Privacy policy

This is a privacy and data protection notice in accordance with the EU General Data Protection Regulation (GDPR).

Name of the register

Windium Oy customer data register


Windium Oy, Business ID: 2992112-9

The person responsible for the register

Timo Lintunen, CEO

Purpose of the register

The purpose of the register is to serve as Windium Oy’s customer information register.

The data may be used for the following purposes:

  • Customer relationship management

Regular sources of information

The main source of information is the customer himself. Data may also be obtained from government and business registers and from joint partners.

Data content of the register

The register mainly contains information provided by the customers themselves to Windium Oy.

The register may contain, for example, the following customer data

  • Name
  • E-mail
  • And other information provided by the user

Regular data disclosures

With the customer’s consent, data may be disclosed to joint partners of the customer and Windium Oy in order to deliver products and services ordered by the customer.

Data related to billing may be disclosed to payment intermediaries.

The data will not be disclosed to other third parties inside or outside the EU.

Data may be disclosed to public authorities if they make a request based on Finnish law.

Principles for the protection of the register

Manual data

No physical copies of the data are kept, except for the records, which are accessible only to designated Windium Oy employees and the accountant, who are bound by confidentiality obligations.

Data stored in information management systems

The data is transferred over an SSL-secured connection.

Electronic data is protected by a firewall. Only specifically designated Windium Ltd employees have access to the register data. Employees are identified by a username and password. The information is treated as confidential and may not be disclosed to persons other than those who need it for their work and who are bound by confidentiality obligations.

Right of access and refusal

The data subject has the right to check what data relating to him or her have been recorded in the personal data file. A written request for inspection must be signed and sent to the person responsible for the register.

The right of inspection is free of charge and is exercised no more than once a year.

Data retention period

We only keep personal data for the period necessary for the type of personal data and the purpose for which they are processed.


This website uses cookies. Cookies are small text files generated by our web service which, with the consent of your web browser, are stored in the memory of your browser. Cookies allow us to analyse the service requests you make to our web service from your browser, to personalise the choices and preferences you make when using the site and to provide you with personalised services.

Your web browser may refuse or delete cookies. However, it will affect our ability to provide personalised, high quality online services.