Data Protection

Data Protection

Privacy is a fundamental right, and it starts with Data Protection. For this reason, trust, security and transparency are the core values at the heart of Citrus Solutions’ business. The General Data Protection Regulation, or GDPR, effective across the European Union on May 25, 2018, applies to the personal data processing, whether partially or fully automated.

Our customers, partners, and anyone within our network is entitled to know how to best deal with personal information, when interacting in different contexts, within digital and physical service environments.

In this notice we inform you, how we handle personal information in our operations.

Purpose, processing, legal bases and sources of information

We serve corporate and institutional customers. For this reason, we mainly deal in the capacity of the data controller, with personal information obtained through co-operation, or through the customer relationship management involving an organization or community. Therefore,  those registered to Citrus services consist of our employees and our corporate or potential business customers, or our website users. We receive your information, as a rule, either directly from the company you are working on, or from yourself.  

In our operations, we deal with personal information for the following processing purposes and on the following criteria:
1. Managing our customer relationship based on a contract.
2. Managing our customer relationship for delivering the service and orders, based on a contract.
3. Managing our customer relationship, developing service experience, and to market our services in the legitimate interest of the data controller or based on your consent.

Data transfer, disclosure, storage and profiling

Personal Data Processing is executed solely by authorized experts within Citrus Solutions. Information is not disclosed to third parties.

Personal data is not transferred outside the EU or EEA.

We keep records of your personal information for an additional two (2) years after the expiration of the contractual relationship to ensure proper processing of enquiries past the contract termination.

We do not make automated decisions or profiling based on the personal data we collect.

Your data and visiting our Ilmala office

The visiting information of any guest at Ilmala office will be kept in our archives for a duration of 3 months  (90 days), after which all information will be deleted. The information is being held for security reasons as well as to keep track of operations at our Ilmala office.

If you wish to visit Ilmala office without giving your information, please contact your Citrus Host. They will inform the lobby personnel that your information should not be recorded upon visiting. 

Your rights regarding the information we use

Data subject's rights:

• You can check and update your personal information (inspection and correction right).
• You can forbid the use of your information, e.g. for customer communication and marketing purposes (right of denial).
• You can request removal of your information from our systems (data deletion right).
• You can file a complaint with the Data Protection authorities, in case we – in your opinion - are not in compliance with the current Data Protection legislation, when processing your personal information.

Contact information for data protection issues:

To review, correct, remove, and resist the use of your information, please contact us by email at Citrus Data Protection Office. The contact information is:

Citrus Solutions Oy
Panuntie 4, 00610 HELSINKI, FINLAND
Data Protection Officer: Saara Perho
e-mail: saara.perho@citrus.fi

Chat and contact information functionalities at citrus.fi

We save the content of the conversations through both the chat window and contact information channels, for improving our customer engagement, services and support operations. No personal information is collected about the parties during the chat sessions.

The personal data collected through the contact information sheet (name + e-mail address) are saved in our e-mail contacts register. We treat the information with confidentiality and in a safe manner, not transferring it nor handing it out to other parties or for other purposes than described here.

We save the information collected through the citrus.fi pages chat and contact information functionalities for six (6) months, after which we archive the information to be deleted permanently every six months.

Cookie policy at citrus.fi

What is a cookie?

A cookie is a small text file that a website saves on your computer or mobile phone, when you visit Citrus Solutions website. Our website uses cookies for service delivery on our website. Cookies can also provide valuable user information on the site for the site owner.

How do we use cookies?

Our website uses the Google Analytics program, provided by Google, to help monitor the use of the site. For this purpose, Google Analytics uses cookies that are text files, storing them on a user's computer.

The information generated by cookies on this website (i.e. standard internet login information and visit data), is transferred to and stored in the Google servers in the EU and the US. We never send data that identifies the user.

Google follows the EU-US Privacy Shield protocol. Google may provide data collected by Google Analytics to third parties, but only as required by law or a third-party processing of data on behalf of Google. Under Google Analytics Terms of Service, Google does not associate registered IP addresses with any other data stored on Google.

How do you control or block cookies?

To prevent the use of the Google Analytics cookies, download and enable the Opt-out Browser Add-on option from this link.

If you choose to delete cookies, you will also remove some of the functionality of our online service, which may prevent optimal functioning of the site. Hence, if you wish to maintain the quality service experience on our site, we do not recommend blocking cookies.