PRIVACY POLICY & TERMS
When accessing and using the website(s) of REACHLaw Ltd. and its subsidiaries (together “REACHLaw”) you agree to the following terms and conditions. Please read all the terms and conditions carefully before using the website(s) of REACHLaw. Should you not agree to all the following terms and conditions, you should not use the website(s) of REACHLaw.
We are committed with GDPR Regulation
We are committed with GDPR Regulation :
COPYRIGHT
All content of the website(s) of REACHLaw including, but not limited to, documents, files, text, images, graphics, devices, sound, audiovisual elements and code are owned by REACHLaw. Unless clearly expressed, any reproduction, copying, transfer, distribution or storage of part of or all of the contents in any form, including framing, creating any derivative work based on this website or its content, incorporation into other websites, electronic retrieval systems or publications is prohibited without a prior written permission by REACHLaw.
As user of the website(s) you are allowed to copy and print extracts from this website(s) for non-commercial personal use, provided that any such copy or print retains copyright or other proprietary notices, including any disclaimer contained in any such information.
As user of the website(s) you can use information from the website(s) for information purposes, provided the source of information is mentioned and only for non-commercial personal use. Any information used must not be modified and the information must not be used in any way afflicting harm to the reputation of REACHLaw.
NO WARRANTIES
The content of the website(s) of REACHLaw as well as the website(s) as such are provided for on an “as is” basis. REACHLaw does not give any representation or warranty, either express or implied about the accuracy, completeness, availability, validity, timeliness or reliability of the information or data made available on the website(s) of REACHLaw. REACHLaw expressly disclaims any warranties of merchantability or fitness for a particular purpose.
REACHLaw is not liable to any party for any loss or damage irrespective of the nature thereof, including, but not limited to, direct, indirect, special or other consequential damages arising from the use of or inability to use the website(s) of REACHLaw, such as loss of profits, business interruption or loss of programs or data on your information handling system. If the applicable jurisdiction does not allow the limitation of liability as stated, the liability of REACHLaw is limited to the greatest extend permitted under the applicable law.
REACHLaw does not warrant that the website(s) of REACHLaw or the servers used for operating these website(s) are free of viruses, malware, malicious script or other harmful components.
REACHLaw reserves the full rights to revise, alter or withdraw access to the website(s) of REACHLaw at any given time.
APPLICABLE LAW
Any dispute arising out of the use of the website(s) of REACHLaw must be settled by the district court in Helsinki, Finland, in accordance with the laws of Finland, without giving effect to any rules on conflict of laws.
ENQUIRIES
Please forward any questions and remarks related to the Legal Notice to REACHLaw by E-mail: info@reachlaw.fi or via phone: +358 (0) 9 412 3055.
In REACHLaw the operations and services are dependent on undisturbed and secure functioning of information systems. The Information Security Policy is a statement that defines the objectives, responsibilities, execution and means of monitoring safeguarding of information.
The Information Security Policy is at the disposal of all the employees, customers and partners and it is required that it is followed. This Information Security Policy should be read in conjunction with our Privacy Policy and Website Privacy Policy and Cookie Policy, which can be found on our website(s).
We are committed with GDPR Regulation :
- OBJECTIVES
- ORGANISATION AND RESPONSIBILITIES OR INFORMATION SECURITY
- MEANS OF IMPLEMENTATION
- MONITORING
- UPDATING
OBJECTIVES
The objective of information security is to ensure the quality of operations and to implement built-in and default information security in all situations. Information security means ensuring confidentiality, consistency and availability and fault tolerance of information as well as the ability to restore the availability and access to information quickly in a situation of physical or technical error, but also preparation to breaches of information security and reporting the breaches to relevant parties. Information security is implemented and developed by using appropriate and cost-effective solutions considering the risks.
The risks relating to implementation of new modes of operation and technologies are also managed by information security measures. In the company, personal data is processed appropriately for the whole duration of the life cycle of the information. The data is available to only those persons who need it for their work and unnecessary information is destroyed after the agreed time.
ORGANISATION AND RESPONSIBILITIES OR INFORMATION SECURITY
The management of REACHLaw is responsible for the allocation of enough resources to information security. An appointed person is responsible for notifying any breach of information security to the data controller, registered person and the authorities. Our personnel are responsible for their own part for following the instructions and guidelines regarding information security policy and the use of systems as well as for reporting the remarks and deficits regarding information security to the appointed person in charge.
MEANS OF IMPLEMENTATION
The probability of risks relating to data processing and their effects to the quality of operations is frequently evaluated at all levels of the organisation and the aim is to manage the risks by controls meant for this purpose. The personnel are obliged to keep the data processed in the course of their work secret.
The nature, scope, context and purposes of data processing are taken into considerations in the impact assessment of data processing. The necessary security actions are implemented in accordance with how risky the processing is considering the registered person’s rights and liberties.
MONITORING
High-quality data processing requires constant monitoring. Realisation of information security is monitored on risk-based assessment considering also the new threats that concern the business environment. The status of information security is reported by the means of internal audits and vulnerability scan
UPDATING
The appropriateness of information security policy is evaluated on a regular basis. If there are changes in the relevant regulation or the operations of the organisation, the content is updated as necessary.
We are committed with GDPR Regulation :
- COMMITMENT TO SAFEGUARD YOUR PRIVACY AND ENSURE DATA PROTECTION
- USE PERSONAL DATA
- LEGAL BASIS FOR PROCESSING OF PERSONAL DATA
- COOKIES
- DISCLOSURE TO THIRD PARTIES
- GLOBAL ACTIVITIES
- INDIVIDUAL'S RIGHTS
- DATA RETENTION
- DATA CONTROLLER
COMMITMENT TO SAFEGUARD YOUR PRIVACY AND ENSURE DATA PROTECTION
REACHLaw is fully committed to safeguard the processing of your personal data in compliance with applicable laws, namely Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR), and relevant practices and guidelines.
This Website Privacy Policy applies to any personal information you may provide to REACHLaw via the website(s) of REACHLaw. This Website Privacy Policy informs you about how we collect and process your personal data in connection with REACHLaw’s website(s).
In case you do not agree with this Website Privacy Policy we advise you not to use the REACHLaw website(s) or to submit any information to REACHLaw via the website(s). This Website Privacy Policy should be read in conjunction with our Privacy Policy, Cookie Policy and Information Security Policy, which can be found on our website(s).
USE PERSONAL DATA
You can visit and browse the REACHLaw website(s) without providing your name. However, we may need your personal data to process a request you submit via the website(s), in order to provide our services or for us to reply to any questions you submit via the website(s).
In case we collect personal data from you, based on a request from you, we are transparent about what data we collect and how we will use the data. The use of data collected via the website upon a request from you is namely related to:
- the use of the contact form available at the website(s);
- the function to sign up for updates about REACHLaw webinars and seminars; and
- the use of the website to facilitate the process of forwarding a job application to REACHLaw.
LEGAL BASIS FOR PROCESSING OF PERSONAL DATA
The legal basis for collecting and processing your personal data via the website(s) is the relationship established based on a legitimate interest between you and REACHLaw when you visit and use the website(s), contact us or order the services provided for on our website(s). Moreover, processing of your personal data may for example take place in case we need to manage or develop the relationship between you and us with regard to improving our services, website(s) or other contents.
COOKIES
We may use cookies on our website(s) and collect your personal data via such. You can read more about our Cookie Policy on our website(s). The website(s) may use social media plugins, such as Linkedin or Twitter, which enables you to “Like” the REACHLaw account on the social media in question. The REACHLaw website(s) is solely displaying such social media plugins; whereas the content provided for via such plugins is directly provided for by the social media in question. Such social media plugins are subject to the privacy policies of the social media in question.
DISCLOSURE TO THIRD PARTIES
We may disclose your personal data with REACHLaw affiliates. Your personal data may also be processed by a REACHLaw affiliate on behalf of us. We base this processing on our legitimate interest to transmit personal data within REACHLaw for internal administrative purposes, such as for the purposes of management reporting and for operating our business effectively, such as for using centralized recruitment systems.
We may disclose personal data to third parties:
- when permitted or required by law;
- when our trusted services providers process personal data on behalf of us and under our instructions (e.g. outsourced recruitment and aptitude tests). We will be responsible for the use of your personal data at all times;
- if we are involved in a merger, acquisition, or sale of all or a portion of our assets; or
when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or in responds to a government request.
GLOBAL ACTIVITIES
We may transfer your personal data outside the EU or the European Economic Area when our trusted service providers working for us are established there. In these cases, we will only transfer your personal data outside the EU/EEA when:
- the European Commission deems the recipient country to have adequate protective measures in place for personal data;
- adequate safeguards are in place based on the model clauses issued by the European Commission;
- when you, as data subject, has provided your consent to the transfer; or
- another legal basis exists under the applicable laws.
INDIVIDUAL'S RIGHTS
As data subject you have a set of rights in respect of your privacy. Under the GDPR, you have the following rights:
- information on any processing of your personal data
- access to your personal data;
- data portability of your personal data;
- rectification of your personal data;
- erasure of your personal data;
- restriction of processing of your personal data;
- object to the processing of your personal data; and
- not to be subject to a decision based solely on automated processing.
To exercise your rights please use our Personal Data Request Form, which you can find on our website(s).
When personal data is processed on behalf of customers of REACHLaw we ensure that the individual’s rights are implemented into the provided services appropriately. Where relevant, assistance will be provided to processors of personal data for the fulfilment of the controller’s obligation to respond to individuals’ requests for exercising their rights.
Before using one or more of these rights, you should be aware that it may be difficult to continue the business relationship without certain changes needed.
Any objections to the way REACHLaw process your personal data may be reported to the Office of the Finnish Data Protection Ombudsman. You can find contact details of the Office of the Data Protection Ombudsman here: https://tietosuoja.fi/en/home.
DATA RETENTION
Personal data collected via the website(s) based on the legitimate interest between you and REACHLaw will be retained for as long as necessary to fulfill the purposes defined in this Statement and in accordance with the requirements under applicable laws.
In certain cases, personal data may be retained for a longer period if required so in accordance with applicable laws, exercise of claims or in relation to litigation or internal investigations.
When retention of your personal data is no longer required by law or rights or obligations by either party, we delete your personal data.
DATA CONTROLLER
REACHLaw is the controller of the personal data. If you have any questions about this Website Privacy Policy, please contact us at via the contact form available on our website(s).
REACHLaw is fully committed to safeguard the processing of your personal data in compliance with applicable laws, namely Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR), and relevant practices and guidelines.
We care about your privacy and we deem it important that you know how REACHLaw process your personal data. With this Privacy Policy, in conjunction with our Website Privacy Policy, Information Security Policy and Cookie Policy, we seek to provide you with the information needed for you to understand the processing of your personal data and thereby enable you to exercise your rights under applicable laws.
We are committed with GDPR Regulation :
WHAT KIND OF PERSONAL DATA WE COLLECT
Personal data is any data that can be used to identify you directly or indirectly. In our daily work we for example collect personal data we receive from your or you employer to facilitate the business relationship, we collect personal data when you sign up for events or webinars, requests for newsletters and in relation to applicants applying via our website(s).
The personal data we collect differs depending on your relationship to REACHLaw. In most cases we collect name, phone number, e-mail address, postal address and business affiliation.
HOW WE PROCESS PERSONAL DATA
The primary processing of the personal data which we connect is used to facilitate our business and business relationship. In practice this means that the personal data collected enables us to do business with you and your company, to send you newsletters and invitations or other legitimate objectives as part of the daily business functions.
We do not sell, distribute or in any other way make your data available for third parties, unless required so under applicable law. We may share personal data with service providers provisioned with management of ICT or similar services. In every case only the persons who needed to process the personal data as part of their role at REACHLaw will have access to your personal data.
YOUR PRIVACY RIGHTS
As data subject you have a set of rights in respect of your privacy. Under the GDPR, you have the following rights:
- information on any processing of your personal data
- access to your personal data;
- data portability of your personal data;
- rectification of your personal data;
- erasure of your personal data;
- restriction of processing of your personal data;
- object to the processing of your personal data; and
- not to be subject to a decision based solely on automated processing.
To exercise your rights please use our Personal Data Request Form, which you can find on our website(s).
This Cookie Notice (hereinafter “Notice”) describes how REACHLaw (hereinafter together “Company”, “we”, “us” or “our”) uses cookies on its website. Please read this Notice carefully to understand how cookies may improve your user experience on our websites, and how you can manage cookies on your device.
We are committed with GDPR Regulation :
What are cookies?
A “cookie” is a piece of information that is stored on your computer, tablet or phone (hereinafter together “device”) when you visit a website. Cookies can help in identifying your device when you visit a website and remember helpful details of your previous visits to improve your user experience. Cookies are used by most websites, including ours.
Cookies cannot be used alone to identify you, but they may be linked directly or indirectly to you when combined with other information. In these cases, cookies may be treated as personal data. We make no effort to identify you personally from cookies. If we do, we make sure that all cookie information is processed as personal data in accordance with applicable data protection laws.
Why do we use cookies
We use cookies to:
- give you a better user experience when you visit our websites,
- allow you to set personal preferences,
- provide you relevant content and information (e.g. targeted adverts),
- ensure the security of our websites, and
- create statistical information about the use of our websites, and to measure the effectiveness of advertising.
What cookies do we use?
We use the following categories of cookies on our websites:
Functional cookies
These cookies are essential in order to enable you to move around the website and use its features. For example, functional cookies are used to remember your login information and language settings. Functional cookies can also be used to make your visit to our websites more tailored.
Performance Cookies
These cookies collect anonymous statistical information on how people use our website. For example, performance cookies may help us understand how users browse or use our website and highlight areas that are used the most.
Targeted advertising cookies
These cookies collect information about your browsing habits. They are used to make advertising more relevant to you and your interests. We may also use these cookies to limit the number of times you see an advert, and to estimate how the advertisements on our websites reach our users. The cookies are usually placed by third party advertising networks to create information about your interests through your online behaviour.
Other third party cookies
We also may have social media cookies on our websites. These cookies allow you to share what you’ve been doing on the website on social media, such as Facebook, Twitter, and LinkedIn. We are not responsible for such cookies. Please read the privacy policies of these third parties carefully.
How long are cookies retained on my device?
The storage time for cookies on your device is divided into two categories.
Session cookies
Session cookies are typically used to remember relevant settings of your browsing session. Session cookies are set per session, meaning that they last until you close your browser. Session cookies are not stored on the hard drive of your device.
Persistent cookies
Persistent cookies may typically be used for targeted advertising and gaining insight on how you use our websites. Persistent cookies are stored on your hard drive in between browser sessions until you delete them or they reach their expiry date. We will not store cookie information from persistent cookies for longer than a maximum of [2] years.
What are my options to manage cookies on my device?
You can accept or refuse cookies through your browser settings. You can also clear your cookie history from your browser settings. Typically, browsers enable various means to disable cookies and manage your cookie history. You can usually find the navigation settings relating to cookies in the “Options”, “Tools” or “Preferences” menus of the browser you use to access our websites.
Accepting cookies is usually the best way to make sure you get the best from our websites. If you refuse cookies, some aspects of our websites site may not work on your device, and you may not be able to access all areas of our websites. For this reason, we recommend that you accept cookies.
I still have some questions about cookies. Who can I contact?
If you wish to know more about the use of cookies on our website, please feel free to contact us at info@reachlaw.fi.
For us to assist you in exercising your rights under Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation) we kindly ask you to provide the following information. By providing this information you will enable us to carry out your request faster and more efficiently. Only the person whose personal data is processed may put forward a request regarding that specific personal data. No person may put forward a request on behalf of another person.
Please note that, any copies of your personal data you request will be compiled and communicated in a digital format.
Should you request the information to be compiled in an analogue format, a fee will be charged based on the administrative costs of carrying out this request.
Should you request the information to be communicated by mail, a fee will be charged based on the administrative costs of carrying out this request.
To download the form please click HERE.