Description of our customer register
1. Name of the register
Never Too Lake brand customer register
Sainija Studio, Never Too Lake Business ID: 2976442-6 Voitatinkatu 4, 53550 Lappeenranta, FINLAND. contact (at) nevertoolake.fi www.nevertoolake.com
3. Purpose of the processing of personal data
Never Too Lake - an e-commerce agency dedicated to ordering, customer relationship management, administration, distance selling and customer contact.
4 Information content of the register
The register may include personal information according to categories: name, address information, (separately billing and delivery), telephone, e-mail address.
5 Registry data sources register
The regular source of information is the information collected by customers from themselves on the e-commerce checkout and registration pages. Personal information is collected and processed in online shopping, invoicing, accounting and e-mail.
6 Disclosure and other transfer to EU or EEA specific
On the basis of the registered data recorded, the establishment of the company is not regularly transferred, nor outside the EU or the EEA. Third parties to whom it is necessary to provide information for the processing of orders are Posti, the payment service provider Klarna and the e-commerce system Mycashflow.
7 Registry security principles
Maintaining the registration electronically and protected in various ways by firewalls, passwords and other technical security measures generally accepted in the security industry. Only an individual employee of the controller and an employee working on behalf of the controller may have access to the register, which includes the possibility for the controller to access personal data.
8 Right of inspection
As a general rule, a member entered in the register has the right to check his or her data stored in the personal register and the correct data controller to correct his or her incorrect data. It is possible to obtain a request for verification in writing from the relevant controller.
9 Correcting registry information
The controller shall, without undue delay, have personal data in a register that is rectified, deleted or completed, independent of processing, necessary, incomplete, obsolete or out of date, on its own initiative or against the responsibility of the data subject.