Installery - Your Partner in Industrial Maintenance

Services

This is Enginery Finland Oy's registration and privacy statement in accordance with the EU General Data Protection Regulation (GDPR). Prepared on 8.12.2025. Last modified on 8.12.2025.

1. REGISTRAR

Installery Group Ltd

Läkkisepäntie 23, 00100 Helsinki

Contact information for matters concerning the register:

Installery Group Oy / Juha Ryödi

Läkkisepäntie 23, 00100 Helsinki

+ 358 40 487 8179

privacy@installery.fi

2. CONTACT FORM REGISTER FOR THE CAREER SITE

The register includes people who have submitted their information through the contact form on the installery.fi website.

3. BASIS AND PURPOSE FOR KEEPING THE REGISTER

In accordance with the EU General Data Protection Regulation, the legal basis for processing personal data is the contact information voluntarily provided by the individual through our website. Personal data is processed only for predefined purposes, which are to communicate our employer image and career services, and to cooperate with customers.

The information is not used for automated decision-making or profiling.

4. DATA CONTENT OF THE REGISTER

The information stored in the register includes:

name

e-mail address

phone number (not required)

LinkedIn ID (not required)

IP address of the network connection

The information stored in the register is retained for a maximum of 6 months or as long as the recruitment, offer or negotiation process is ongoing.

The IP addresses of website visitors and cookies necessary for the operation of the service are processed on the basis of legitimate interest, including for data security purposes and for the purpose of collecting statistical data on website visitors in cases where they can be considered personal data. If necessary, consent is requested separately for third-party cookies.

5. REGULAR INFORMATION SOURCES

Personal data is routinely obtained from the individual themselves when they submit a contact form via the company's website.

6. ROUTINE DATA TRANSFERS AND DATA TRANSFER OUTSIDE THE EU OR EEA

The information is not routinely disclosed to other parties. Information may be published to the extent that this has been mutually agreed upon with the person in question.

In some cases, data may be transferred by the controller to our customers outside the EU or EEA for the purpose of promoting recruitment and customer relationships. Data will not be transferred to the United States without the express consent of the data subjects.

7. PRINCIPLES OF REGISTER PROTECTION

The register is handled with care and accuracy. The information processed by information systems is protected appropriately. If Internet servers are used to store register data, the information security of their hardware is appropriately ensured.

The controller ensures that stored personal data, server access rights and other information critical to the security of personal data are always handled confidentially and only by employees whose job description requires it. In our company, only the controller and their employees process personal data.

8. RIGHT OF INSPECTION AND RIGHT TO REQUEST CORRECTION OF INFORMATION

The person in the register has the right to check his/her data stored in the register and to demand correction of any incorrect data or completion of incomplete data. If the person wishes, he/she may check the data stored about him/her and demand correction by sending a written request to the controller. The controller may, if necessary, ask the person making the request to prove his/her identity. The controller will respond to the customer within the time period stipulated in the EU Data Protection Regulation (generally within one month).

9. OTHER RIGHTS RELATED TO THE PROCESSING OF PERSONAL DATA

A person in the register has the “right to be forgotten”, i.e. to request that personal data concerning him or her be deleted from the register. Data subjects also have other rights under the EU General Data Protection Regulation, such as the restriction of the processing of personal data in certain situations. Requests must be sent in writing to the controller. The controller may, if necessary, ask the person making the request to prove their identity. The controller will respond to the customer within the time period set out in the EU Data Protection Regulation (generally within one month).