HealthFOX Oy (HealthFOX Oy also operates under the parallel business name HealthFOX Ltd) Business ID: 2634025-7. Hämeenkyläntie 124, 24130 Salo, Finland. firstname.lastname@example.org, www.healthfox.fi
Kimmo Korhonen, Hämeenkyläntie 124, 24130 Salo, Finland. Mobile +358 40 747 8346. E-mail: email@example.com
HealthFOX Oy client registry
Personal data recorded in the registry is processed for the purpose of client relationship, client’s consent, client’s commission or other factual connection between the client and HealthFOX Oy or another service provider operating within its premises.
Personal data can be processed for the following purposes: quality assurance, auditing, process development; management, implementation, development and monitoring of client relationship, client service and the relevant communication and marketing.
Analysis, grouping and reporting of client relationship, and other purposes related to improving the overall client experience and HealthFOX Oy’s business operations.
Targeting of communications, marketing and services and management of campaign, contact and transaction history.
Collection and processing of client feedback and satisfaction reports. Conducting market research and opinion surveys.
Data subject and the legal guardian of an under-aged client
Data subject unless there is a legal impediment.
Based on specific legal provisions, data may be disclosed to public authorities, research facilities and insurance institutions.
Data recorded in the registry will not be disclosed to any parties outside Finland without a separate agreement.
Paper archives are kept in locked filing cabinets under surveillance.
Personal data is stored in the HealthFOX Oy centralized client registry on the basis of written consent of the client.
Data stored in IT systems can only be viewed/accessed by logging in to the client relationship management system. User credentials are private. The top management of the data controller decides on the organisational solutions and grants the users access rights based on the requirements of their duties.
The use of personal data is monitored with access logs.
Client has the right to inspect their personal data once per year free of charge. A written request for inspection must be delivered to the data controller. The right to inspection may only be denied in exceptional cases where providing access to the data could pose serious danger to the client’s health or treatment or another person’s rights. The data will be disclosed to the client in written format. The client’s identity will be verified from a photo ID before disclosing personal data.
Client has the right to demand immediate rectification of inaccurate personal data in the registry. The demand must be presented in written format and delivered to the data controller.