1 DATA CONTROLLER
Safartica Oy (Business ID: 1762306-0)
Koskikatu 9, 96200 Rovaniemi, FINLAND
+358 16 311 485 / safartica@safartica.com
2 CONTACT DETAILS IN MATTERS RELATED TO DATA REGISTERS
Safartica Oy
Koskikatu 9, 96200 Rovaniemi, FINLAND
safartica@safartica.com
3 NAME OF REGISTER
Customer-, partnership and marketing register.
4 PURPOSE OF PROCESSING PERSONAL DATA
The grounds for processing personal data are based on contractual customer or partner relationship, or explicit consent of the customer. The main purpose for the register is to manage personal data required for cooperation between Safartica Oy and its customers and partners and to ensure smoothness of customer service and purchased services and goods.
Personal data are handled for the following purposes:
As the data controller Safartica Oy takes care, that data subject’s benefits and rights are carefully assessed. Personal data is collected according to privacy policy and they are not handled, changed or moved in different way as mentioned in this privacy policy.
5 CONTENT OF REGISTER
The register may include the following details:
Safartica Oy requests adults to inform their underaged children’s ages to secure a safe and smooth customer service. In addition, customers are requested to inform possible allergies, special diets and medical information in cases when they can substantially affect the ordered service’s safety and smoothness.
Technically collected information of the use of network can be IP-address and country or city of location, use and timing of network, information of used device, type of operating system and software version, browser type and language settings, interaction of customer service in different service channels and external sites from where the user has arrived and where the user transfers from Safartica Ltd.s network. Safartica Ltd. may collect information of the use of services with cookies.
6 REGULAR DESTINATIONS OF DISCLOSED DATA
Personal data is disclosed to suppliers and partners of Safartica Oy only when the owner of personal data (data subject) is participating a purchased or offered service which is organized partially or wholly by supplier or partner of Safartica Oy. In isolated cases, Safartica Oy discloses customer’s or stakeholder’s date to the addressed party, if the data subject requests Safartica Oy to do so or if the competent authority demands Safartica Oy to disclose separately identified information from the register of Safartica Oy based on current legislation.
Our website uses external service providers for sales, marketing and customer service. These service providers are booking engine Bókun® and accommodation booking engine Profitroom.
7 TRANSFER OF PERSONAL DATA TO THIRD COUNTRIES OR INTERNATIONAL ORGANIZATIONS
The data are not transferred to third countries or international organizations. In isolated cases, Safartica Oy discloses data to third parties or international organizations, if a customer or stakeholder has given a mandate for this purpose and Safartica Oy together with Data Protection Officer and Finnish Data Protection Authority has concluded an assessment of risks and quality system of the third country’s actual security level.
8 PRINCIPLES OF SECURING REGISTER
Safartica Oy protects personal data carefully through their whole life cycle by using proper means of privacy policy and data security. Data controller collects and processes personal data that is necessary for its operations.
Access to digital material has been restricted with personal usernames and passwords, and in addition, restricted according to each employees’ job description and its demands. Documents are stored in locked facilities, access to personal data has been restricted and personnel has a duty of secrecy. System suppliers process personal data in data secure server facilities. Data are disposed of according to data security guidelines.
9 RIGHT TO ACCESS
The data subject has the right to know what personal data is saved in the register. In addition, after an accurate enough inspection request, the data subject has the right to know the information of himself and information of possible recordings. Inspection request should be assigned in written and signed form to address informed in section 2.
10 RIGHT TO RECTIFICATION AND ERASURE
As a data controller, Safartica Oy is entitled to fix incorrect data in the register pointed out by the data subject. Data controller has obligation to check the relevance and timeliness of the data by self-acting. The data subject may demand to remove all data concerning himself from the register. Data Protection Officer leads the processing operation.
11 OTHER RIGHTS PERTAINING TO PERSONAL DATA PROCESSING
The data subject has the right to demand to restrict the process personal data. Data subject also has the right to receive personal data of himself that he has originally sent to Safartica Oy, in organized, commonly used and machine-readable form and has the right to transfer that data to other data controller. In addition, the data subject has the right to resist data processing, automatic decision making, and profiling.
12 ERASURE OF DATA AND TIME OF STORAGE
Personal data are stored in the register at least one year after the contractual obligations have finished unless otherwise agreed or required by law. Safartica Oy removes customer personal data also when requested separately except in cases when the law says differently, or the competent authority has initiated a process which requires Safartica Oy to retain data or other party has applied from Finnish court a safety protection decision for the data.
13 CHANGES TO PRIVACY POLICY
Safartica Oy may make changes to this privacy policy. To ensure that the users are aware of how their personal data is processed, the updated privacy policy is available in our website.
Last updated 1.9.2025
