Atostek eRA Privacy Policy

1. PRIVACY POLICY

Effective date: April 15, 2019

Atostek Ltd. (”us”, ”we”, or ”our”) operates the eRA Service (the ”Service”) https://era.ehoito.fi.

This privacy policy informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data.

We use your data to provide and improve the Service. By using the Service, you agree to the collection and use of information in accordance with this policy.

2. INFORMATION COLLECTION AND USE

For a better experience, while using our Service, we may require you to provide us with certain personally identifiable information. The information that we request is will be retained by us and used as described in this privacy policy.

The Service does use third party services that may collect information used to identify you.

2.1. Types of Data Collected

2.1.1. Log Data

We want to inform you that whenever you use our Service, in a case of an error in the Service we collect data and information (through third party products) on your phone or personal computer called Log Data. This Log Data may include information such as your device Internet Protocol (“IP”) address, device name, operating system version, the configuration of the app when utilizing our Service, the time and date of your use of the Service, and other statistics.

2.1.2. Personal Data

While using our Service, certain personally identifiable information will be collected. Personal identifiable information includes, but is not limited to:

  • First name, last name
  • Personal identification number
  • Identification number of your personal smart card

2.1.3. Usage Data

We want to inform you that whenever you use our Service, all operations executed by user, are stored as audit trail log. This is national requirements of Finland and regulation requirements of health care.

We may also collect information how the Service is accessed and used (”Usage Data”). This Usage Data may include information such as your computer’s Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

2.1.4. Tracking & Cookies Data

We use cookies and similar tracking technologies to track the activity on our Service and hold certain information.

Cookies are files with small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device internal memory. This Service uses these “cookies” explicitly. You have the option to either accept or refuse these cookies and know when a cookie is being sent to your device. If you choose to refuse our cookies, you may not be able to use some portions of this Service.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

3. USE OF DATA

Atostek Ltd uses the collected data for various purposes:

  • To meet legal requirements of national health record regulations
  • To provide and maintain the Service
  • To notify you about changes to our Service
  • To provide customer care and support
  • To provide analysis or valuable information so that we can improve the Service
  • To monitor the usage of the Service
  • To detect, prevent and address technical issues

4. TRANSFER OF DATA

Your information, including Personal Data, will be transferred and maintained on computers located in Finland.

If you are located outside Finland and choose to provide information to us, please note that we transfer the data, including Personal Data, to Finland and process it there.

Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.

Atostek Ltd will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information.

5. DISCLOSURE OF DATA

5.1. Legal Requirements

Atostek Ltd may disclose your Personal Data in the good faith belief that such action is necessary to:
• To comply with a legal obligation
• To protect and defend the rights or property of Atostek Ltd
• To prevent or investigate possible wrongdoing in connection with the Service
• To protect the personal safety of users of the Service or the public
• To protect against legal liability

6. SECURITY OF DATA

We take your privacy and data security seriously. We take reasonable steps to secure privacy and data, but while no method is 100 %, we cannot guarantee its absolute security.

7. SERVICE PROVIDERS

  • We may employ third-party companies and individuals due to the following reasons:
  • To facilitate our Service;
  • To provide the Service on our behalf;
  • To perform Service-related services; or
  • To assist us in analysing how our Service is used.

We want to inform users of this Service that these third parties have access to your Personal Information. The reason is to perform the tasks assigned to them on our behalf. However, they are obligated not to disclose or use the information for any other purpose.

8. LINKS TO OTHER SITES

Our Service may contain links to other sites that are not operated by us. If you click on a third-party link, you will be directed to that third party’s site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies or practices of any third-party sites or services.

9. CHILDREN’S PRIVACY

Our Service does not address anyone under the age of 18 (”Children”).

We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your Children has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.

10. CHANGES TO THIS PRIVACY POLICY

We may update our Privacy Policy from time to time. Thus, you are advised to review this page periodically for any changes. We will notify you of any changes by posting the new Privacy Policy on this page. These changes are effective immediately after they are posted on this page.

11. CONTACT US

If you have any questions about this Privacy Policy, please contact us by email: tietosuoja@atostek.com