Privacy Policy- Jokasafe Oy

Last updated: 8 May 2026

1. Data Controller

Yritys: Jokasafe Oy

Street: Pukkilantie 28

Postal Code: 62500

City: Evijärvi

Country: FINLAND

Business ID: FI02086645

Jokasafe Oy (hereinafter referred to as “Jokasafe”, “we”, “us”, or “our”) acts as the data controller for the personal data described in this Privacy Policy.

2. Contact for Data Protection Matters

For all matters relating to the processing of personal data, please contact:

Name: Ville Sulkakoski
Email: ville.sulkakoski@jokasafe.fi

3. Scope of Application

This Privacy Policy applies to the processing of personal data of customers, potential customers, website users, and other stakeholders.

4. Purpose of Processing Personal Data

We process personal data for the following purposes:

  • To manage and maintain customer relationships
  • To provide and deliver our services
  • To communicate with customers and respond to inquiries
  • To manage contracts and invoicing
  • To carry out marketing activities, including newsletters and direct marketing where permitted
  • To develop, maintain, and analyse our website and services

5. Legal Basis for Processing

Personal data is processed on the following legal grounds:

  • The data subject’s consent (Article 6(1)(a) GDPR)
  • The performance of a contract or to take steps prior to entering into a contract (Article 6(1)(b))
  • Compliance with a legal obligation (Article 6(1)(c))
  • The legitimate interests of Jokasafe, provided that such interests are not overridden by the rights and freedoms of the data subject (Article 6(1)(f))

Our legitimate interests include, in particular, the development of customer relationships, business operations, and service quality.

6. Categories of Personal Data

We may process the following categories of personal data:

  • Identification data (e.g. name)
  • Contact information (e.g. email address, telephone number, postal address)
  • Company-related information (e.g. organisation, job title)
  • Customer relationship data (e.g. communications, order history)
  • Billing and contract information
  • Marketing preferences and consents
  • Technical data related to website usage (e.g. IP address, cookies, browsing behaviour)

7. Sources of Personal Data

Personal data is collected from:

  • The data subject directly (e.g. via forms, email, telephone)
  • During the establishment of a contractual relationship
  • The use of our website and digital services (e.g. cookies and analytics tools)
  • Publicly available sources, where applicable (e.g. business registers

8. Disclosure and Transfers of Personal Data

Personal data may be disclosed to:

  • Competent authorities where required by law
  • Service providers acting on our behalf (e.g. IT service providers, accounting systems, hosting services)

All third-party service providers are contractually bound to process personal data in accordance with applicable data protection laws and solely for specified purposes.

As a rule, personal data is not transferred outside the European Economic Area (EEA). Should such transfers occur, they will be carried out in compliance with applicable data protection legislation, including appropriate safeguards such as the European Commission’s Standard Contractual Clauses.

9. Retention of Personal Data

Personal data is retained only for as long as necessary for the purposes set out in this Privacy Policy, including:

  • For the duration of the customer relationship
  • For the period required to fulfil legal and regulatory obligations
  • For as long as necessary to resolve disputes or enforce agreements

Marketing-related data will be deleted upon withdrawal of consent or after a reasonable retention period.

10. Rights of the Data Subject

Under applicable data protection laws, the data subject has the following rights:

  • The right to access their personal data
  • The right to rectification of inaccurate or incomplete data
  • The right to erasure (“right to be forgotten”)
  • The right to restriction of processing
  • The right to object to processing, including for direct marketing purposes
  • The right to data portability
  • The right to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal
  • The right to lodge a complaint with a supervisory authority

Requests regarding these rights should be submitted in writing using the contact details provided above.

11. Data Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, or destruction. These measures include, but are not limited to:

  • Access control mechanisms
  • Encryption and secure systems
  • Internal policies and staff training

Access to personal data is restricted to authorised personnel only and solely on a need-to-know basis.

12. Cookies and Similar Technologies

Our website uses cookies and similar technologies to:

  • Ensure the proper functioning of the website
  • Enhance user experience
  • Analyse website usage and performance

Users may manage or disable cookies through their browser settings. Further information may be provided in a separate Cookie Policy.

13. Amendments to this Privacy Policy

We reserve the right to amend this Privacy Policy from time to time. The latest version will always be available on our website, and the date of the latest update will be indicated at the top of this document.