Privacy notice - Braveson
Skip to content

Privacy Notice

Updated 4.3.2024

1. Data Controller

Braveson Oy (Business ID 3346042-5)

Contact Information:

  • Address: Matarankatu 2, 40100 Jyväskylä, Finland
  • Email: hello@braveson.fi

2. Purpose of Processing Personal Data

Braveson Oy collects and processes personal data for the purposes of marketing products and services, business development, responding to contact requests, event registration, arranging and maintaining customer meetings, submitting offers, implementing customer projects, trainings and events, invoicing and debt collection, handling customer feedback, and bookkeeping.

The legal bases for processing personal data by Braveson are:

  1. Consent given by the data subject, e.g., using customer feedback on Braveson’s website with the name of the feedback provider
  2. Performance of contracts, e.g., order agreements
  3. Compliance with legal obligations, e.g., processing accounting documents and archiving contracts in accordance with the Accounting Act
  4. Legitimate interests of the data controller, e.g., direct marketing

3. Personal Data Stored in the Register

Braveson’s registers mainly store personal data provided by customers, such as contact details of corporate customer representatives. These may include, in addition to name, one or more contact details (e.g., address, phone number, email address). Furthermore, personal data of visitors to the company’s website may be collected for Google Analytics. In customer projects, personal data such as contact details of the customer’s employees or representatives of project stakeholders may be collected for project communication purposes.

4. Rights of the Data Subject

Data subjects have the following rights. Requests to exercise these rights should be sent to hello@braveson.fi:

Data subjects have the following rights.

Requests to exercise these rights should be sent to hello@braveson.fi:

Right to Rectification:

The data subject can request correction of inaccurate or incomplete data.

Right to Object:

The data subject can object to the processing of their personal data if they believe it has been processed unlawfully.

Right to Prohibit Direct Marketing:

The data subject has the right to prohibit the use of their data for direct marketing.

Right to Erasure:

The data subject can request deletion of their personal data if the processing is no longer necessary. We will process the request and either delete the data or provide a justified reason why it cannot be deleted.

The data controller is obliged to retain accounting material according to the Accounting Act (Chapter 2, Section 10) for 10 years. Therefore, accounting-related data cannot be deleted before the retention period expires.

Right to Withdraw Consent:

If the processing of personal data is based solely on consent (and not on, e.g., customer or membership relationship), the data subject may withdraw their consent.

Right to Restrict Processing:

The data subject has the right to request restriction of processing of disputed data until the issue is resolved.

Right to Restrict Processing:

The data subject has the right to request restriction of processing of disputed data until the issue is resolved.

Data Protection Authority contact details: https://tietosuoja.fi/en/contact-information

5. Regular Sources of Data

Braveson primarily collects customer data directly from the data subject, e.g., through contact requests, customer meetings, trade fairs, and other events.

Information about visitors to Braveson’s website is collected via cookies for Google Analytics to improve the website’s functionality.

Providing Data and Consequences of Not Providing Data

Providing personal data is necessary for e.g., preparing offers, making order agreements, and delivering projects or orders to customers. If the required personal data is not provided, the order agreement or project delivery may not be possible. In other contexts, providing personal data is voluntary.

6. Retention Period

Personal data collected by Braveson is retained only as long as necessary for each processing purpose.

7. Data Processors

Personal data collected and processed by Braveson may be handled by Braveson’s partners or system providers as follows:

  • Talenom Oyj for invoicing, debt collection, and bookkeeping
  • Google Inc. for analyzing website visitor data (Google Analytics)
  • Dealfront Finland Oy for analyzing website visitor data (Leadfeeder)
  • Microsoft Inc. for email and other M365 services
  • If Vahinkovakuutus Oyj for processing insurance claims (e.g., damage cases)

Personal data collected in customer projects may be disclosed to the respective customer for project implementation, communication, and follow-up measures.

8. Transfer of Data Outside the EU

Personal data collected and processed by Braveson is mainly processed and stored within the EU/EEA area. Microsoft M365 services are primarily implemented within the EU, but data may be transferred outside the EU. More information on Microsoft M365 data processing:
https://docs.microsoft.com/en-us/microsoft-365/enterprise/eu-data-storage-locations.

In the case of Google Analytics, data may also be transferred outside the EU. More information about Google’s data processing and privacy can be found here:
https://business.safety.google/compliance/.

9. Automated Decision-Making and Profiling

Braveson does not engage in automated decision-making or profiling based on collected personal data.

10. Cookie Policy

We use cookies (including Google Analytics) to improve content and user experience. Cookies are small text files stored on your device to collect and remember information, such as improving website functionality and usability. We may also use cookies and similar technologies for statistical purposes, such as better understanding how users interact with the website and enhancing user experience.

You can give consent or block cookies via a separate cookie consent request. Restricting cookie use may affect website usability in some cases.