• en Language
  • fi Language

Privacy policy Aulis Lundell Oy

Updated 10/2020


Protecting your individual rights and keeping your personal data safe is very important for us in Aulis Lundell Oy (hereinafter called “Aulis Lundell” or “us”). In this Privacy Policy, we describe the collection, usage, storage and sharing practices of personal data.

All data related to an identified or identifiable person are personal data.

We use your personal data to comply with legal and contractual obligations as well as to provide you with offers, advice, and services.

Please notice, that our website may contain links to other company's sites or services, that have their own privacy policy.

What personal data we collect

We collect the personal data primarily straight from you either orally or in writing.

For example, through the website, we collect personal data, such as name and e-mail address. We also collect information that you provide us with such as messages you have sent us, e.g. feedback or a request in our digital channels.

The information may also be collected by the services we use.

In addition, we receive information from registers kept by the authorities, credit information, and the customer disruption register, as well as other reliable registers.

We may also collect information automatically when the user is using our services. This information includes:

  • Information stored in the user's activity service, such as information stored based on the User's activity, as well as event information sent to statistics and marketing tools.
  • User downloads in the service.

We also receive technical user information from our service, such as:

  • Timestamps and logs related to the use of the service;
  • Information about the devices used to access the service, including IP addresses and software versions. This information is obtained through the User's browsers and cookies.
  • Klicks in the service and filled information in the forms.
  • Marketing cookies for the targeted advertising

We do not combine or save this information together with personal data.

How do we use personal information?

We deal with personal data mainly for three purposes.

1. Providing the service

For managing contacts, we keep the contact information and bookkeeping about the topics of contacts, in order to offer the service to the User.

2. Improvement and exploration of the service

We may use personal data to improve the quality of service, resolve problems identified in the service, and develop the features of the service for users.

3. Marketing and communication

We may use personal data to send important information about the Service to the User. Personal data may also be used for the purposes of advertising, marketing, direct marketing, and personalized marketing directed at users. We may create general profiles of Users to provide better content and ads. This is based on our genuine interest in keeping Users up to date with our service and marketing new necessary products and services to our Users. The User has the right to prohibit direct marketing at any time.

Sharing personal data

We do not share personal data with third parties, apart from:

  • IP-addresses and marketing cookies, that can’t be combined with the other personal data.
  • When the service provides who we trust, offer services for us, and by our instructions. However, we supervise the personal data of the user in every situation.
  • If we are participating in fusion, trade sale or selling of the business, or a part of it.
  • When we sincerely believe, that giving the data is necessary. These cases can be: In order to protect our rights, protect the safety of the user or other customers, to investigate fraud, or fulfill the demands of the government.

We do not sell the personal data of the users to third parties.

Transferring personal data outside the EU/EEA

Mainly, we do not transfer the personal data of Users outside EU/EEA

Some of the statistics and marketing providers operate in USA. When these offer us their services, we may have to transfer some of the data of the Users to the United States. These data may be IP-addresses for statistics, or data about e-mail, company, or name, for the e-mail marketing or sales system. In these situations, our service providers has adhered to offer privacy shield and promised to obey the Privacy Shield -contract.


Storing personal data

The personal information of the User will only be retained for as long as is necessary to fulfill the purposes set out in this Privacy Policy. When the law, our rights or obligations, or the rights or obligations of the User no longer require the retention of the User’s personal information, we will destroy that personal information. For example, when a User requests that their data be removed from the Service, we destroy the data. For technical reasons, in such situations, personal data will be kept in our backups for up to a year before it is destroyed.

We strive to keep the personal information we hold accurate and up-to-date by deleting unnecessary information and updating outdated information.

Using personal data

We process your personal information in accordance with the Privacy Policy, in a manner that respects your rights and freedoms. We ensure that data protection principles are observed at all stages of the processing of personal data.

Your data will only be processed by those of us or our partners who have the right to process personal information. We have ensured the security awareness and competence of our personnel through continuous training and up-to-date instructions.

Your personal information may be processed in a number of different information systems that are managed by either us or our partners.

User Privacy Rights

The User has the right to receive the personal data we hold about that User. The User has the right to access, correct, update, change or delete personal data at any time. However, certain information is essential to meet the objectives set forth in this policy, and certain information may also be required by law. Therefore, the User may not delete such personal data.

The User has the right to object to certain data processing, such as profiling for marketing purposes. The User also has the right to restrict data processing to the extent required by applicable data protection law.

The User has the right, within the limits required by law, to the transferability of data, ie the right to receive his personal data in a structured, commonly used, machine-readable form and to transfer his personal data to another data controller.

The User can check their own personal data and correct or eliminate errors in them, as well as prohibit the processing of their personal data by contacting the company's customer service. Prohibitions and communications concerning the right of inspection must be made in writing and signed by post to address Aulis Lundell Oy, Tarrankuja 2, 08500 Lohja FINLAND, in person at the data controller or by e-mail to profile@www.aulislundell.com. For privacy reasons, the company will ask the user to prove their identity.

Information considering children

Our service is not directed to children under 16 years old. If you notice that a child under 16 years old has been given us personal data, please contact us by using the contact information given in section “Data controller”.

Cookies and similar techniques

We use cookies or other similar technologies to provide the service. Cookies are small text files placed on a User's device to collect normal Internet log information. Certain functionalities of the service require the use of cookies. We use cookies to increase the functionality of the service and to collect statistics to make it easier to use. In addition, we use cookies to provide marketing, but we do not store personal information and marketing cookies in a way that could be linked together.

The User can set the settings of their browser so that it does not accept the use of cookies. The User can also restrict the use of cookies or delete cookies from the browser. However, because cookies are part of the way the service works, restricting the use of cookies may affect the functionality of the service.


We take security seriously. We take various measures to protect personal information from loss, misuse, and unauthorized access or disclosure. These measures will be taken taking into account the sensitivity of the data we collect, process, and store, as well as current technology.

Changes in our Privacy policy

We may change this policy sporadically. If the change is occurring, we update the information about it in the Privacy policy and Terms of use.


If you have questions about our privacy policy, please contact us with the contact information given in the section “Data controller”.

Description of the file by Personal Data Act 10 § (523/99)

1. Data controller

Aulis Lundell Oy
Tarrankuja 2
08500 Lohja

2. Issues considering a register

Our customer service aspires to answer the questions and feedback considering the register within three working days. You can send an e-mail to profile@www.aulislundell.com.

3. Name of the register

The customer and marketing register of Aulis Lundell Oy.

4. The purpose of the usage of personal data

The purpose of processing is to manage the customer relationship, to implement the rights and obligations of the customer and Aulis Lundell Oy, and to process personal data in accordance with the Personal Data Act for purposes related to online services, research activities, directing the Aulis Lundell Oy's advertising and/or direct marketing through customer data through the Aulis Lundell Oy's media and services without disclosing personal data to a third party.

5. The information content of the register

The register may contain the information of the customer as follows:

  • Name
  • E-mail address
  • Mobile
  • Company and status
  • The address information of the company

6. Regular data sources of the register

The register is compiled from the Aulis Lundell Oy customer information system. Data is maintained using publicly available internet sources (for example the web page of the company) and other public sources. The register also contains information provided by the customer.

7. Regular disclosure of information

The data controller does not disclose customers' personal data to third parties, except when required by the Finnish authorities

8. Preserving and removing the data

We will keep your data for at least the time that the customer relationship has been active. After the termination of the business connection, the data preserving time depends on the information and the purpose.

The information may be removed by the demand of the customer or by the termination of the customer relationship.

We will keep your data for as long as they are needed for the purposes for which your data was collected and processed or required by laws and regulations.

This means that we keep your data for as long as necessary for the performance of a contract and as required by retention requirements in-laws and regulations. Where we keep your data for other purposes than those of the performance of a contract, such as for anti-money laundering, bookkeeping, and regulatory capital adequacy requirements, we keep the data only if necessary and/or mandated by laws and regulations for the respective purpose.

9. The principals of the protection of the register

Keeping your personal data safe and secure is at the center of how we do business. We use appropriate technical, organizational, and administrative security measures to protect any information we hold from loss, misuse, and unauthorized access, disclosure, alteration, and destruction.

10. The rights of the registered

The customer has the right to forbid the disclosure handling of information for direct and other marketing.