Issued on 10 May 2023.
1. Data controller
Veljekset Ponteva Oy
2. Contact person responsible for the data register
Veljekset Ponteva Oy
3. Name of the data register
The register of visitors and group reservations on the ravintelihaarla.fi website.
4. Legal basis and purpose of the processing of personal data
The legal basis for the processing of personal data under the EU General Data Protection Regulation is the consent of the individual (documented, freely given, specific, informed and unambiguous). The purpose of processing personal data is to monitor the number of visitors to the website and, if necessary, to carry out a group reservation at the request of the data subject. The data may also be used for the sale, provision, production and development of the services of Ravinteli Haarla, as well as for direct marketing (direct mail, telephone and electronic marketing) and online advertising as well as their targeting, opinion polls and market research, marketing competitions and prize draws. The data is also used to plan and develop the business and services of Ravinteli Haarla. The data is not used for automated decision-making or profiling.
5. Data content of the register
The data stored in the register includes the IP address of the network connection, name, telephone number and e-mail address. The IP addresses of visitors to the website and cookies necessary for the functioning of the service are processed for legitimate interests, such as ensuring data protection and collecting statistics on visitors to the website in cases where these statistics can be considered as personal data. Third party cookies are subject to separate consent where necessary. The name, telephone number and e-mail address of the data subject are processed for the purposes of group reservations.
6. Regular data sources
The data stored in the register is obtained from the IP address of the visitors’ network connection and through the group reservation form.
7. Regular data disclosures and data transfers outside the EU or EEA
No data is regularly disclosed to other parties.
8. Principles of data register protection
The data register is processed with due care and the data processed by the information systems is adequately protected. Where the data is stored on Internet servers, the physical and digital security of server hardware is adequately ensured. The data controller ensures that stored data, as well as access rights to servers and other data critical to the protection of personal data, is treated confidentially and only by employees whose responsibility this is.
9. Right of access and right to rectification
Every data subject in the register has the right to access their personal data in the register and to request the rectification of any inaccurate data or the completion of incomplete data. If the data subject wishes to access or rectify their personal data, the request must be sent in writing to the data controller. The data controller may, if necessary, ask the data subject to prove their identity. The data controller will respond to the data subject within the time limits set by the EU General Data Protection Regulation (as a general rule, within one month).
10. Other rights relating to the processing of personal data
Data subjects have the right to request the erasure of their personal data from the register (“right to be forgotten”). Data subjects also have other rights under the EU General Data Protection Regulation, such as the right to restrict the processing of their personal data in certain circumstances. Requests should be sent in writing to the data controller. The data controller may, if necessary, ask the data subject to prove their identity. The data controller will respond to the data subject within the time limits set by the EU General Data Protection Regulation.
What are cookies?
A cookie is a small text file that an Internet browser stores on a user’s device. Cookies are only stored on the user’s terminal device when the user accesses the website. Only the server that sent the cookie can later read and use the cookie.
Cookies or other technologies do not harm the user’s terminal device or files, nor can cookies be used to run programs or spread malware. Cookies alone do not allow the user to be identified.
Why are cookies used?
Cookies recognise your computer when you access the website. They also remember the preferences you have previously chosen on the website and improve your user experience. For example, cookies can be used to identify a user’s devices and to target possible advertisements on websites and on any other services.
Our website uses some third-party tools and plug-ins that are relevant to the operation of our service:
- Social media or video platform embeds on websites or social media sharing and liking functionalities may collect data from users of online services, for example to recommend content or track visitor numbers.
- Cookies are used to help us track visits and traffic sources in order to measure and improve the performance of our website. Cookies allow us to improve our service for the benefit of our customers. If you do not allow these cookies, we will not know when you have visited our website and we will not be able to track your use of it. These cookies do not contain any personally identifiable information.
- Third-party plug-in services on the website (e.g. YouTube videos, Google statistics or Facebook plug-ins) may store data used to identify the user, over which we have no control. If you want to prevent these services from tracking your online movements, you can disable third-party cookies in your browser’s privacy settings. You can find instructions on your browser’s help page.
- There may also be buttons on the website to make it easier to share content across different online platforms and social media. If you use these buttons, a cookie may be placed on your terminal device by the service you have chosen. These cookies are not under our control. For more information on the use of third-party cookies, please visit the relevant third-party website.
- If you block or disable the storage of cookies, some features of our website may not work properly.
You can read more about cookies and the Finnish cookie recommendations on the Traficom website: