Privacy Policy

Issued: 27.04.2026

1. Data Controller

Company: Lännen Energialogistiikka Oy
Business ID: 0825003-9
Address: Vihtorinkatu 1
Postal code: 23800
City: Laitila
Email: matias.toivonen@energialogistiikka.fi

2. Person responsible for data protection and registry matters

Company: Lännen Energialogistiikka Oy
Name: Matias Toivonen
Address: Vihtorinkatu 1
Postal code: 23800
City: Laitila
Email: matias.toivonen@energialogistiikka.fi

3. Name of the register

Customer and marketing register

4. Legal basis and purpose of processing personal data

The processing of personal data is based on a customer or contractual relationship, another legitimate basis, or the explicit consent of the data subject.

Personal data may be processed to fulfil contractual or legal obligations, to communicate with the data subject and other parties necessary for managing a contractual relationship, to send newsletters, provide information, market products and services, conduct market analysis, and develop operations.

5. Content of the register

The register may contain the following information about the data subject:

  • Name and necessary contact details such as address, phone number, and email address
  • Business ID, position in an organization
  • Date of birth or personal identity code
  • Information about ordered products and services, and their delivery and invoicing
  • Messages, comments, and materials between the controller and the data subject or other relevant parties
  • Consents, prohibitions, and customer feedback

From online services, technical data may be collected, such as:

  • IP address
  • Location (country or city)
  • Services used
  • Device and operating system information
  • Browser type
  • Referring and exiting websites

Data may also be collected using cookies on the website.

6. Regular sources of information

Data is obtained from:

  • The data subject themselves
  • Technical tracking of use of digital services
  • Third-party analytics services such as Google Analytics
  • Public sources or public contact information providers

7. Regular disclosure of data

Personal data is not regularly disclosed to third parties. However, disclosure is possible for justified purposes.

8. Transfer of data outside the EU/EEA

Personal data is not regularly transferred outside the EU or EEA. If transfers occur, appropriate safeguards are ensured, including confidentiality agreements and compliance with applicable legislation.

9. Principles of register protection

MANUAL MATERIAL
Manual records are stored in a locked space and destroyed once converted into digital form.

DIGITAL MATERIAL

Digital data is securely stored on company systems, devices, or protected external servers/services.

Access is limited to employees who need the information for their work duties.

Data is protected with technical safeguards against external access.

Sensitive data is transmitted using SSL-encrypted connections.

Data is backed up regularly, and restoration of backups is tested.

Data protection breaches are reported to authorities or users in accordance with applicable law.

10. Right of access

Everyone generally has the right to review their personal data stored in the register.

Requests must be made in writing to the contact person listed above and signed by the data subject.

11. Right to correction and deletion

Everyone has the right to request correction or deletion of incorrect data.

Requests must be made in writing to the contact person listed above and signed by the data subject.

12. Other rights related to personal data processing

The data subject has the right to:

  • Request data portability in electronic format to another service provider
  • Withdraw consent for data processing
  • Prohibit use of data for direct marketing, remote sales, and market or opinion research

Requests must be submitted in writing and signed.

Marketing register data is stored indefinitely.

Other personal data is stored in accordance with applicable legislation and only as long as necessary for the purposes described in this policy.

Data may be retained due to accounting or other mandatory legal requirements even after the end of the customer relationship.

Website users may disable or clear cookies in their browser settings, though this may affect functionality.

The data subject has the right to object to processing, request restriction of processing, and lodge a complaint with the supervisory authority: www.tietosuoja.fi.