Privacy Policy

 

1. 1. Data Controller:

Hero Payments Oy

Company ID: 3143526-9

 

2. Contact person for register matters:
   [email protected]

 

Name of the register:
Hero24 Service User Register

 

3. 3. Purpose of processing personal data:
      
      User personal data may be processed for the following purposes:

 

• • Managing and developing customer relationships

• • Implementation of the service

• • Verification of customer transactions

• • Development of customer service and business

• • Marketing

• • Analysis and statistics

• • Surveys and market research

• • Other similar purposes.

 

4. 4. Information content of the register:
      
      The register may include the following:

 

• • Basic details of private users, such as name, address, language, age, phone number

• • Basic details of business users, such as company name, address, company ID, contact person name, email address, phone number

• • Billing and collection related information

• • Details related to customer relationship and contracts, like products and services, their start and termination date, service salesperson information, and communication-related information

• • User IDs and other authentication details

• • Permission information and prohibitions, like direct marketing permissions and prohibitions

• • Interests and other information provided by the registered user

• • Event, user analysis, and profiling data

• • Recorded customer service calls

• • For paid and high-security services, a personal identification number for reliable identification

• • Any other data collected with the customer’s consent.

 

5. 5. Regular sources of information:
      
      Information about the user is regularly obtained:

 

• • Directly from the user via phone, email, the internet, or other similar means

• • Through cookies or similar technologies

• • Ratings and comments about the user provided by other users.

 

6. 6. Regular disclosures and transfer of data outside the EU or European Economic Area:
      

 

• • User data may be shared with partners for campaigns, direct marketing, joint ventures, targeted offers, or other similar purposes.

• • User data can be provided to partners for necessary service-related functions, such as handling employer obligations related to payroll, tax payments, drafting of employment contracts, recording of employment history, or other employment-related duties.

• • Data may be transferred outside the EU or EEA in accordance with data protection laws.

 

7. 7. Principles of register protection:
      
      Personal data contained in the register are kept confidential.

Privacy-protected data (e.g., personal ID number) is only shared with partners for whom this information is essential for service implementation. These partners are committed to strict confidentiality concerning the data.

Only the Service Administrator has access to the register with a personal user ID and password.

 

8. 8. Rights of the registered:
      Right to inspect and correct:

The registered person has the right to check the data stored about them in the register. Requests for inspection should be made in writing and signed to the address mentioned in point 1. If there are errors in the registered data, a correction request can be made to the contact person mentioned in point 2.

 

9. 9. Right to refuse:

The registered person has the right to prohibit the data controller from processing their personal data for direct advertising, distance selling, and other direct marketing, as well as for market and opinion research, directory services, and genealogical research. For refusal and correction matters, the registered person can contact customer service via email at [email protected] or by mail to the address mentioned in point 1.