Solita’s privacy statement
We care about your privacy and right to data protection. The following includes information on how Solita Oy and/or its affiliates (“Solita” or “we”) and our authorized partners collect and use your personal data when we process your data and the rights you have in relation to the processing of your personal data. We process your personal data in accordance with the EU General Data Protection Regulation (GDPR) and other applicable data protection laws and regulations.
We may update this Privacy Statement from time to time to reflect changes in our operations and/or applicable law. We recommend that you revisit this site from time to time to see the latest version.
Collection of personal data
We process personal data received through Solita’s websites, our online services, and interactions with customers, partners and other stakeholders.
We may collect personal data on our website so that we can provide our visitors with a better experience, improve relationship management and care, and enable contacts required by the service.
We may also collect your personal data when you subscribe to our marketing emails, purchase or use our services or interact with us in any other way. We use a customer management database to manage and track our sales and marketing activities. We also have a recruitment register to process and store information about individuals who are being considered to be hired as new employees to Solita Group companies.
Collected personal data and how it is used
Solita and our authorized partners may process your personal data e.g. name, title, company, email address, physical address, phone number, education, username, invoicing information or other similar relevant information for the following:
- Providing products and services to you
- Communicating with you and providing you with requested information or facilitating meetings or other events
- Operating and managing our business operations including processing personal data as part of surveys or research, data analytics, marketing research or other purposes
- Managing our contractual and/or employment relationship with you
- Recruitment
- Complying with legal requirements
- Monitoring use of our systems
- Marketing our products and services
- Reviewing of sanctions lists and other relevant sources for compliance purposes
Processing of your personal data may be based on a contractual relationship, legal obligation, your consent, or our legitimate interest to enable us to conduct and maintain our business operations effectively.
Data protection and retention
Personal data is kept technically and organisationally protected. The level of security is audited at recurring intervals by carrying out either an external or internal audit.
Access to personal data is restricted on a need-to-know basis to individuals (Solita employees and authorized partners) who need to access the data in order to fulfill the tasks and duties related to their role within and with Solita.
Solita stores personal data for as long as is necessary for the purpose for which the information was collected, within the limits of the applicable legal and regulatory requirements.
Data sharing and international transfers
Personal data can be shared within Solita Group regardless of the affiliates’ location and with Solita’s subcontractors for the purposes mentioned above.
We also use third-party service providers who may have access to personal data as part of technical, maintenance, user analysis, research, statistical and marketing services they provide to Solita. Such third parties are only allowed to process your personal data to the extent necessary for them to provide the service we have requested from them.
Adequate data processing agreements ensure that the personal data is treated lawfully and in compliance with Solita’s instructions.
We may also transfer your personal data to countries outside the European Union and the European Economic Area, such as the United States. When personal data is transferred outside the EU or the EEA, Solita uses appropriate safeguards, such as the standard contractual clauses provided by the EU Commission.
Access to personal data and other rights
You have a right to inspect, correct and request erasure of your personal data. You may also request to restrict and object to the processing of your personal data if it could compromise your rights to privacy. All related requests must be made in writing to Solita. Contact details are available below.
You may be requested to verify your identity, specify your request, and may be asked for more information about your request.
We will respond as soon as possible. If Solita for some reason disagrees with your request, we will state our reasons for doing so. If you feel that your personal data has not been processed in a lawful manner, you may bring the matter to the attention of the relevant data protection authority.
Contact information
If you have questions about our Privacy Statement or Solita as a data controller, please email to [email protected].
Other information
Data controller:
Solita Oy
Peltokatu 26
33100 Tampere
Finland
Contact:
[email protected]
Latest update: May 2023
Solita Oy recruitment register
1. Controller
Solita Oy (Business ID: 1060155-5)
Peltokatu 26, 33100 Tampere, Finland
Tel. +358 29 170 3300
2. Contact information for matters related to the register
Questions concerning the register must be submitted by email to kati.kitti (at) solita.fi.
3. Name of the register
Solita Group recruitment register (Greenhouse)
4. Purpose of use
The purpose of the register is to process and store information about individuals who are being considered to be hired as new employees to Solita Group companies.
The data on candidates is stored by Greenhouse Software Inc. It is a US based service provider used for processing the applications. Solita and Greenhouse have entered appropriate contractual arrangements, including standard contractual clauses approved by the EU Commission, to ensure your data is safe and lawfully processed.
The information provided by the applicant is stored in the register for two (2) years and may be retrieved with regard to later application processes. The data is stored confidentially and can only be accessed by Solita employees participating in the recruitment process.
5. Data content
Basic information (name, email, phone number)
Information concerning education and work experience
Applicant’s preferences with regard to their prospective job
Information related to the applicant’s experience and competence profile and interview notes
Additional information provided by the applicant
An activity log about all actions done to the candidate and communication conducted with the candidate
The candidate’s gender when the candidate has given consent (gender related data is anonymised in Greenhouse, separately stored and only used for statistical purposes)
6. Regular sources of data
A job application made by the candidate via our career website form
Employee referral made by a Solita employee
Submission of a candidate done by our headhunting partners or our recruiters
7. Regular disclosure of data
The data is not disclosed to other third parties than Greenhouse.
8. Principles of securing the register
Personal data is stored confidentially. The register can be accessed only by Solita employees who need the data for their assignments. The data network and equipment of the controller and its possible information technology partners are protected using a firewall and other necessary technical measures.
9. Right to check and modify data on the register
A person on the register has the right to inspect, correct and delete their data or to refuse to process data for justified reasons. The request must be made in writing to the Controller.
Solita Oy will accordingly process your request and inform you the basis for why or why not the data will be changed. If our response is not satisfactory, you can always contact the Office of the Data Protection Ombudsman.
Solita’s Business Partner Privacy Statement
We care about your privacy and right to data protection. The following includes information on how Solita Oy and/or its affiliates (“Solita” or “we”) and our authorized partners collect, use and process personal data of our customers, potential customers, vendors and other business partners and their representatives with whom we have a business relationship or aim to develop one. Thus, the individual situations in which personal data is being processed may vary, but this Privacy Statement aims to give a general understanding of the processing of your personal data. Below we also describe the rights you have in relation to the processing of your personal data.
Personal data means any information that can be used to identify a person directly or indirectly either provided by you and/or obtained through other means. We process your personal data in accordance with the EU General Data Protection Regulation (GDPR) and other applicable data protection laws and regulations.
We may update this Privacy Statement from time to time to reflect changes in our operations and/or applicable law. We recommend that you revisit this site from time to time to see the latest version.
Collection of personal data
In order to carry out and maintain our business operations and relationships, we need to collect and process, among other information, certain personal data related to you. Personal data is mainly collected directly from you or aggregated through other co-operation Solita has with you. We may also collect personal data from companies and other legal entities you represent as well as the websites of these entities. We may collect personal data also from other reliable public sources or third parties, such as the trade registers, industry or compliance databases. We use customer and partner management databases to manage our sales and marketing activities and to manage our partner relationships.
Collected personal data and how it is used
Solita and our authorized partners may process your personal data e.g., name, title, company, email address, physical address, phone number, username, invoicing information or other similar relevant information for the following:
- Providing products and services to you
- Communicating with you and providing you with requested information or facilitating meetings or other events
- Operating and managing our business operations including processing personal data as part of surveys or research, data analytics, marketing research or other purposes
- Managing our contractual and/or other relationship with you
- Monitoring use of our systems
- Marketing our products and services, including directly contacting you and sending you direct marketing communications
- Complying with legal requirements
- Reviewing of sanctions lists and other relevant sources for compliance purposes
Processing of your personal data may be based on a contractual relationship, legal obligation, your consent, or our legitimate interest to enable us to conduct and maintain our business operations effectively.
Data protection and retention
Personal data is kept technically and organisationally protected. The level of security is audited at recurring intervals by carrying out either an external or internal audit.
Access to personal data is restricted on a need-to-know basis to individuals (Solita employees and authorized partners) who need to access the data in order to fulfill the tasks and duties related to their role within and with Solita.
Solita stores personal data for as long as is necessary for the purpose for which the information was collected, within the limits of the applicable legal and regulatory requirements. Predominantly, personal data shall be deleted from the customer and partner registers ten years after the relationship between Solita and our Customer has ended. If the personal data is subject to longer statutory retention requirements, we comply with those requirements.
Data sharing and international transfers
Personal data from the customer and partner databases can be shared within Solita Group regardless of the affiliates’ location and with Solita’s subcontractors for the purposes mentioned above.
We may also use third-party service providers to manage customer and partner databases. Personal data from the customer and partner databases may be disclosed to our auditors, insurance companies and different governmental authorities/agencies (or similar) for the purposes of their regulatory tasks.
Third parties are only allowed to process your personal data to the extent necessary for them to provide the service we have requested from them. When data processing activities are outsourced to carefully selected third party service providers (such as IT service providers, marketing service companies, consultants) they operate as data processors on behalf of Solita under a specific data processing agreement and in compliance with Solita’s instructions.
We may also transfer your personal data to countries outside the European Union and the European Economic Area, such as the United States. When personal data is transferred outside the EU or the EEA, Solita uses appropriate safeguards, such as the standard contractual clauses provided by the EU Commission.
Access to personal data and other rights
You have a right to inspect, correct and request erasure of your personal data. You may also request to restrict and object to the processing of your personal data if it could compromise your rights to privacy. All related requests must be made in writing to Solita. Contact details are available below.
You may be requested to verify your identity, specify your request, and may be asked for more information about your request.
We will respond as soon as possible. If Solita for some reason disagrees with your request, we will state our reasons for doing so. If you feel that your personal data has not been processed in a lawful manner, you may bring the matter to the attention of the relevant data protection authority.
Contact information
If you have questions about this Privacy Statement or Solita as a data controller, please email to dpo (at) solita.fi.
Other information
Data controller:
Solita Oy
Peltokatu 26
33100 Tampere
Finland
Contact:
[email protected]
Latest update: May 2023
Whistleblowing centre
Read more here