Privacy Statement

Privacy Statement – Customer and Marketing Register

UPDATED 13.9.2021

This Privacy Statement explains how we process personal data in customer and marketing communications.

You have the right to the protection of personal data. We only process personal data on the basis of lawful processing criteria and in a transparent manner. We comply with the Personal Data Act and the provisions and principles of the European Union's General Data Protection Regulation (GDPR).


Abako Oy (company)

Business ID: 1019918-0

Address: Pyhäjärvenkatu 5B, 33200 Tampere


  • Customers (contacts)
  • Potential customers
  • The users of the website
  • The stakeholders relevant to the business (contacts)

Purpose and lawful basis of the processing of personal data

We use personal data for corporate communications and customer care, as well as for marketing and sales. The basis for the processing of personal data is the legitimate interest of the company, customer relationship agreements or the person's consent.

The legitimate interests of the company are business communication and targeted B2B direct marketing of products and services related to the recipient's area of responsibility in the company.

Processors of personal data and disclosure of data

Personal data is processed by those Abako Oy employees whose duties include the above-mentioned processing as well as the company's employees authorized for the technical maintenance and operating support of the customer and marketing register. As a general rule, personal data will not be disclosed outside the EU, but as the data is primarily stored and processed in electronic form, some of our service providers may be located in non-EU countries.

These include Google and Microsoft, among our service providers. In this case, we ensure that the data transfer takes place with adequate safeguards required by law. The preferred options are a transfer to a country with adequate data protection approved by the EU Commission, a transfer to an EU-US Privacy Shield-certified company (recipients in the US) or the use of EU model clauses.

Personal data to be processed

Personally identifiable information:

  • Contact information such as name, email address, phone number
  • Job-related information such as task, area of responsibility
  • Contact and background information of the employer company
  • Event information such as attending events or sales and customer service contacts
  • Possible permits and consents
  • Any other information collected with the consent of the person

Information about the marketing content used by the person (usage information):

  • Information on sending, opening and clicking on marketing messages
  • Information about the use of the company's website, such as time, pages and duration
  • Ordering and downloading information for product cards, brochures and other material
  • Cookies

Analytical data from usage data (derived data):

  • Interests

Retention period of personal data

We will not retain your personal information for longer than is necessary for its purpose or as required by contract or law.

However, the retention periods for personal data may vary depending on the purpose, the legal basis for the processing and the situation. Personal data can also be removed in a situation when the person withdraws their consent or requests information be removed (and we have no lawful basis for processing), the contractual relationship ends (a large part of the personal data of employees) or when the information is out of date or incorrect. Data retention periods can also be governed by legislation (e.g. accounting, taxation, employment contract law) as well as the passage of time limits for bringing legal actions (e.g. action periods). We may also, if necessary, update the information.

You can unsubscribe from our email marketing list yourself via the unsubscribe link in every marketing email we send.

Regular sources of information

  • The company's customer register
  • Information provided by the registrants themselves via the website, e-mail or otherwise
  • Information on contact persons of companies obtained from the decision-maker registers of Suomen Asiakastieto and/or similar services, companies' public websites, social networking services or other similar registers

Registry security principles

Personal information is kept almost exclusively in electronic form and the data is protected in accordance with the general industry standards. Access to personal data is restricted by access rights. We process information as confidential and not disclose it publicly and we do not sell or rent your information for marketing purposes.

Users are bound by professional secrecy.

Your rights

You have the right to request access to personal data about yourself. You have the right to withdraw your consent and object to the processing of your data. You have the right to request the correction, restriction or deletion of data within the limits permitted by law. To make a request, send an email to the business address listed above.

You have the right to lodge a complaint about the processing of personal data with the supervisory authority.

Prohibition of direct marketing

You have the right at any time to prohibit us from using your information for direct marketing. We will never sell or otherwise disclose your personal information to others so that they may target direct marketing to you.

Modification of the Privacy Statement

We develop our business continuously, and therefore reserve the right to change this Privacy Statement notice to our services. Changes can also be based on changes in legislation. We recommend that you read the contents of this Privacy Statement regularly.


Our website uses cookies. We use cookies to collect site visitor statistics and to analyze data. Our goal is to develop the quality and content of our site in a user-oriented manner.

The information collected through cookies can also be used to target communication and marketing and to optimize marketing measures. The visitor cannot be identified by cookies alone. However, the information obtained through cookies may be linked to information that may have been received from the user in other contexts, for example when the user fills in a form on our website. The site only uses mandatory cookies.

A cookie is a small text file that is sent to a user's computer and stored there. Cookies do not harm users' computers or files. It is good to note that cookies may be necessary for the proper functioning of some services.

SThe site uses both session-specific and tracking cookies. Session-specific cookies collected on our site remain in memory while the browser is open, but are destroyed when the browser is closed. Only tracking cookies used to identify new visitors and returners will be retained.

The user's browser tells you if the tracking cookie is already in use. If it is not found, a new cookie is set in the browser. We never pass on user information obtained from tracking cookies to a third party.

Cookies are used to collect e.g. the following information:

  • the user's IP address
  • time
  • pages visited
  • browser type
  • from which web address the user has come to the website
  • from which server the user has come to the website
  • from which domain the user has come to the website

Most browsers allow you to turn off the cookie feature. For example, you can do this by choosing Privacy and Security - Cookies from the Google Chrome Settings menu.