Solita Oy – Privacy policy

Controller
Solita Oy, Peltokatu 26, 33100 Tampere, Finland.

Contact person for the register
Saana Nurminen
General Counsel, Solita Oy
saana.nurminen (at) solita.fi
Tel +358 29 170 3300

Name of the register
Solita Oy’s customer and marketing register

Collection and use of personal data
The primary criterion for handling personal data is the working relationship between the customer and Solita, the legitimate interest of the controller, the customer’s consent, the assignment of the customer or any other relevant connection between the customer and Solita.

We collect data on our website so that we can provide our visitors with a better experience, improve customer relationship management and care, and enable contacts required by the service. For example, we can request from people filling forms on our site information such as their name, company and email address, as well as additional information such as their title.

Cookies
Cookies are small files stored on a user’s computer’s hard disk. Cookies facilitate navigation on our website and increase user friendliness. Our web pages use cookies to remember your choices.

Cookies can also be used to determine whether your computer has previously had access to our site. Only the cookie on your computer will be recognised.

Cookies can be used to determine whether you have visited our website before. This is done by recognising the cookies on your computer. The cookies show from where you came to our website, which of our www-pages you have browsed and when, what browser you are using, the display resolution, operating system and IP address of your computer or what information you send from the internet address. The information will not tell us the name of the user or other personal information, and the user cannot be identified by the cookies alone.

If you use our website, you agree to the use and storage of cookies on your computer. Most web browsers automatically accept cookies. As a visitor, you can block cookies by changing your browser settings so that your browser does not allow cookies to be saved. In that case, you agree that, for some services, blocking the use of cookies may affect the functionality of the service.

To improve site usability, we can also store information about mouse clicks, mouse movement, screen scrolling, and text written on the site.

Automation of marketing
The marketing automation and re-marketing tools used by Solita use third-party cookies. When a visitor visits our site, a unique cookie is stored in the browser for roaming. If a visitor submits personal information, for example, by filling in their contact details, uploading a guide or other form on the site, the unique cookie will be associated with the personal information provided by the user.

Network marketing
Solita uses partners’ services to deliver targeted online advertising. Service providers can add cookies to gather information about the visit to our website and to target the visitor’s interest in Solita’s communications.

Email marketing
We will send information about current news, events and services by email to people in our customer and/or marketing registries. You can exit our email distribution list at any time via the link at the bottom of the email. Email messages may contain cookies and tracers to let us know if you have opened or read our message.

Links to the third-party services
Our websites include links to external services, such as LinkedIn, Twitter and Facebook share buttons. Through them, external service providers may install a link to the user’s computer with cookies that are not controlled by Solita.

Analytics
We use on our website services generating third-party web analytics. We use the data collected by the tool to develop our online service.

Regular disclosure of information
The register information can be shared within the Controller’s group and with the Controller’s subcontractors. All subcontractors are bound by the legality requirement.

The Controller can also outsource processing of your personal data to companies outside the enterprise that may be in countries outside the European Union and the European Economic Area, such as the United States. These companies can process personal data to provide infrastructure and IT services, or other services. When personal data is transferred outside the EU or the EEA, Solita uses appropriate safeguards, such as the standard contractual clauses provided by the EU Commission.

Principles of registry protection
The information is kept technically protected. Physical access to data is blocked by access control and other security measures. Access to data requires adequate rights, as well as multi-stage recognition. Unauthorised access is also prevented by firewalls and other technical protection. Only the Controller and designated persons can access the stored data. Users are bound by the confidentiality obligation. The stored data is backed up safely and can be returned as needed. The level of security is audited at recurring intervals by carrying out either an external or internal audit.

Retention period
The controller shall keep personal data for as long as is necessary for the purpose for which the information was collected, within the limits of the applicable law and in accordance with the requirements of the laws and regulations, in particular in accordance with accounting requirements.

Right to check and modify data on the register
A person on the register has the right to inspect, correct and delete their data or to refuse to process data for justified reasons. The request must be made in writing to the Controller. Solita Oy will accordingly process your request and inform you the basis for why or why not the data will be changed. If our response is not satisfactorily, you can always contact the Office of the Data Protection Ombudsman.

Solita Oy recruitment register

1. Controller

Solita Oy (Business ID: 1060155-5)
Peltokatu 26, 33100 Tampere, Finland
Tel. +358 29 170 3300

2. Contact information for matters related to the register

Questions concerning the register must be submitted by email to work@solita.fi.

3. Name of the register

Solita Group recruitment register (Greenhouse)

4. Purpose of use

The purpose of the register is to process and store information about individuals who are being considered to be hired as new employees to Solita Group companies.

The data on candidates is stored by Greenhouse Software Inc. It is a US based service provider used for processing the applications. Solita and Greenhouse have entered appropriate contractual arrangements, including standard contractual clauses approved by the EU Commission, to ensure your data is safe and lawfully processed.

The information provided by the applicant is stored in the register for three (3) years and may be retrieved with regard to later application processes. The data is stored confidentially and can only be accessed by Solita employees participating in the recruitment process.

5. Data content

  • Basic information (name, email, phone number)
  • Information concerning education and work experience
  • Applicant’s preferences with regard to their prospective job
  • Information related to the applicant’s experience and competence profile and interview notes
  • Additional information provided by the applicant
  • An activity log about all actions done to the candidate and communication conducted with the candidate
  • The candidate’s gender when the candidate has given consent (gender related data is anonymised in Greenhouse, separately stored and only used for statistical purposes)

6. Regular sources of data

  • A job application made by the candidate via our career website form
  • Employee referral made by a Solita employee
  • Submission of a candidate done by our headhunting partners or our recruiters

7. Regular disclosure of data

The data is not disclosed to other third parties than Greenhouse.

8. Principles of securing the register

Personal data is stored confidentially. The register can be accessed only by Solita employees who need the data for their assignments. The data network and equipment of the controller and its possible information technology partners are protected using a firewall and other necessary technical measures.

9. Right to check and modify data on the register

A person on the register has the right to inspect, correct and delete their data or to refuse to process data for justified reasons. The request must be made in writing to the Controller.

Solita Oy will accordingly process your request and inform you the basis for why or why not the data will be changed. If our response is not satisfactorily, you can always contact the Office of the Data Protection Ombudsman.