DATA CONTROLLER INFORMATION
Company name: Lekane Consulting & Services Oy
Business ID: 3256455-6
Address: Tuulikuja 2, 02100 Espoo
NAME OF THE REGISTER
Lekane Consulting & Services Oy Customer and Stakeholder Register
PURPOSES FOR PROCESSING PERSONAL DATA
The purpose of processing personal data is to establish and manage customer relationships or other comparable relationships, target advertising, direct marketing, and electronic marketing, conduct research activities, and develop business operations. The processing of personal data is based on the legitimate interest of Lekane Consulting & Services Oy in maintaining customer relationships and other relevant connections, as well as any consents given by data subjects. We utilize subcontractors for processing personal data, and information may be stored on their servers. Automated profiling may also be used in processing personal data.
WHAT PERSONAL DATA DO WE PROCESS?
HOW DO WE COLLECT PERSONAL DATA?
We compile the register from Lekane Consulting & Service Oy’s customer information systems, publicly available sources, information obtained from customers in connection with commercial projects, and other potential public sources. We also collect personal data directly from customers and other stakeholders through the use of various services, such as newsletter subscriptions, and through various marketing activities, including campaigns, fairs, and events. Additionally, we may collect and update personal data from companies that provide relevant services.
TO WHOM DO WE DISCLOSE YOUR PERSONAL DATA?
Personal data may be disclosed to authorities. Personal data may also be transferred to subcontractors acting on behalf of Lekane Consulting & Services Oy, who process personal data based on our instructions. Subcontractors are not allowed to use the data for any purpose other than providing the agreed-upon service. When using subcontractors, we ensure that data processing is carried out in compliance with this privacy statement.
TRANSFER OF DATA OUTSIDE THE EU OR EEA
We do not transfer personal data outside the European Union (EU) or the European Economic Area (EEA).
DATA RETENTION AND DELETION
We retain personal data for as long as necessary for the purpose for which it was collected, such as for the duration of a customer relationship. The necessity of data retention is assessed regularly, considering applicable legislation. Data is deleted as necessary, for example, upon a justified request from the data subject or when the customer relationship ends.
INFORMATION ABOUT YOUR RIGHTS
Under the General Data Protection Regulation (GDPR), you have various rights. Depending on the situation, you may have the right to:
If you wish to make a data access request, please contact us via email at info@kumorion.com.
If you believe we have acted in violation of this privacy statement or applicable laws, you have the right to file a complaint. You can also lodge a complaint with the Data Protection Ombudsman, who supervises the legality of personal data processing.
INFORMATION ABOUT DATA SECURITY
The databases where register data is stored are protected by firewalls, passwords, and other technical means. The databases and their backups are located in locked premises. Manually processed documents containing personal data are stored in locked spaces, ensuring that unauthorized persons cannot access them. We ensure that only our employees and employees of companies working on our behalf who need access to the data for their work have access to it.
DATE
Updated on 20.3.2026