Privacy Statement

Prepared: 15.09.2025

1. Data Controller

Solar Simulator Finland Oy
Keskiläntie 5, FI-20660 Littoinen
Business ID: 1045853-3
Email: solar@solarsimulator.com

2. Contact Person for Register Matters

Hannu Suokivi
Email: hannu.suokivi@solarsimulator.com

3. Name of the Register

Customer Relationship Management Register

4. Purpose of Processing Personal Data

The data in the register is used for maintaining, managing, and developing customer relationships, as well as for executing and recording assignments. The information in the customer relationship management register may only be used for the specific purpose defined for it. However, the data may be used for the data controller’s own planning and statistical purposes. The register is properly protected.

5. Responsibilities, Obligations, and Legal Capacity Related to the Register

Being part of the register does not oblige the customer in any way. The customer is responsible for the accuracy of the information they provide.

6. Data Content of the Register

The following information may be collected and processed in the register about the data subjects: name, employer company, position or role in the employer company, email address, phone number, and planned, completed, and canceled assignments.

7. Regular Sources of Data

The data stored in the register is obtained directly from the customer and from documents related to their assignment. The register is updated with information received from the customer and during different phases of the assignments. Personal data may also be collected and updated from public registers such as the Trade Register, paid or free address registers, and other similar sources.

8. Regular Disclosures of Data and Transfer of Data Outside the EU or EEA

Customer register data is not disclosed to third parties unless required by law. Data is not disclosed or transferred outside the European Union or the European Economic Area.

9. Principles of Register Protection

Customer register data is stored in a system that requires a username and password for access. The system is also protected by firewalls and other technical and physical security measures. Only employees of the data controller have the right to access and use the register data stored in the system.

10. Data Subject’s Right to Object

The data subject has the right to prohibit the data controller from processing their personal data for direct advertising, other direct marketing, as well as market and opinion research. The objection must be made in writing.

11. Right of Access by the Data Subject

In accordance with Section 26 of the Personal Data Act, the data subject has the right to inspect the personal data stored about them and receive copies of that data. The inspection request must be sent in writing and signed to the address of the data controller. The identity of the requester must be verified.

12. Data Correction

The data controller will correct, delete, or supplement any personal data in the register that is incorrect, unnecessary, incomplete, or outdated for the purposes of processing, either on their own initiative or at the request of the data subject. The data subject must contact the person responsible for register matters to request corrections.