Privacy Policy

Welco­me, and thank you for your inte­rest in Huu­bia and Vision­bay Solu­tions services.

This Pri­vacy Policy desc­ri­bes the infor­ma­tion that we gat­her on or through the Huu­bia Ser­vice, Huu­bia web site and Vision­bay Solu­tions web site or other sources, how we use and disclo­se such infor­ma­tion, and the steps we take to pro­tect such infor­ma­tion. By visi­ting our web sites, or by purc­ha­sing or using the Ser­vice, you con­sent to the pri­vacy prac­tices desc­ri­bed in this Pri­vacy Policy.

 

Definitions

Account: An account enabling a Client and/or User to access and use the Ser­vice. Account stands for one Client ins­tance of the Service.

Client: means a regis­te­red Cus­to­mer of Huu­bia® Service

Client Data: All data, con­tent, and infor­ma­tion owned, held, used or crea­ted by or on behalf of the Client that is sto­red using, or input into, the Service.

Cus­to­mer: natu­ral or legal per­son who has accep­ted the Terms of ser­vice and/or and who repre­sents regis­te­red orga­niza­tion, com­pa­ny or enti­ty or “con­su­mer“– a natu­ral per­son not repre­sen­ting any regis­te­red entity/company/organization who has accep­ted the­se terms. “Con­su­mers” are only allowed to use the Trial ver­sion of Huu­bia self-service.

GDPR: Euro­pean Union’s Gene­ral Data Pro­tec­tion Regulation

Per­so­nal Data: means infor­ma­tion that speci­fical­ly iden­ti­fies an indi­vi­dual or that is lin­ked to infor­ma­tion that iden­ti­fies a speci­fic individual.

Plat­form: The plat­form mana­ged by the Pro­vi­der and used by the Pro­vi­der to pro­vi­de the Ser­vice, inclu­ding the applica­tion and data­ba­se softwa­re for the Ser­vice, the sys­tem and ser­ver softwa­re used to pro­vi­de the Ser­vice, and the com­pu­ter hardwa­re on which that applica­tion, data­ba­se, sys­tem and ser­ver softwa­re is installed.

Policy: means this Pri­vacy Policy document

Pro­vi­der: Vision­bay Solu­tions Oy busi­ness iden­ti­ty code FI26322227 (2632222-7), loca­ted at Fin­land also later as “We”, “Us” or “Vision­bay Solutions”.

Public Area: means the area of the Site that can be acces­sed both by Users and Visi­tors, wit­hout nee­ding to login into Service.

Restric­ted Area: means the area of the Ser­vice that can be acces­sed only by Users, and whe­re access requi­res the use of per­so­nal login ID and a password.

Ser­vice: Softwa­re (Huu­bia ®) made avai­lable via www.gohuubia.com or from its sub domains or mobi­le applica­tion or, Plat­form and ser­vice and/or pro­ducts avai­lable through the Plat­form and/or Site. Com­mercial ver­sion avai­lable only for regis­te­red entities/companies/organizations.

Site: the com­pi­la­tion of all web docu­ments (inclu­ding ima­ges, php and html files) made avai­lable via www.huubia.com, www.visionbaysolutions.com and www.visionbay.fi or from the sub domains under top domains or domains with iden­tical names under other top domains and owned by Provider.

Terms of Ser­vice: means the Huu­bia self-ser­vice terms of ser­vice or other ser­vice agree­ment or agree­ments between the Cus­to­mer and Provider.

User: means an emplo­yee, agent, or repre­sen­ta­ti­ve of a Client, who pri­ma­ri­ly uses the restric­ted areas of the Service

Visi­tor: means an indi­vi­dual who uses the Public Area.

 

The Information We Collect on the Site:

i) User-pro­vi­ded Infor­ma­tion. When you con­tact Pro­vi­der using con­tact of forms on the Site as Visi­tor, you may pro­vi­de, and we may col­lect Per­so­nal Data. Examples of Per­so­nal Data inclu­de name, email address, mai­ling address, mobi­le pho­ne num­ber. Per­so­nal Data also inclu­des other infor­ma­tion, such as geo­grap­hic area or pre­fe­rences, when any such infor­ma­tion is lin­ked to infor­ma­tion that iden­ti­fies a speci­fic individual.

ii) “Auto­ma­tical­ly Col­lec­ted” Infor­ma­tion. When a Visi­tor visits the Site, we may auto­ma­tical­ly record cer­tain infor­ma­tion from the Visitor’s device by using various types of tech­no­lo­gy, inclu­ding coo­kies. This “auto­ma­tical­ly col­lec­ted” infor­ma­tion may inclu­de IP address or other device address or ID, web brow­ser and/or device type, the web pages or sites visi­ted just befo­re or just after visi­ting the Site, the pages or other con­tent the Visi­tor views or inte­racts with on the Site, and the dates and times of the visit or access.

 

The Information We Collect on the Service:

i) User-pro­vi­ded Infor­ma­tion. When you regis­ter or use the Ser­vice, as a User, you may pro­vi­de, and we may col­lect Per­so­nal Data. Examples of Per­so­nal Data inclu­de name, email address, mai­ling address, mobi­le pho­ne num­ber. Per­so­nal Data also inclu­des other infor­ma­tion, such as geo­grap­hic area or pre­fe­rences, when any such infor­ma­tion is lin­ked to infor­ma­tion that iden­ti­fies a speci­fic indi­vi­dual. You may pro­vi­de us with Per­so­nal Data in various ways on the Ser­vice. For example, when you regis­ter for an Account, use the Ser­vice, post Client Data, inte­ract with other users of the Ser­vice through com­mu­nica­tion or mes­sa­ging capa­bi­li­ties, or send us cus­to­mer ser­vice -rela­ted requests.

ii) Infor­ma­tion Col­lec­ted by Clients. A Client or User may sto­re or upload into the Ser­vice Client Data. Pro­vi­der has no direct rela­tions­hip with the indi­vi­duals who­se Per­so­nal Data it hosts as part of Client Data. Each Client is res­pon­sible for pro­vi­ding notice to its cus­to­mers and third par­ty per­sons concer­ning the pur­po­se for which Client col­lects their Per­so­nal Data and how this Per­so­nal Data is proces­sed in or through the Ser­vice as part of Client Data. If Cus­to­mer is using Provider’s other ser­vices which inclu­des proces­sing of Per­so­nal Data on behalf of Cus­to­mer, a sepa­ra­te agree­ment and docu­men­ta­tion has been made between Cus­to­mer and Pro­vi­der in terms of the GDPR.

iii) “Auto­ma­tical­ly Col­lec­ted” Infor­ma­tion. When a User uses the Ser­vice, we may auto­ma­tical­ly record cer­tain infor­ma­tion from the User’s device by using various types of tech­no­lo­gy, inclu­ding coo­kies. This “auto­ma­tical­ly col­lec­ted” infor­ma­tion may inclu­de IP address or other device address or ID, web brow­ser and/or device type, the pages or other con­tent the User views or inte­racts with on the Ser­vice, and the dates and times of the access or use of the Ser­vice. We also moni­tor the acti­vi­ties on Account in order to impro­ve and main­tain the Ser­vice and as a base for the Ser­vice bil­ling principle. We also col­lect infor­ma­tion which reports and data visua­liza­tions and outco­mes of reports and visua­liza­tions User viewed in the Service.

 

The Information We Collect from Other Sources:

i) Other Sources: We may obtain infor­ma­tion, inclu­ding Per­so­nal Data, from third par­ties and sources other than the Ser­vice or Site, such as our part­ners, adver­ti­sers, and inte­gra­ted ser­vices. If we com­bi­ne or associa­te infor­ma­tion from other sources with Per­so­nal Data that we col­lect through the Ser­vice or Site, we will treat the com­bi­ned infor­ma­tion as Per­so­nal Data in accor­dance with this Policy and GDPR.

ii) Cer­tain third par­ties, inclu­ding ana­ly­tics com­pa­nies, adver­ti­sers and ad networks, may also auto­ma­tical­ly col­lect infor­ma­tion about you through our Site, using coo­kies, Web beacons, and device iden­ti­fiers, inclu­ding per­so­nal­ly iden­ti­fiable infor­ma­tion about your onli­ne acti­vi­ties over time and across dif­fe­rent web­si­tes, devices, onli­ne chan­nels and applica­tions when you use our Site.
You agree that any infor­ma­tion we col­lect and process is rele­vant and not exces­si­ve in rela­tion to the pur­po­ses for which the infor­ma­tion is col­lec­ted and/or furt­her processed.

 

How We Use the Information We Collect on the Site

i) Com­mu­nica­tio­nal pur­po­ses: We may use a Visitor’s email address or phone/mobile pho­ne num­ber – other than Client Data – to con­tact that Visi­tor (i) for admi­ni­stra­ti­ve pur­po­ses such as cus­to­mer ser­vice, to address intel­lec­tual pro­per­ty infrin­ge­ment any unlaw­ful, ille­gal, frau­du­lent or harm­ful pur­po­se or acti­vi­ty on the Account or (ii) with upda­tes on pro­mo­tions and events, rela­ting to pro­ducts and ser­vices offe­red by us and by third par­ties we work with.

ii) We use Google Ana­ly­tics to mea­su­re and eva­lua­te access to and traf­fic on the Site, and crea­te user navi­ga­tion reports for our Site admi­ni­stra­tors. Google ope­ra­tes inde­pen­dent­ly from us and has its own pri­vacy policy, which we strongly sug­gest you review. Google may use the infor­ma­tion col­lec­ted through Google Ana­ly­tics to eva­lua­te Visi­tors’ acti­vi­ty on our Site. For more infor­ma­tion, see Google Ana­ly­tics Pri­vacy and Data Sha­ring. We do not use any of this infor­ma­tion to iden­ti­fy Visitors.

iii) We take mea­su­res to pro­tect the tech­nical infor­ma­tion col­lec­ted by our use of Google Ana­ly­tics. The data col­lec­ted will only be used on a need to know basis to resol­ve tech­nical issues, admi­nis­ter the Site and iden­ti­fy visi­tor pre­fe­rences; but in this case, the data will be in non-iden­ti­fiable form. We do not use any of this infor­ma­tion to iden­ti­fy Visitors.

 

How We Use the Information We Collect on the Service

We use the infor­ma­tion that we col­lect in a varie­ty of ways in pro­vi­ding the Ser­vice, inclu­ding the following:

i) Ope­ra­tio­nal pur­po­ses: We use the infor­ma­tion – other than Client Data – to ope­ra­te, main­tain, enhance and pro­vi­de all fea­tu­res of the Ser­vice, to pro­vi­de the ser­vices and infor­ma­tion that you request, to res­pond to ques­tions and com­ments and to pro­vi­de sup­port to Users of the Ser­vice. We process Client Data sole­ly in accor­dance with the Ser­vice and the rela­ted Terms of Service.

ii) Bil­ling pur­po­ses: We use the infor­ma­tion rela­ting to User’s acti­vi­ty wit­hin the Ser­vice as a base for our bil­ling principle. The char­ges rela­ting to the usa­ge of the Softwa­re are based on the count of Users, ses­sions, actual usa­ge of the Softwa­re, reser­ved and used capaci­ty and acti­va­ted functionalities.

iii) Impro­ve­ments: We use the infor­ma­tion – other than Client Data – to moni­tor and ana­lyze the usa­ge trends and pre­fe­rences, to impro­ve the Ser­vice and to deve­lop new pro­ducts, fea­tu­res and functionalities.

iv) Com­mu­nica­tio­nal pur­po­ses: We may use User’s email address or phone/mobile pho­ne num­ber – other than Client Data – to con­tact that User (i) for admi­ni­stra­ti­ve pur­po­ses such as cus­to­mer ser­vice, to address intel­lec­tual pro­per­ty infrin­ge­ment any unlaw­ful, ille­gal, frau­du­lent or harm­ful pur­po­se or acti­vi­ty on the Account or (ii) with upda­tes on pro­mo­tions and events, rela­ting to pro­ducts and ser­vices offe­red by us and by third par­ties we work with.

v) We use auto­ma­tical­ly col­lec­ted on the Ser­vice through coo­kies to: i) enable our Ser­vice work. The Ser­vice uses coo­kies to sto­re Users ses­sion iden­ti­fier (token), ii) per­so­na­lize the Ser­vice, such as remem­be­ring a User’s log-in infor­ma­tion to the Restric­ted Area so that User doesn’t have to re-enter all of the login details when log­ging into Ser­vice again iii) iden­ti­fying User’s web brow­sers to impro­ve the secu­ri­ty of the Service.

vi) Audi­ting the usa­ge of the Ser­vice by User when Cus­to­mer User acti­vi­ty audit: We use the infor­ma­tion to crea­te reports for Cus­to­mer of the User acti­vi­ties in the Ser­vice when Cus­to­mer has legi­ti­ma­te rea­son to audit User acti­vi­ties. For example when a secu­ri­ty breach has occur­red by using User’s user account and Cus­to­mer needs to know the infor­ma­tion of viewed data in the Ser­vice by using the user account, the Pro­vi­der will pro­vi­de Users usa­ge reports and con­tent of User’s viewed reports or data visua­liza­tions to the Cus­to­mer from the time period the secu­ri­ty breach occurred.

 

How We Use the Information We Collect on Other Sources

i) Com­mu­nica­tio­nal & com­mercial pur­po­ses: We may use email address or phone/mobile pho­ne num­ber – other than Client Data – to i) con­tact per­son to com­mu­nica­te with upda­tes on pro­mo­tions and events, rela­ting to pro­ducts and ser­vices offe­red by us and by third par­ties we work with ii) Set-up mee­tings with poten­tial cus­to­mers or partners.

 

Disclosing Information

We will keep Client Data strict­ly con­fi­den­tial and will not disclo­se Client data to any third par­ties. All Client Data you upload into the Ser­vice will be sto­red in data­ba­ses loca­ted in Fin­land (wit­hin the EU) .

We will not disclo­se Per­so­nal Data col­lec­ted from the Ser­vice to any third par­ty besi­des the mem­bers of our cor­po­ra­te group, except when, to the extent, and to per­sons (i) express­ly allowed by the Cus­to­mer or Visi­tor or User concer­ned, (ii) requi­red by law, or (iii) neces­sa­ry in order to per­form our obli­ga­tions under the Agree­ment, or its sta­tu­to­ry obli­ga­tions, or to exerci­se its legal rights, or defend against claims or other process.

We will not disclo­se Per­so­nal Data col­lec­ted from Site or Other Sources to any third par­ty besi­des the mem­bers of our cor­po­ra­te group, except when, to the extent, and to per­sons (i) express­ly allowed by the Cus­to­mer or Visi­tor or User concer­ned, (ii) requi­red by law, or (iii) neces­sa­ry in order to per­form our obli­ga­tions under the Agree­ment, or its sta­tu­to­ry obli­ga­tions, or to exerci­se its legal rights, or defend against claims or other process, or iv) neces­sa­ry part­ner emplo­yees when Pro­vi­der is using a part­ner for com­mercial pur­po­ses, example set­ting up new mee­tings with poten­tial cus­to­mers.
All Per­so­nal data we gat­her and sto­re will be sto­red in data­ba­ses loca­ted in Fin­land (wit­hin the EU).

 

Security in Huubia Service

We fol­low gene­ral­ly accep­ted industry stan­dards to pro­tect the infor­ma­tion sub­mit­ted to us, both during trans­mis­sion and once we recei­ve it. We main­tain appropria­te admi­ni­stra­ti­ve, tech­nical and phy­sical safe­guards to pro­tect Per­so­nal Data against acci­den­tal or unlaw­ful destruc­tion, acci­den­tal loss, unaut­ho­rized alte­ra­tion, unaut­ho­rized disclo­su­re or access, misuse, and any other unlaw­ful form of proces­sing of the Per­so­nal Data in our pos­ses­sion. This inclu­des, for example, firewalls, password pro­tec­tion and other access and aut­hen­tica­tion cont­rols. We use SSL tech­no­lo­gy to enc­rypt data during trans­mis­sion through public inter­net, and we also employ applica­tion-layer secu­ri­ty fea­tu­res to furt­her secu­re your data.

Howe­ver, no met­hod of trans­mis­sion over the Inter­net, or met­hod of elect­ro­nic sto­ra­ge, is 100% secu­re. We can­not ensu­re or war­rant the secu­ri­ty of any infor­ma­tion you trans­mit to us or sto­re on the Ser­vice, and you do so at your own risk. We also can­not gua­ran­tee that such infor­ma­tion may not be acces­sed, disclo­sed, alte­red, or destro­yed by breach of any of our phy­sical, tech­nical, or mana­ge­rial safe­guards. If you belie­ve your Per­so­nal Data has been com­pro­mi­sed, plea­se con­tact us as set forth in the “How to Con­tact Us” section.

If we learn of a secu­ri­ty sys­tems breach, we will inform you and the aut­ho­ri­ties of the occur­rence of the breach in accor­dance with applicable law.

 

Jurisdiction

Any dis­pu­te that may ari­se between Cus­to­mer and Pro­vi­der or between and User or Visi­tor and Pro­vi­der in con­nec­tion with this Policy or Provider’s data proces­sing acti­vi­ties shall be sub­ject to the juris­dic­tion speci­fied in the res­pec­ti­ve Provider’s Terms of Service.

 

Access, Correction, Deletion in Huubia Service Personal Data

We res­pect your pri­vacy rights and pro­vi­de you with rea­so­nable access to the Per­so­nal Data that you may have pro­vi­ded through your use of the Ser­vice. If you wish to access or amend any other Per­so­nal Data we hold about you, or to request that we dele­te or trans­fer any infor­ma­tion about you, you may con­tact us as set forth in the “How to Con­tact Us” section.

You may upda­te and/or cor­rect your account infor­ma­tion in the Ser­vice and pre­fe­rences at any time by acces­sing your my set­tings page on the Ser­vice. Plea­se note that whi­le any chan­ges you make will be reflec­ted in acti­ve user data­ba­ses ins­tant­ly or wit­hin a rea­so­nable period of time, we may retain all infor­ma­tion you sub­mit for bac­kups, arc­hi­ving, pre­ven­tion of fraud and abuse, ana­ly­tics, satis­fac­tion of legal obli­ga­tions, or whe­re we otherwi­se rea­so­nably belie­ve that we have a legi­ti­ma­te rea­son to do so.

Your Account admi­ni­stra­tor can mark User’s Account as a dele­ted user. In this sce­na­rio user account is not ful­ly dele­ted from the Ser­vice, but it is mar­ked as dele­ted and you can’t use the Ser­vice with this user account any­mo­re. If you wish to ful­ly dele­te your Per­so­nal Data from the Ser­vice plea­se con­tact us as set forth in the “How to Con­tact Us” sec­tion. In this sce­na­rio we will ask your Account’s admi­ni­stra­tor for furt­her instruc­tions. This situa­tion may pre­vent Us pro­vi­ding you the Service.

You may decli­ne to sha­re cer­tain Per­so­nal Data with us, in which case we may not be able to pro­vi­de to you our Service.

At any time, you may object to the proces­sing of your Per­so­nal Data, on legi­ti­ma­te grounds, except if otherwi­se per­mit­ted by applicable law. If you belie­ve your right to pri­vacy gran­ted by applicable data pro­tec­tion laws has been infrin­ged upon, plea­se con­tact us as set forth in the “How to Con­tact Us” sec­tion. You also have a right to lod­ge a complaint with data pro­tec­tion authorities.

This pro­vi­sion does not apply to Per­so­nal Data that is part of Client Data. In this case, the mana­ge­ment of the Client Data is sub­ject to the Customer’s own Pri­vacy Policy, and any request for access, cor­rec­tion or dele­tion should be made to the Cus­to­mer res­pon­sible for the uploa­ding and sto­ra­ge of such data into the Service.

 

Access, Correction, Deletion in Site and Other Sources Personal Data

If you wish to access or amend any other Per­so­nal Data we hold about you, or to request that we cor­rect, dele­te or trans­fer infor­ma­tion about you, you may con­tact us as set forth in the “How to Con­tact Us” section.

 

Opting out from Commercial Communications

If you recei­ve com­mercial emails from us, you may unsubsc­ri­be at any time by fol­lowing the instruc­tions con­tai­ned wit­hin the email or by sen­ding an email to the address pro­vi­ded in the “How to Con­tact Us” section.

 

Data Retention

Per­so­nal Data is kept in the user regis­ter of the Huu­bia Ser­vice when Cus­to­mer has acti­ve Account. We will retain and use infor­ma­tion as neces­sa­ry to comply with our legal obli­ga­tions, resol­ve dis­pu­tes, and enforce our agree­ments as follows:

the con­tents of clo­sed Accounts are dele­ted wit­hin 14 days of the date of closure;

bac­kups are kept for 30 days;

bil­ling infor­ma­tion is retai­ned for a period of 7 years as of their pro­vi­sion to Pro­vi­der in accor­dance with the Fin­nish accoun­ting and taxa­tion laws.

 

Data Controller and Data Processor

Pro­vi­der does not own, cont­rol or direct­ly use of any of the Client Data sto­red or proces­sed by a Client or User via the Ser­vice. Only the Client or Users are entit­led to access, ret­rie­ve and direct­ly use of such Client Data unless Client or User has speci­fical­ly asked the Pro­vi­der to process Client Data or the­re is an agree­ment of ser­vices between the Cus­to­mer and Pro­vi­der which requi­res proces­sing of the Client Data by the Pro­vi­der. Under the­se circums­tances Pro­vi­der will only process the Client Data by the instruc­tions given or agreed by the Client.

Because Pro­vi­der does not col­lect or deter­mi­ne the use of any Per­so­nal Data con­tai­ned in the Client Data and because it does not deter­mi­ne the pur­po­ses for which such Per­so­nal Data is col­lec­ted, the means of col­lec­ting such Per­so­nal Data, or the use of such Per­so­nal Data, Pro­vi­der is not acting in the capaci­ty of data cont­rol­ler in terms of the GDPR and does not have the associa­ted res­pon­si­bi­li­ties under the GDPR. Pro­vi­der should be con­si­de­red only as a proces­sor on behalf of its Clients and Users as to any Client Data con­tai­ning Per­so­nal Data that is sub­ject to the requi­re­ments of the GDPR.

The Client or the User is the data cont­rol­ler under the regu­la­tion for any Client Data con­tai­ning Per­so­nal Data, mea­ning that such par­ty cont­rols the man­ner such Per­so­nal Data is col­lec­ted and used as well as the deter­mi­na­tion of the pur­po­ses and means of the proces­sing of such Per­so­nal Data.

Pro­vi­der is not res­pon­sible for the con­tent of the Per­so­nal Data con­tai­ned in the Client Data or other infor­ma­tion sto­red on its ser­vers (or its subcont­rac­tors’ ser­vers) nor is Pro­vi­der res­pon­sible for the man­ner in which the Client or User col­lects, hand­les disclo­su­re, distri­bu­tes or otherwi­se proces­ses such information.

 

Changes To This Privacy Policy

This Pri­vacy Policy is effec­ti­ve as of (25th May 2018) and will remain in effect except with res­pect to any chan­ges in its pro­vi­sions in the futu­re, which will be in effect imme­dia­te­ly after being pos­ted on this page.

We reser­ve the right to upda­te or chan­ge our Pri­vacy Policy at any time and you should check this Pri­vacy Policy perio­dical­ly. Your con­ti­nued use of the Ser­vice after we post any modi­fica­tions to the Pri­vacy Policy on this page will cons­ti­tu­te your ack­now­ledg­ment of the modi­fica­tions and your con­sent to abi­de and be bound by the modi­fied Pri­vacy Policy.
If we make any mate­rial chan­ges to this Pri­vacy Policy, we will noti­fy you eit­her through the email address you have pro­vi­ded us, or by placing a pro­mi­nent notice on our Site or Service.

 

How to Contact Us

Plea­se con­tact us with any ques­tions or com­ments about this Policy, your Per­so­nal Data, our use and disclo­su­re prac­tices, or your con­sent choices by email at info@visionbay.fi.

If you have any concerns or complaints about this Policy or your Per­so­nal Data, you may con­tact Vision­bay Solu­tions at info@visionbay.fi

Mikonkatu 7, 00100 Helsinki

info@staria.com

Tietosuojaseloste

Seuraa meitä

Linkedin

Simo Vesterinen

Head of Development

+358 40 637 3314
simo.vesterinen@staria.com

Linkedin

Noora Vesterinen

Head of Service Delivery

+358 40 676 6030
noora.vesterinen@staria.com

Linkedin

Lauri Vornanen

Senior Sales Executive

+358 40 770 9219
lauri.vornanen@staria.com

Linkedin