitimate interest of the controller.
6. Personal Data Groups
The Register contains the following personal data:
– Basic information on the user such as name, title, role, email address, phone number
– ICT and security data such as IP-address, cookies
– Client feedback and marketing data such as chat and other communication with prospects and customers, feedback from customers
– Customer-specific information such as information received from meetings or phone calls, which is deemed necessary for the administration of customer relationships
7. Regular sources of personal data
Personal data is primarily collected from the signed agreements by Customers and from the data subject or colleague/manager of the data subject. In the registration process, the nature of the content of collected data depends on information that the Customer/user has submitted. Personal data is also collected directly from the Customers in connection with information received during phone calls, meetings, or other collaboration in connection with the administration of the business relationship, which may be added to the register by Renue Partners employees.
8. Automated Decision-making and Profiling
Data concerning the use of the service by Customers are assessed by Renue Partners. The purpose is to provide targeted customer content in customer communication (emails, website, chat, 1 on 1 communication) based on the needs, the adaptation of content, and customer satisfaction feedback. These procedures include automated profiling.
9. The Recipients of Personal Data
The primary recipient of personal data are employees of Renue Partners. The controller may disclose the personal data to other third parties based on contractual obligations or authority demands.
Personal information may be shared with companies who provide services such as information processing, maintenance, fulfilling customer orders, delivering services, managing and enhancing customer data, providing customer service, assessing interest in products and services, and conducting customer research or satisfaction surveys.
For the above-mentioned purposes, personal data of the Customers can, based on the performance of a contract, be disclosed to the following parties:
– System vendors and administrators of the servers
– Cooperation partners and service providers
– Communication platforms such as Slack and WhatsApp.
– Contact register. Customer data is partly transferred to the internal contact register of Renue Partners.
In case necessary by law, legal process, litigation, and/or requests from public and governmental authorities, Renue Partners may disclose your personal information.
10. Transfer of Data outside EU/EAA
In connection with the purposes for processing personal data in the Register, Vainu may transfer certain information to trusted third parties, which transfer and store the data outside EU/EAA area. Transfer of personal data is secured in accordance with the requirements of law. Only a limited amount of personal data is transferred to Renue Partners’s service providers, which is necessary for the performance of the tasks in accordance with the service contract in place.
Renue Partners will only disclose personal data based on a contract to third parties operating outside EU/EAA, which have taken steps to ensure that adequate data protection arrangements are in place in accordance with the data protection regulation. These may include but are not limited to, Data Protection Agreements or standard contractual clauses provided by the European Commission.
11. Storage Period of Personal Data
Personal data will be stored only as long as and only to the extent that is necessary in relation to the initial and compatible purposes of processing. In any event, the personal data is stored in accordance with the possible applicable lawful storing period. Personal data will be stored with the following time period or criteria used to determine that time period: The personal data received based on customer relationship is stored for a period of two (2) years, from the termination of the contract
The controller evaluates the need to store personal data regularly. In addition, the controller performs all possible reasonable measures to ensure that any inaccurate, incorrect, or outdated personal data will be deleted or corrected without delay.
12. Data Security principles of Personal Data
The vast majority of the controller’s personal data is in electronic form. In case there are physical documents containing personal data, such documentation is destroyed immediately. The servers used by the controller are protected by appropriate firewalls and technical security.
All databases and information systems are accessible only with individual and personal login information (username and password) granted by the controller. The rights to access the database are restricted so that the information can only be viewed and processed by persons who are legally admitted and required to do so.
The employees of the controller have bound themselves to comply with professional secrecy and concealment regarding the information they receive during the processing of personal information. privacy and security guidelines have been communicated to employees and strictly enforce privacy safeguards within the company.
13. Right of access and right to rectification by Data Subject
Information and access to personal data
Data subject has right to receive information; what data is being collected, the purposes of the processing for which the personal data are intended as well as the legal basis for the processing and the recipients or categories of recipients of the personal data if any.
Right of access by the data subject
Data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data. The controller shall provide a copy of the personal data undergoing processing. Obtaining a copy of personal data shall not adversely affect the rights and freedoms of others.
Right to rectification
Data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her.
Taking into account the purposes of the processing, data subject shall have the right to have incomplete personal data completed, including by means of providing a supplementary statement. In case there are changes in personal data recorded in the Register, the data subject must notify such changes the controller. The controller is responsible for ratifying data it recognizes erroneously itself without delay.
Data used for direct marketing
Data subject has the right to object processing, to the extent that it is related to direct marketing, whether with regard to initial or further processing, at any time and free of charge.
The controller shall communicate any rectification or erasure of personal data or restriction of processing carried out to each recipient to whom the personal data have been disclosed unless this proves impossible or involves disproportionate effort. The controller shall inform data subject about those recipients if data subject requests it.
The request may be submitted to the following address [email protected]
Request for access to personal data (Article 15), request for rectification (Article 16), and request for restriction of processing (Article 18) may, in addition, be delivered to the Data Privacy Officer.
14. Right to erasure
The controller shall have the obligation to erase personal data without undue delay where one of the following grounds applies:
– personal data that is no longer necessary in relation to the purposes for which they were collected or otherwise processed;
– the data subject withdraws consent on which the processing is based and there is no other legal ground for the processing;
– personal data have been unlawfully processed;
– personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject;
Despite the request for erasure, the data does need to be erased in case the controller is obliged to process personal data for the establishment, exercise, or defense of legal claims.
The controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform controllers which are processing the personal data that the data subject has requested the erasure by such controllers of any links to those personal data.
15. Right to restriction of processing
Data subject has the right to obtain from the controller restriction of processing where one of the following applies:
– the processing is unlawful and data subject opposes the erasure of the personal data and requests the restriction of their use instead;
– the controller no longer needs the personal data for the purposes of the processing, but they are required by data subject for the establishment, exercise or defence of legal claims
In case data subject has demanded for restriction of processing, the personal data may be processed only based on consent of data subject (excluding storage of data) OR for the establishment, exercise or defense of legal claims OR protect the vital interests of data subject or of another natural person OR to protect vital interest pursuant to Union or Member State law.
Data subject who has obtained restriction of processing shall be informed by the controller before the restriction of processing is lifted, besides if the provision of such information proves impossible or would involve a disproportionate effort.
16. Right to withdraw the consent and right to object
Data subject shall have the right to withdraw his or her consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
The right to object shall not apply when processing of personal data is necessary for the performance of a contract or when processing is necessary for compliance with a legal obligation.
Data subject is obliged to object processing of personal data when the lawfulness of the processing is based on the controller’s legitimate interest
17. Right to Data Portability
When the processing is based on consent or on a contract:
– Data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have
– In case technically appropriate and not disproportionate for the controller, data subject has the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided. Transmission of data shall not adversely affect the rights and freedoms of others.
18. Right to lodge a complaint to the supervisory authority
Data subject has a right to lodge a complaint with a supervisory authority, in case data subject considers that the processing of personal data violates the relevant data protection legislation in force. The national supervisory authority is Data Protection Ombudsman.
Data Protection Ombudsman: Visiting address: Ratapihantie 9, 6th floor: 00520 Helsinki: FINLAND
Postal address: : P.O. Box 800: 00521 Helsinki: FINLAND
Telephone exchange: +358 29 56 66700: E-mail: [email protected]