FI

Contact us

Privacy Policy

1. Data Controller

Luoman Ravintolat Oy
Kantomäki 1 as. 12
02410 Kirkkonummi

2. Purpose of Processing Personal Data

Personal data is processed based on a customer relationship.

Personal data is processed only for predefined purposes, which are as follows:

  • Electronic and other customer communication

  • Analysis and statistics

  • Implementation and development of customer service and business operations

3. Data Stored in the Register

The customer register contains information on both companies and individual customers.

Company information

  • Basic company details

  • Business ID

  • Industry information

Company contact details

  • Visiting, mailing, and billing address

  • Phone number

  • Email address

Personal information

  • Name

  • Address details

  • Phone number

  • Email address

  • Billing and payment information

  • Product and order information

  • Customer feedback and contact requests

4. Rights of the Data Subject

You have the following rights. Requests to exercise these rights should be sent to:

Right of access
You have the right to review the personal data we have stored about you. If you notice any inaccuracies or omissions, you may request that we correct or complete the data.

Right to object
You have the right to object to the processing of your personal data at any time if you believe it has been processed unlawfully or without proper justification.

Right to erasure
If you believe that certain data is not necessary for our operations, you may request that we delete such data. We will process your request and either delete the data or explain why it cannot be deleted. If you disagree with our decision, you have the right to file a complaint with the Data Protection Ombudsman. You may also request that we restrict processing while the matter is under review.

Right to lodge a complaint
You have the right to lodge a complaint with the Data Protection Ombudsman if you believe we are processing your personal data in violation of applicable data protection laws (instructions on how to file a complaint are available from the authority).

5. Regular Sources of Information

Customer data is obtained regularly from:

  • The customer directly, through our system, email, phone, forms, mobile applications, or other similar methods

6. Regular Disclosure of Data

We do not sell or rent customer data to third parties. Data may be disclosed to third parties only in the following cases:

  • With the user’s consent

  • For statistical, scientific, or historical research purposes, provided the data has been anonymized

  • In the event of a merger or business reorganization, customer data may be transferred within the new organization

7. Duration of Processing

Customer data is deleted three (3) years after the customer relationship has ended.

8. Processors of Personal Data

Customer data is processed only by company management, customer service personnel, and the accounting firm.
We may also partially outsource data processing to third parties, ensuring through contractual arrangements that data is handled in accordance with current data protection legislation and in an appropriate manner.

9. Transfer of Data Outside the EU

Personal data is not transferred outside the EU or the European Economic Area.

If the servers of any of our service partners are located outside the EU/EEA (e.g., in the United States) for backup purposes, we ensure that they participate in the EU–U.S. Privacy Shield program (https://www.privacyshield.gov/list), which ensures the secure processing of European data in the U.S.

10. Cookies and Browsing Tracking

We may collect information about the user’s device using cookies and similar technologies (such as browser local storage). A cookie is a small text file stored on the user’s device by the browser. Cookies often contain an anonymous, unique identifier that allows us to recognize and count browsers visiting our site.

Third parties may place cookies on the user’s device when visiting our services to collect site statistics. These third parties may include measurement and analytics service providers outside Luoman Ravintolat Oy.

Our services may also contain links to other websites and social media platforms, but we are not responsible for the privacy practices or content of these external sites. We recommend reviewing their respective privacy policies.

11. Privacy Terms for Mobile Applications

Our mobile applications, available for example via Apple App Store, Google Play, or Microsoft Store, are subject to this privacy policy as well as the terms of the respective service provider. Users must also accept the application’s own terms of use.

12. Automated Decision-Making and Profiling

We do not use personal data for automated decision-making or profiling.

13. Principles of Register Protection

The secure processing of your personal data is important to us. We use the following safeguards to ensure the security of your information:

  • Access to the system requires a username and password

  • The system is protected by firewalls and other technical measures

  • Only certain, pre-defined employees of the data controller have access to the stored data

  • Access to the register is protected by user-specific credentials, passwords, and permissions

  • Data is stored in locked and guarded facilities

  • Regular backups of the register are made