GDPR Compliance
Effective Date: September 1, 2024
At The Sparrow Works, we are committed to ensuring that your personal data is protected and processed in accordance with the General Data Protection Regulation (GDPR). This page outlines how we collect, use, and safeguard your personal information, and what rights you have as a user of our services.
1. Data Controller
The data controller responsible for your personal data is The Sparrow Works, located at Hannikaisenkatu 29 B 44, Jyväskylä, Finland - 40100
2. Personal Data We Collect
We collect and process personal data when you:
-
Contact us via our website (name, email, phone number, company details).
-
Subscribe to our newsletter or request information about our services.
-
Engage with our services, including Google Ads, SEO, and Analytics.
3. Purpose of Data Processing
We process your data for the following reasons:
-
To provide and improve our services, including running Google Ads, SEO, and Analytics campaigns.
-
To communicate with you and respond to your inquiries.
-
To comply with legal obligations and prevent fraudulent activity.
-
To offer personalised marketing and service updates (only if you have opted in).
4. Legal Basis for Data Processing
We process personal data based on the following legal grounds:
-
Consent: If you have given explicit consent to receive marketing communications or newsletters.
-
Contractual Obligation: When data processing is necessary for the performance of a contract or to take steps before entering into a contract.
-
Legitimate Interest: For improving our services and understanding customer needs, provided it doesn’t override your rights.
5. Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected or as required by law. When no longer needed, data will be securely deleted.
6. Your Rights Under GDPR
You have the following rights regarding your personal data:
-
Right to Access: You can request a copy of the personal data we hold about you.
-
Right to Rectification: You can request corrections to any inaccurate or incomplete data.
-
Right to Erasure (Right to be Forgotten): You can request that we delete your personal data.
-
Right to Restrict Processing: You can request limitations on how we process your data.
-
Right to Data Portability: You can request a copy of your data in a commonly used format.
-
Right to Object: You can object to the processing of your personal data for direct marketing purposes.
7. Data Sharing and Transfers
We do not sell or share your personal data with third parties, except in the following circumstances:
-
With trusted service providers who assist in delivering our services (hosting, analytics).
-
When required by law or to prevent fraudulent activity. If data is transferred outside the European Economic Area (EEA), we ensure that adequate safeguards are in place.
8. Security of Your Data
We take the security of your personal data seriously and implement appropriate technical and organisational measures to protect it against unauthorised access, loss, or misuse. However, no online transmission is entirely secure, and we cannot guarantee absolute security.
9. Cookies and Tracking Technologies
We use cookies and other tracking technologies to enhance your experience on our website. You can manage your cookie preferences through your browser settings. For more details, please review our [Cookie Policy].
10. Changes to This Policy
We may update this GDPR policy periodically to reflect changes in legal requirements or our practices. Any updates will be posted on this page, and we encourage you to review it regularly.
11. Contact Us
For any questions or concerns regarding GDPR compliance, or if you wish to exercise your rights, please contact us at:
The Sparrow Works
Email: urvi@thesparroworks.com
Phone: +358 44 242 9795