Privacy Policy

Data Controller
Indmeas Oy
Vaisalantie 6, 02130 Espoo, Finland
Business ID: 2273771-6

Data Protection Officer
William Laurén
Contact details:
william.lauren@indmeas.com
+358 (0)50- 493 3413

Name of the Register
Customer and Marketing Register

Purpose of Processing Personal Data
The purpose of processing is the maintenance, management, and development of the customer relationship, as well as the fulfillment of the rights and obligations of both the customer and the controller. Furthermore, personal data is processed in accordance with the Data Protection Act for purposes related to online services, research activities, and for directing the controller’s advertising and/or direct marketing based on customer data through the controller’s channels.

Content of the Register
The register contains the following information about individuals:

  • Name
  • Organization and position
  • Email address
  • Mobile and/or other phone number
  • Organization’s address information
  • Marketing consents/prohibitions
  • Marketing classification data (e.g., newsletter subscriber, campaign participant, industry, etc.)
  • Date of registration

Regular Sources of Information
Data is collected from companies at the beginning of a customer relationship and from individuals themselves via electronic registration, contact, order, and campaign forms, etc.

Regular Disclosure of Data
The controller does not disclose personal data to third parties for marketing purposes. We use trusted service providers (such as Mailjet for newsletter distribution) who act as data processors on our behalf. Data may be disclosed to authorities as required by law.

Transfer of Data Outside the EU or EEA
Data is primarily processed within the EU/EEA. However, some of our service providers (such as Google) may process data in the United States. We ensure that such transfers are protected by the EU-U.S. Data Privacy Framework or Standard Contractual Clauses (SCC) approved by the European Commission. We ensure that such transfers are protected by the EU-U.S. Data Privacy Framework or Standard Contractual Clauses (SCC) approved by the European Commission.

Erasure of Data
Data may be erased upon the individual’s request or due to the termination of the customer relationship.

Principles of Register Security
Personal data is kept confidential and protected from unauthorized access. Access to the register is restricted to persons employed by Indmeas Oy or authorized operators. Devices are protected by personal login credentials and are located in monitored premises. Indmeas.com is secured with an SSL certificate.

Legal Basis for Processing

  • Maintenance of customer relationship
  • Marketing
  • Fulfillment of contractual obligations

Right of Inspection
The data subject has the right under GDPR to inspect data concerning them via a written request. The data subject also has the right to request the rectification or erasure of data and to withdraw marketing consent.

Right to Lodge a Complaint
The right to lodge a complaint with the Data Protection Ombudsman: tietosuoja.fi

Links & Cookies
Our website may contain links to third-party websites; Indmeas is not responsible for their content. We use cookies to track visitor statistics (Google Analytics) and to manage scripts (Google Tag Manager). Cookies are also used to store language preferences.