Skip to content
Menu

Admicom Plc Privacy Notice

Please note that this text is an English translation of Admicom Plc’s Finnish privacy notice (“Tietosuojailmoitus”). The official version of the privacy notice is available in Finnish.

Contents of this Page

Admicom Group as a Data Processor

Admicom Group (hereinafter “Admicom”) as a data processor

Admicom provides a range of different services to its customers. These services involve the processing of customers’ data and may also involve the processing of personal data. The purposes of the processing are determined by our customers. In such cases, the customer acts as the data controller. Admicom acts as the data processor and processes the data in accordance with the instructions given by the customer. When acting as a data processor, Admicom complies with the data processing agreement concluded with the customer in accordance with the General Data Protection Regulation. The customer has given its consent and guarantees that

  • the customer owns or is otherwise entitled to transfer the data to Admicom for processing and that the customer is responsible for the accuracy, correctness, content and reliability of the data and for compliance with legal requirements.
  • As the data controller, the customer is obliged to notify the authorities and/or the data subject of a breach or unauthorised disclosure of personal data in the manner required by law.

When acting as a data processor, Admicom is obliged to take technical and organisational information security measures to protect privacy on behalf of the customer acting as the data controller.

As a data processor, Admicom does not process personal data in any way other than that authorised in the agreement concluded with the data controller.

If data subjects have, for example, questions, comments or requests concerning the personal data processed by Admicom, they must be sent to the data controller. As a data processor, Admicom does not disclose personal data to data subjects if the data controller has not instructed it to do so. If the police or another authority requests the disclosure of personal data, Admicom will immediately inform the data controller and disclose the data only on the basis of a court order.

Upon request, Admicom provides customers and partners with non-public information about its internal systems and data processing routines. This may depend on the terms of a non-disclosure agreement.

Admicom Plc – Automatic Data Collection

Automatic data collection in Admicom Group (hereinafter “Admicom”)

Admicom uses commonly used digital marketing methods and tools to collect data on users of our websites. We collect this data to improve the usability and content of our websites, to target advertising and marketing, and to identify visitors’ areas of interest. As a rule, the data is collected by means of cookies (see below), and it cannot be linked to an individual person unless the website visitor fills in and submits their own personal data via the website.

Cookies are small text files containing character strings that allow the browser to be uniquely identified. They are sent to the computer by the site or by a third party. Most browsers are set to accept cookies. However, you can change your browser settings so that the browser refuses to accept third-party cookies or notifies you when cookies are being sent. Third-party cookie tools are also used on Admicom Group’s websites, allowing you to manage your consent to the use of cookies on the site.

With regard to the Google tools used by Admicom on its websites, you can prevent Google from collecting and processing the data generated by the Google cookie by downloading and installing the Google Analytics Opt-out Browser Add-on in your browser. This add-on is available at: https://tools.google.com/dlpage/gaoptout.

User Tracking

We use Leadoo’s user tracking to monitor how our users move on our website and combine this data with user information collected, for example, via chat interactions. Leadoo uses etag tracking, which technically differs from cookie-based tracking but is subject to the same legal principles as cookies. Please refer to the privacy policy of Leadoo Marketing Technologies Oy (https://leadoo.com/privacy-policy/) to learn more about what is tracked in the system. For GDPR purposes, we act as the controller and Leadoo as the data processor. If you do not want to be tracked, you can clear your browser cache. For more information about how Leadoo works, please see: https://leadoo.com/privacy-policy-processor/

We use Hotjar on our website to better understand how our users interact with the site and to optimise our services and user experience. Hotjar allows us to visualise user interactions, which helps us better understand their experience and identify potential issues and friction points to improve our services. To provide these services, Hotjar uses first-party cookies and other technologies to collect personal data and device information about our users on our behalf. This may include personal data such as online identifiers (e.g. device IP address, user ID), identifiers (e.g. name, email address – only if we have explicitly collected them), technical information (e.g. device type and screen size, browser information), geographical location (country only), behavioural data (interaction with our website, such as clicks, taps, scrolls) and any other personal data that the user has expressly submitted through Hotjar. Hotjar may also use this personal data to develop and improve its tools and services for our and our users’ benefit. For more information, please refer to Hotjar’s privacy policy.

Last updated on 27 May 2025.

Privacy Notice for the Marketing Register of Admicom Plc

1. Scope and Acceptance

This privacy notice applies to all business processes and websites, domains, mobile solutions, cloud services and third-party social networks of Admicom Plc (hereinafter “Admicom”) and its subsidiaries.

This notice describes the data processing performed by Admicom when Admicom is the data controller, and the processing of data carried out on behalf of customers in accordance with their instructions, when Admicom is the data processor.

Personal data is information by which an individual can be identified, such as an address, email address or telephone number. We need to process personal data in order to serve our customers.

By providing us with your personal data, you accept the practices and terms of this privacy notice.

2. Admicom as Data Controller

Admicom Plc
Business ID: 2800085-4
Väinönkatu 26 A, 40100 Jyväskylä, Finland
Support phone: +358 44 433 3888
Email: tietosuoja@admicom.fi

3. Person in Charge of Register Matters

Pekka Pulkkinen
c/o Admicom Oyj
Läkkisepäntie 23 (Duetto Park), 00620 Helsinki, Finland

4. Registers

Admicom Group’s marketing register of companies and their decision-makers/key personnel, based on an existing or potential customer relationship and other relevant connections.

5. Purpose of Processing Personal Data

Personal data is processed for the management and analysis of relationships related to customer relationships and other relevant connections, for marketing, distance selling, opinion and market research, and customer communications, which may also be carried out electronically and in a targeted manner.

6. Data Content of the Registers

The following data may be processed in the marketing register for all data subjects:

  • First and last name
  • Contact details (postal address, telephone number, email address)
  • Job title
  • Direct marketing consents and prohibitions
  • Company name
  • Personnel changes
  • Information on the use of electronic services and content (e.g. subscribing to newsletters)
  • Data related to marketing and sales promotion, such as marketing activities targeted at the data subject and their participation in those activities

7. Regular Sources of Data

Personal data concerning the data subject is collected from the data subject themselves, from various services used by the data subject (including Ultima and various Admicom Group websites) and in connection with various marketing activities such as marketing lotteries, competitions and events.

Personal data may also be collected and updated from Admicom’s partners’ registers and from authorities and companies providing personal data services.

8. Regular Disclosures of Data

Data may be disclosed to competent authorities or other parties as required by their demands in a manner based on applicable legislation.

Data may be disclosed to buyers in connection with corporate transactions if Admicom sells or otherwise restructures its business.

Data may be transferred to selected partners of the controller who process the data on behalf of the controller on the basis of a cooperation agreement between the parties. In such cases, the data processor is not entitled to process the transferred data for its own purposes in its own personal data registers.

9. Transfer of Data Outside the EU or EEA

As a rule, data is not transferred outside the territory of the Member States of the European Union or the European Economic Area, unless this is necessary for the purposes of the processing of personal data or for the technical implementation of the processing, in which case the transfer of data will comply with the requirements of the General Data Protection Regulation.

10. Protection of the Registers

A. Manual Material

Personal data is protected against unauthorised access and unlawful processing (e.g. destruction, alteration or disclosure). Each processor may only process the personal data necessary for their work tasks.

Documents are stored in locked premises protected from unauthorised access. Documents are printed only when necessary and paper printouts are destroyed after use.

B. Automatically Processed Data

The data in the electronically processed register is protected by firewalls, passwords and other generally accepted technical means of information security.

Only identified employees of the controller and of companies acting on its behalf and on its account have access to the data in the register with a user right granted by the controller.

11. Exercising the Rights of the Data Subject

The data subject is informed about the collection of data when the service contract is signed.

The data subject has the right to inspect what data concerning them has been stored in the register.

At the data subject’s request, we will make the necessary corrections and additions to their personal data or delete any data that is incorrect, unnecessary, incomplete or outdated for the purposes of processing.

Data can be inspected and updated by contacting Admicom using the contact details provided below.

12. Data Retention

Admicom retains personal data only as long as necessary for the purposes stated or for fulfilling statutory obligations. When the personal data we have collected is no longer needed, we will destroy or delete it securely. Prospect data is stored in the customer relationship management system for a maximum of two years.

Admicom uses HubSpot as its customer relationship management system, where prospect data is also stored. Inactive prospect data is automatically deleted from the system after the two-year retention period has expired. More information about HubSpot is available here: https://www.hubspot.com/ 

13. Changes to the Privacy Notice

Admicom continuously develops its business and therefore reserves the right to amend this privacy notice by announcing such changes in its services. Changes may also be based on legislative changes.

If we make changes to the privacy notice, we will publish the amended notice and the date of the change here. We recommend that you read this notice regularly.

If we make significant changes to this notice that materially change our privacy practices, we may also notify you in other ways before the changes take effect.

This privacy notice was last updated on 9 December 2024.

14. Contact

If you have any comments or questions regarding our privacy notice, or if you are concerned about the protection of your privacy or the use of data or suspect that your privacy has been violated, please send a message to tietosuoja@admicom.fi. You can also send a letter to Väinönkatu 26 A, 40100 Jyväskylä, Finland.

We will handle your request confidentially and our representative will contact you at the address you have provided, if necessary. We aim to handle any complaints in a timely and appropriate manner.

Privacy Notice for the Recruitment Register of Admicom Plc

1. Scope and Acceptance

This privacy notice applies to all business processes and websites, domains, mobile solutions, cloud services and third-party social networks of Admicom Plc (hereinafter “Admicom”) and its subsidiaries.

This notice describes the data processing performed by Admicom when Admicom is the data controller, and the processing of data carried out on behalf of customers in accordance with their instructions, when Admicom is the data processor.

Personal data is information by which an individual can be identified, such as an address, email address or telephone number. We need to process personal data in order to assess an employee’s suitability and carry out our recruitment processes.

By providing us with your personal data, you accept the practices and terms of this privacy notice.

2. Admicom as Data Controller

Admicom Plc
Business ID: 2800085-4
Väinönkatu 26 A, 40100 Jyväskylä, Finland
Support phone: +358 44 433 3888
Email: tietosuoja@admicom.fi

3. Person in Charge of Register Matters

Helena Marjokorpi
c/o Admicom Oyj
Väinönkatu 26 A 29, 40100 Jyväskylä, Finland

4. Registers

Admicom Group’s recruitment register.

5. Purpose of Processing Personal Data

Assessment of Admicom’s job applicants’ suitability and recruitment.

6. Data Content of the Registers

The following data may be processed in the recruitment register for all data subjects:

  • First and last name
  • Contact details (postal address, telephone number, email address)
  • Answers to the job advertisement form
  • Other information provided by the job applicant about themselves, such as their CV, application, salary request and similar details
  • Results of suitability and other personal assessments

7. Regular Sources of Data

Personal data concerning the data subject is collected from the data subject themselves, from various services used by the data subject (including Ultima and various Admicom Group websites, external partners’ recruitment systems) and in connection with various marketing activities such as marketing lotteries, competitions and events.

Personal data may also be collected and updated from Admicom’s partners’ registers and from authorities and companies providing personal data services.

8. Regular Disclosures of Data

Data may be disclosed to competent authorities or other parties as required by their demands in a manner based on applicable legislation.

Data may be disclosed to buyers in connection with corporate transactions if Admicom sells or otherwise restructures its business.

Data may be transferred to selected partners of the controller who process the data on behalf of the controller on the basis of a cooperation agreement between the parties. In such cases, the data processor is not entitled to process the transferred data for its own purposes in its own personal data registers.

9. Transfer of Data Outside the EU or EEA

As a rule, data is not transferred outside the territory of the Member States of the European Union or the European Economic Area, unless this is necessary for the purposes of the processing of personal data or for the technical implementation of the processing, in which case the transfer of data will comply with the requirements of the General Data Protection Regulation.

10. Protection of the Registers

A. Manual Material

Personal data is protected against unauthorised access and unlawful processing (e.g. destruction, alteration or disclosure). Each processor may only process the personal data necessary for their work tasks.

Documents are stored in locked premises protected from unauthorised access. Documents are printed only when necessary and paper printouts are destroyed after use.

B. Automatically Processed Data

The data in the electronically processed register is protected by firewalls, passwords and other generally accepted technical means of information security.

Only identified employees of the controller and of companies acting on its behalf and on its account have access to the data in the register with a user right granted by the controller.

11. Exercising the Rights of the Data Subject

The data subject is informed about the collection of data when the service contract is signed.

The data subject has the right to inspect what data concerning them has been stored in the register.

At the data subject’s request, we will make the necessary corrections and additions to their personal data or delete any data that is incorrect, unnecessary, incomplete or outdated for the purposes of processing.

Data can be inspected and updated by contacting Admicom using the contact details provided below.

12. Data Retention

Admicom retains personal data only as long as necessary for the purposes stated or for fulfilling statutory obligations. When the personal data we have collected is no longer needed, we will destroy or delete it securely.

13. Changes to the Privacy Notice

Admicom continuously develops its business and therefore reserves the right to amend this privacy notice by announcing such changes in its services. Changes may also be based on legislative changes.

If we make changes to the privacy notice, we will publish the amended notice and the date of the change here. We recommend that you read this notice regularly.

If we make significant changes to this notice that materially change our privacy practices, we may also notify you in other ways before the changes take effect.

This privacy notice was last updated on 17 December 2024.

14. Contact

If you have any comments or questions regarding our privacy notice, or if you are concerned about the protection of your privacy or the use of data or suspect that your privacy has been violated, please send a message to tietosuoja@admicom.fi. You can also send a letter to Väinönkatu 26 A, 40100 Jyväskylä, Finland.

We will handle your request confidentially and our representative will contact you at the address you have provided, if necessary. We aim to handle any complaints in a timely and appropriate manner.

Privacy Notice for the Partner and Supplier Register of Admicom Plc

1. Scope and Acceptance

This privacy notice applies to all business processes and websites, domains, mobile solutions, cloud services and third-party social networks of Admicom Plc (hereinafter “Admicom”) and its subsidiaries.

This notice describes the data processing performed by Admicom when Admicom is the data controller, and the processing of data carried out on behalf of customers in accordance with their instructions, when Admicom is the data processor.

Personal data is information by which an individual can be identified, such as an address, email address or telephone number. We need to process personal data in order to cooperate with partners and suppliers.

By providing us with your personal data, you accept the practices and terms of this privacy notice.

2. Admicom as Data Controller

Admicom Plc
Business ID: 2800085-4
Väinönkatu 26 A, 40100 Jyväskylä, Finland
Support phone: +358 44 433 3888
Email: tietosuoja@admicom.fi

3. Person in Charge of Register Matters

Pekka Pulkkinen
c/o Admicom Oyj
Läkkisepäntie 23, 00620 Helsinki, Finland

4. Registers

Admicom Group’s partner and supplier register based on cooperation and other relevant connection.

5. Purpose of Processing Personal Data

Personal data is processed for the management and analysis of relationships related to cooperation and other relevant connection, for providing services, for business development and planning, and for marketing.

6. Data Content of the Registers

The following data may be processed in the partner and supplier register for all data subjects:

  • First and last name
  • Contact details (postal address, telephone number, email address)
  • Job title
  • Company name and Business ID
  • Personnel changes

7. Regular Sources of Data

Personal data concerning the data subject is collected from the data subject themselves, from various services used by the data subject (including Ultima and various Admicom Group websites) and in connection with various marketing activities such as marketing lotteries, competitions and events.

Personal data may also be collected and updated from Admicom’s partners’ registers and from authorities and companies providing personal data services.

8. Regular Disclosures of Data

Data may be disclosed to competent authorities or other parties as required by their demands in a manner based on applicable legislation.

Data may be disclosed to buyers in connection with corporate transactions if Admicom sells or otherwise restructures its business.

Data may be transferred to selected partners of the controller who process the data on behalf of the controller on the basis of a cooperation agreement between the parties. In such cases, the data processor is not entitled to process the transferred data for its own purposes in its own personal data registers.

9. Transfer of Data Outside the EU or EEA

As a rule, data is not transferred outside the territory of the Member States of the European Union or the European Economic Area, unless this is necessary for the purposes of the processing of personal data or for the technical implementation of the processing, in which case the transfer of data will comply with the requirements of the General Data Protection Regulation.

10. Protection of the Registers

A. Manual Material

Personal data is protected against unauthorised access and unlawful processing (e.g. destruction, alteration or disclosure). Each processor may only process the personal data necessary for their work tasks.

Documents are stored in locked premises protected from unauthorised access. Documents are printed only when necessary and paper printouts are destroyed after use.

B. Automatically Processed Data

The data in the electronically processed register is protected by firewalls, passwords and other generally accepted technical means of information security.

Only identified employees of the controller and of companies acting on its behalf and on its account have access to the data in the register with a user right granted by the controller.

11. Exercising the Rights of the Data Subject

The data subject is informed about the collection of data when the service contract is signed.

The data subject has the right to inspect what data concerning them has been stored in the register.

At the data subject’s request, we will make the necessary corrections and additions to their personal data or delete any data that is incorrect, unnecessary, incomplete or outdated for the purposes of processing.

Data can be inspected and updated by contacting Admicom using the contact details provided below.

12. Data Retention

Admicom retains personal data only as long as necessary for the purposes stated or for fulfilling statutory obligations. When the personal data we have collected is no longer needed, we will destroy or delete it securely.

13. Changes to the Privacy Notice

Admicom continuously develops its business and therefore reserves the right to amend this privacy notice by announcing such changes in its services. Changes may also be based on legislative changes.

If we make changes to the privacy notice, we will publish the amended notice and the date of the change here. We recommend that you read this notice regularly.

If we make significant changes to this notice that materially change our privacy practices, we may also notify you in other ways before the changes take effect.

This privacy notice was last updated on 14 April 2025.

14. Contact

If you have any comments or questions regarding our privacy notice, or if you are concerned about the protection of your privacy or the use of data or suspect that your privacy has been violated, please send a message to tietosuoja@admicom.fi. You can also send a letter to Väinönkatu 26 A, 40100 Jyväskylä, Finland.

We will handle your request confidentially and our representative will contact you at the address you have provided, if necessary. We aim to handle any complaints in a timely and appropriate manner.

Privacy Notice for the Investor Relations Register of Admicom Plc

1. Scope and Acceptance

This privacy notice applies to all business processes and websites, domains, mobile solutions, cloud services and third-party social networks of Admicom Plc (hereinafter “Admicom”) and its subsidiaries.

This notice describes the data processing performed by Admicom when Admicom is the data controller, and the processing of data carried out on behalf of customers in accordance with their instructions, when Admicom is the data processor.

Personal data is information by which an individual can be identified, such as an address, email address or telephone number. We need to process personal data in order to carry out investor communications and to map investor interest.

By providing us with your personal data, you accept the practices and terms of this privacy notice.

2. Admicom as Data Controller

Admicom Plc
Business ID: 2800085-4
Väinönkatu 26 A, 40100 Jyväskylä, Finland
Support phone: +358 44 433 3888
Email: tietosuoja@admicom.fi

3. Person in Charge of Register Matters

Satu Helamo
c/o Admicom Oyj
Läkkisepäntie 23, 00620 Helsinki, Finland

4. Registers

Admicom Group’s investor relations register.

5. Purpose of Processing Personal Data

Personal data is processed for the management of investor relations and for mapping investment interest.

6. Data Content of the Registers

The following data may be processed in the investor relations register for all data subjects:

  • First and last name
  • Contact details (telephone number, email address)
  • Job title
  • Company name and Business ID

7. Regular Sources of Data

Personal data concerning the data subject is collected from the data subject themselves, from various services used by the data subject (including Ultima and various Admicom Group websites) and in connection with various marketing activities such as marketing lotteries, competitions and events.

Personal data may also be collected and updated from Admicom’s partners’ registers and from authorities and companies providing personal data services.

8. Regular Disclosures of Data

Data may be disclosed to competent authorities or other parties as required by their demands in a manner based on applicable legislation.

Data may be disclosed to buyers in connection with corporate transactions if Admicom sells or otherwise restructures its business.

Data may be transferred to selected partners of the controller who process the data on behalf of the controller on the basis of a cooperation agreement between the parties. In such cases, the data processor is not entitled to process the transferred data for its own purposes in its own personal data registers.

9. Transfer of Data Outside the EU or EEA

As a rule, data is not transferred outside the territory of the Member States of the European Union or the European Economic Area, unless this is necessary for the purposes of the processing of personal data or for the technical implementation of the processing, in which case the transfer of data will comply with the requirements of the General Data Protection Regulation.

10. Protection of the Registers

A. Manual Material

Personal data is protected against unauthorised access and unlawful processing (e.g. destruction, alteration or disclosure). Each processor may only process the personal data necessary for their work tasks.

Documents are stored in locked premises protected from unauthorised access. Documents are printed only when necessary and paper printouts are destroyed after use.

B. Automatically Processed Data

The data in the electronically processed register is protected by firewalls, passwords and other generally accepted technical means of information security.

Only identified employees of the controller and of companies acting on its behalf and on its account have access to the data in the register with a user right granted by the controller.

11. Exercising the Rights of the Data Subject

The data subject is informed about the collection of data when the service contract is signed.

The data subject has the right to inspect what data concerning them has been stored in the register.

At the data subject’s request, we will make the necessary corrections and additions to their personal data or delete any data that is incorrect, unnecessary, incomplete or outdated for the purposes of processing.

Data can be inspected and updated by contacting Admicom using the contact details provided below.

12. Data Retention

Admicom retains personal data only as long as necessary for the purposes stated or for fulfilling statutory obligations. When the personal data we have collected is no longer needed, we will destroy or delete it securely.

13. Changes to the Privacy Notice

Admicom continuously develops its business and therefore reserves the right to amend this privacy notice by announcing such changes in its services. Changes may also be based on legislative changes.

If we make changes to the privacy notice, we will publish the amended notice and the date of the change here. We recommend that you read this notice regularly.

If we make significant changes to this notice that materially change our privacy practices, we may also notify you in other ways before the changes take effect.

This privacy notice was last updated on 14 April 2025.

14. Contact

If you have any comments or questions regarding our privacy notice, or if you are concerned about the protection of your privacy or the use of data or suspect that your privacy has been violated, please send a message to tietosuoja@admicom.fi. You can also send a letter to Väinönkatu 26 A, 40100 Jyväskylä, Finland.

We will handle your request confidentially and our representative will contact you at the address you have provided, if necessary. We aim to handle any complaints in a timely and appropriate manner.

Privacy Notice for the Customer Register of Admicom Plc

1. Scope and Acceptance

This privacy notice applies to all business processes and websites, domains, mobile solutions, cloud services and third-party social networks of Admicom Plc (hereinafter “Admicom”) and its subsidiaries.

This notice describes the data processing performed by Admicom when Admicom is the data controller, and the processing of data carried out on behalf of customers in accordance with their instructions, when Admicom is the data processor.

Personal data is information by which an individual can be identified, such as an address, email address or telephone number. We need to process personal data in order to serve our customers.

By providing us with your personal data, you accept the practices and terms of this privacy notice.

2. Admicom as Data Controller

Admicom Plc
Business ID: 2800085-4
Väinönkatu 26 A, 40100 Jyväskylä, Finland
Support phone: +358 44 433 3888
Email: tietosuoja@admicom.fi

3. Person in Charge of Register Matters

Pekka Pulkkinen
c/o Admicom Oyj
Läkkisepäntie 23, 00620 Helsinki, Finland

4. Registers

Admicom Group’s customer register of companies and companies’ decision-makers/key personnel based on a customer relationship and other relevant connection.

5. Purpose of Processing Personal Data

Personal data is processed for the management and analysis of relationships related to customer relationships and other relevant connections, for providing services, for carrying out implementation projects, for business development and planning, and for marketing, distance selling, opinion and market research and customer communications, which may also be carried out electronically and in a targeted manner.

6. Data Content of the Registers

The following data may be processed in the customer register for all data subjects:

  • First and last name
  • Contact details (postal address, telephone number, email address)
  • Job title
  • Start and end date and method of the customer relationship and/or relevant connection
  • Direct marketing consents and prohibitions
  • Company name
  • Personnel changes
  • Business ID (companies) or personal identity code
  • Information on the use of electronic services and content (e.g. subscribing to newsletters)
  • Data related to marketing and sales promotion, such as marketing activities targeted at the data subject and participation in them

The following data may be processed in the customer register for persons who have purchased a product and/or service in addition to the data listed above:

  • Customer number
  • User-related data such as username, user’s system data, user’s software data, user’s change data
  • Business ID or personal identity code
    Invoicing and collection data
    Contact persons (name, phone, email)
  • Data related to the management and communication of the customer relationship and other relevant connection and to classification (e.g. product and service purchase and cancellation data, delivery data, feedback, complaints and records of customer service events such as phone calls, emails and support messages)
  • Allergy and dietary information collected in connection with customer events
  • Call recordings when calling support services

7. Regular Sources of Data

Personal data concerning the data subject is collected from the data subject themselves, from various services used by the data subject (including Ultima and various Admicom Group websites) and in connection with various marketing activities such as marketing lotteries, competitions and events.

Personal data may also be collected and updated from Admicom’s partners’ registers and from authorities and companies providing personal data services.

8. Regular Disclosures of Data

Data may be disclosed to competent authorities or other parties as required by their demands in a manner based on applicable legislation.

Data may be disclosed to buyers in connection with corporate transactions if Admicom sells or otherwise restructures its business.

Data may be transferred to selected partners of the controller who process the data on behalf of the controller on the basis of a cooperation agreement between the parties.

9. Transfer of Data Outside the EU or EEA

As a rule, data is not transferred outside the territory of the Member States of the European Union or the European Economic Area, unless this is necessary for the purposes of the processing of personal data or for the technical implementation of the processing, in which case the transfer of data will comply with the requirements of the General Data Protection Regulation.

10. Protection of the Registers

A. Manual Material

Personal data is protected against unauthorised access and unlawful processing (e.g. destruction, alteration or disclosure). Each processor may only process the personal data necessary for their work tasks.

Documents are stored in locked premises protected from unauthorised access. Documents are printed only when necessary and paper printouts are destroyed after use.

B. Automatically Processed Data

The data in the electronically processed register is protected by firewalls, passwords and other generally accepted technical means of information security.

Only identified employees of the controller and of companies acting on its behalf and on its account have access to the data in the register with a user right granted by the controller.

11. Exercising the Rights of the Data Subject

The data subject is informed about the collection of data when the service contract is signed.

The data subject has the right to inspect what data concerning them has been stored in the register.

At the data subject’s request, we will make the necessary corrections and additions to their personal data or delete any data that is incorrect, unnecessary, incomplete or outdated for the purposes of processing.

Data can be inspected and updated by contacting Admicom using the contact details provided below.

12. Data Retention

Admicom retains personal data only as long as necessary for the purposes stated or for fulfilling statutory obligations. When the personal data we have collected is no longer needed, we will destroy or delete it securely.

13. Ultima’s Map Features

Ultima’s map functionalities are implemented via the Google Maps API interface and all users must comply with the Google Maps/Google Earth Additional Terms of Service (https://maps.google.com/help/terms_maps/) and Google’s Privacy Policy (https://policies.google.com/privacy?hl=en).

14. Changes to the Privacy Notice

Admicom continuously develops its business and therefore reserves the right to amend this privacy notice by announcing such changes in its services. Changes may also be based on legislative changes.

If we make changes to the privacy notice, we will publish the amended notice and the date of the change here. We recommend that you read this notice regularly.

If we make significant changes to this notice that materially change our privacy practices, we may also notify you in other ways before the changes take effect.

This privacy notice was last updated on 14 April 2025.

15. Contact

If you have any comments or questions regarding our privacy notice, or if you are concerned about the protection of your privacy or the use of data or suspect that your privacy has been violated, please send a message to tietosuoja@admicom.fi. You can also send a letter to Väinönkatu 26 A, 40100 Jyväskylä, Finland.

We will handle your request confidentially and our representative will contact you at the address you have provided, if necessary. We aim to handle any complaints in a timely and appropriate manner.

Privacy Notice for the Customer Register of Admicom Plc’s Accounting Services

1. Scope and Acceptance

This privacy notice applies to all business processes and websites, domains, mobile solutions, cloud services and third-party social networks of Admicom Plc (hereinafter “Admicom”) and its subsidiaries.

This notice describes the data processing performed by Admicom when Admicom is the data controller, and the processing of data carried out on behalf of customers in accordance with their instructions, when Admicom is the data processor.

Personal data is information by which an individual can be identified, such as an address, email address or telephone number. We need to process personal data in order to serve our customers.

By providing us with your personal data, you accept the practices and terms of this privacy notice.

2. Admicom as Data Controller

Admicom Plc
Business ID: 2800085-4
Väinönkatu 26 A, 40100 Jyväskylä, Finland
Support phone: +358 44 433 3888
Email: tietosuoja@admicom.fi

3. Person in Charge of Register Matters

Jaana Alander
c/o Admicom Oyj
Biokatu 10, 33520 Tampere, Finland

4. Registers

Admicom Group’s customer register based on accounting services customer relationships.

5. Purpose of Processing Personal Data

Personal data is processed for the management and analysis of relationships related to accounting services customer relationships and other relevant connections, for providing services, for current customer communications and for carrying out implementation projects.

6. Data Content of the Registers

The following data may be processed in the accounting services customer register for all data subjects:

  • First and last name
  • Contact details (postal address, telephone number, email address)
  • Job title
  • Personal identity code
  • Trade union membership data
  • Enforcement data
  • Holiday and working time shortening accruals
  • Bank account number
  • Salary data
  • Company name
  • Business ID

The following data may be processed in the accounting services customer register for persons who have purchased a product and/or service in addition to the data listed above:

  • Customer number
  • User-related data such as username, user’s system data, user’s software data, user’s change data
  • Invoicing and collection data
  • Contact persons (name, phone, email)
  • Data related to the management and communication of the customer relationship and other relevant connection and to classification (e.g. product and service purchase and cancellation data, delivery data, feedback, complaints and records of customer service events such as phone calls, emails and support messages)
  • Allergy and dietary information collected in connection with customer events
  • Call recordings when calling support services

7. Regular Sources of Data

Personal data concerning the data subject is collected from the data subject themselves, from various services used by the data subject (including Ultima and various Admicom Group websites) and in connection with various marketing activities such as marketing lotteries, competitions and events.

Personal data may also be collected and updated from Admicom’s partners’ registers and from authorities and companies providing personal data services.

8. Regular Disclosures of Data

Data may be disclosed to competent authorities or other parties as required by their demands in a manner based on applicable legislation.

Data may be disclosed to buyers in connection with corporate transactions if Admicom sells or otherwise restructures its business.

Data may be transferred to selected partners of the controller who process the data on behalf of the controller on the basis of a cooperation agreement between the parties.

9. Transfer of Data Outside the EU or EEA

As a rule, data is not transferred outside the territory of the Member States of the European Union or the European Economic Area, unless this is necessary for the purposes of the processing of personal data or for the technical implementation of the processing, in which case the transfer of data will comply with the requirements of the General Data Protection Regulation.

10. Protection of the Registers

A. Manual Material

Personal data is protected against unauthorised access and unlawful processing (e.g. destruction, alteration or disclosure). Each processor may only process the personal data necessary for their work tasks.

Documents are stored in locked premises protected from unauthorised access. Documents are printed only when necessary and paper printouts are destroyed after use.

B. Automatically Processed Data

The data in the electronically processed register is protected by firewalls, passwords and other generally accepted technical means of information security.

Only identified employees of the controller and of companies acting on its behalf and on its account have access to the data in the register with a user right granted by the controller.

11. Exercising the Rights of the Data Subject

The data subject is informed about the collection of data when the service contract is signed.

The data subject has the right to inspect what data concerning them has been stored in the register.

At the data subject’s request, we will make the necessary corrections and additions to their personal data or delete any data that is incorrect, unnecessary, incomplete or outdated for the purposes of processing.

Data can be inspected and updated by contacting Admicom using the contact details provided below.

12. Data Retention

Admicom retains personal data only as long as necessary for the purposes stated or for fulfilling statutory obligations. When the personal data we have collected is no longer needed, we will destroy or delete it securely.

13. Ultima’s Map Features

Ultima’s map functionalities are implemented via the Google Maps API interface and all users must comply with the Google Maps/Google Earth Additional Terms of Service (https://maps.google.com/help/terms_maps/) and Google’s Privacy Policy (https://policies.google.com/privacy?hl=en).

14. Changes to the Privacy Notice

Admicom continuously develops its business and therefore reserves the right to amend this privacy notice by announcing such changes in its services. Changes may also be based on legislative changes.

If we make changes to the privacy notice, we will publish the amended notice and the date of the change here. We recommend that you read this notice regularly.

If we make significant changes to this notice that materially change our privacy practices, we may also notify you in other ways before the changes take effect.

This privacy notice was last updated on 14 April 2025.

15. Contact

If you have any comments or questions regarding our privacy notice, or if you are concerned about the protection of your privacy or the use of data or suspect that your privacy has been violated, please send a message to tietosuoja@admicom.fi. You can also send a letter to Väinönkatu 26 A, 40100 Jyväskylä, Finland.

We will handle your request confidentially and our representative will contact you at the address you have provided, if necessary. We aim to handle any complaints in a timely and appropriate manner.