Contact us

Terms of use and privacy policy

Cookie Policy

The website uses cookies and other similar technologies to improve and analyse the user experience and to target marketing in the services provided by the Administrator or its partners. Cookies allow the Administrator to collect information, for example, about which page the Website is accessed from, when the Website is browsed, which browser is used and what the IP address of the device is. More information about cookies can be found in the Website cookie policy.

Privacy statement

Privacy statement in accordance with the EU General Data Protection Regulation (GDPR)  
Prepared on 30 September 2024
Controller
Kiinteistö Oy Espoon Keilalahden ABCD-talot
Business ID 2628856-7
c/o Newsec Property Asset Management Finland Oy
P.O. box 52
00101 Helsinki
Controller’s contact details
Compliance@newsec.fi
Register name
User register of the Keilaniemi ARC website

Purpose of the register and basis for processing 
The contact form can be used to leave contact details on the Website if, for example, you want to receive more information about us or our services or about vacant rental properties. The Website’s customer register contains personal data received via the contact form and is used for the following purposes:
responding to customer contacts
introducing our services
mapping out potential tenants
managing and developing customer relationships
developing business
processing feedback 
analysing Website usage
Personal data is collected, processed and used in the customer register of the Website for the establishment of customer relationships, the management of customer relationships and the verification of the consent of the data subject or the legitimate interests of the controller.
Data content of the register
The data stored in the register includes:
First name
Last name
E-mail address
Messages related to contacts 
The data collected on the Website using cookies, such as the addresses of the websites from which the online service is accessed, IP address, device ID and type, pages visited and duration of the visit. 
Other data that may be provided by the data subject and processed with their consent, such as the data subject’s organisation or telephone number.
Sources of data
The legal basis for the processing of personal data is the consent of the data subject or the legitimate interest of the controller. Personal data is collected from the data subjects themselves. Cookies also collect data on the use of the Website. The data stored in the register is obtained from messages sent using a contact form, emails, telephone calls, customer meetings and other situations in which the data subject discloses their data.

Disclosure and transfer of data 
The data will not be disclosed to a third party without the consent of the data subject. In cases permitted or required by law or where required by authorities, data may be disclosed without the consent of the data subject. 
Subcontractors may be used for data processing and data may be transferred outside the EU/EEA. When transferring data outside the EU/EEA, the transfer is carried out using the European Commission’s standard contractual clauses or another lawful transfer mechanism.
Data retention period
The controller stores the data in the Website customer register only for as long as necessary for the purpose of the register. However, personal data will be stored for a maximum of two (2) years after the need for the data ends, after which the data will be deleted. 

Protection of the register 
The data is protected by appropriate technical and organisational measures. The data is only accessible to people who need it to carry out their work tasks. The controller’s internal processes are followed in the definition of access rights.
Rights of the data subject 
In principle, the data subject has the right, in accordance with applicable data protection legislation to:
obtain information about the processing of their personal data;
obtain access to their own data;
request the rectification of inaccurate and incorrect personal data;
request the transfer of personal data from one system to another, i.e. the transfer of data to another controller, where technically feasible;
request the restriction of processing or the erasure of their personal data; and
withdraw their consent and object to the processing of their personal data to the extent that the processing of the personal data is based on the consent of the data subject and there are no other grounds for it.
The data subject must submit a request for the exercise of the aforementioned right to the controller primarily in writing. The controller may ask the data subject to specify their request and verify the identity of the data subject before processing the request. The controller may refuse to comply with the request on the grounds provided for in applicable law.
Complaint about measures concerning the processing of personal data
Every data subject has the right to lodge a complaint with a data protection authority in cases related to the processing of personal data. The complaint may be addressed to the Data Protection Ombudsman acting as a supervisory authority in Finland, or to the supervisory authority of the Member State of the European Union in which the Data Subject’s place of residence or workplace is situated, if the Data Subject considers that their personal data has not been processed in accordance with applicable data protection legislation.
Contact information:
Office of the Data Protection Ombudsman
Visiting address: Lintulahdenkuja 4, 00530 Helsinki, Finland
Mailing address: P.O. Box 800, 00531 Helsinki, Finland
Telephone switchboard: +35 29 566 6700
Email (registry office): tietosuoja@om.fi
Changes to the privacy policy 
The controller reserves the right to update and amend the privacy statement.