Nordic Leaders Oy (“Nordic Leaders”, “we” or “us”) collects personal data of our customers and visitors (“Users”) of our website www.nordicleaders.com whilst providing our Users our services. Nordic Leaders processes your personal data with due care, in accordance with all applicable laws and regulations. This Privacy Statement explains what personal data we process, how we process the personal data and how you may use your legitimate rights as a data subject (e.g. right to object, right of access). This Privacy Statement may be updated from time to time. You can find the current version on our website www.nordicleaders.com. This Privacy Statement applies to all personal data that Nordic Leaders processes during the execution of our services, including the personal data of visitors of Nordic Leaders website. This Privacy Statement only covers personal data processing carried out by Nordic Leaders. The Privacy Statement does not address, and we are not responsible for, the privacy practices of any third parties.

Identity of the controller of the processing of your personal data

The controller of the processing of the personal data:
Nordic Leaders Oy

Company ID in Finnish Trade Register:
3467278-8

Correspondence address:
Nordic Leaders Oy
c/o Village Works Oy,
Erottajankatu 2,
00120 Helsinki,
Finland

E-mail address:
info@nordicleaders.com

Web address:
www.nordicleaders.com

Personal data processed and sources of data

Nordic Leaders collects two types of information from our Users: (i) User Data; and (ii) Technical Data. Although we do not normally use Technical Data to identify you as an individual, you can sometimes be recognized from it. In such situations, Technical Data can also be considered personal data under applicable laws.

We may collect and process the following User Data about our customers and visitors: (i) first and last name; (ii) address details, (iii) telephone number, (iv) e-mail address, (v) your location when you use our services, (vi) professional experience – including titles, current and previous employers, board assignments, memberships in professional organizations, educational background, academic qualifications, employment certificates, languages, or other competences -, in short, data in a CV/profile (publicly available information as well, e.g. from social media) and (vii) other personal data you provide yourself, including pictures, for example when creating a profile, in correspondence and by phone.

We may collect User Data from our customers and visitors in a variety of ways, including, when you submit your CV, register to our services, subscribe to a newsletter or fill out a form. We will collect User Data from customers and visitors only if they voluntarily submit such information to us or carry out transactions or payments through our services or websites.

We and/or our authorized third-party service providers may automatically collect Technical Data when you visit or interact with our services or websites. Technical Data may include the browser name, the type of computer or device, time spent on website, interaction with the Services, URL of the website you visited before and after visiting the Services, the time and date of user visits, surfing habits, IP address, operating system and the Internet service providers utilized and other similar technical information.

Purposes and legitimate grounds for the processing of your personal data

There are several purposes of the processing of your personal data by Nordic Leaders:

To provide our services and carry out our agreement with you

Nordic Leaders processes your personal data in the first place to be able to deliver our services to you and to run, maintain and develop our business. We use the personal data for example when we provide services or contact you. If you contact us,
we will use the information provided by you to answer your questions or solve your complaint. In order to ensure that our services are in line with your needs, your personal data can be used for things like customer satisfaction surveys.

For customer communication (including marketing)

Nordic Leaders processes your personal data to contact you regarding our services and to inform you of changes to our services and products. Your data are also used for research and analysis to improve our services and our website. We may also use your data entered on our website in certain cases to send information by e-mail about other services of ours and information about our activities, provided that you have given us consent to that.

For quality improvement and trend analysis

We may also process information about your use of the services to improve the quality of our services e.g. by analyzing any trends in the use of our services. When possible, we will do this using only aggregated, non-personally identifiable data.

Legitimate grounds for processing

Nordic Leaders processes your personal data to perform our contractual obligations towards you and to comply with legal obligations. Furthermore, we process your personal data to pursue our legitimate interest to maintain and develop our businesses.

Nordic Leaders operates in the executive search/headhunting (recruitment) domain, hence we are also collecting candidate – candidates are individuals whose Personal Data is processed by Nordic Leaders because the individuals can be of interest for a recruiting assignment we are managing on behalf of our customers – and client data in accordance with best practices in this sector with a legitimate ground for being active in this area. Nordic Leaders uses Ezekia (https://ezekia.com/) as its ATS and CRM platform and Ezekia is fully GDPR compliant. You can find further information about this by clicking here.

Transfer to countries outside Europe

Nordic Leaders may transfer your personal data to countries outside the European Union and the European Economic Area. When we transfer any personal data to a country for which no adequacy decision of the European Commission exists, such transfer will be subject to the provisions of the standard contractual clauses adopted by the European Commission. If you wish to know more about international transfers of your personal data, you may contact us via the contact details above.

Recipients

We only share your personal data within the organization of Nordic Leaders if and as far as reasonably necessary to perform and develop our services, e.g. with our consultant, research and marketing employees.

We do not share your personal data with third parties outside of Nordic Leaders unless one of the following circumstances applies:

It is necessary for providing the services

To the extent Nordic Leaders engages third parties to perform services, Nordic Leaders has taken the appropriate contractual and organizational measures to ensure that your personal data are processed exclusively for the purposes specified in this Privacy Statement and in accordance with all applicable laws and regulations. Furthermore, we may provide your personal data to our affiliates or other trusted businesses or persons to process it for us, based on our instructions and in accordance with this Privacy Statement and any other appropriate obligations of confidentiality and security measures.

For legal reasons

We may share your personal data with third parties outside Nordic Leaders if we have a good-faith belief that access to and use of the personal data is reasonably necessary to: (i) meet any applicable law, regulation, and/or court order; (ii) detect, prevent, or otherwise address fraud, security or technical issues; and/or (iii) protect the interests, properties or safety of Nordic Leaders, our users or the public as far as in accordance with the law. When possible, we will inform you about such processing.

With your explicit consent

We may share your personal data with third parties outside Nordic Leaders for other reasons than the one mentioned before, when we have your explicit consent to do so. You have the right to withdraw this consent at all times.

Storage Period

Nordic Leaders does not store your personal data longer than legally permitted and necessary for the purposes for which the personal data were collected. The storage period depends on the nature of the personal data and the purposes of processing. The maximum period may therefore vary.

Your rights

How to exercise your rights

You have various rights with regard to your personal data that we process as described in this Privacy Statement. These rights include, in particular, the rights described below. However, these various rights may be subject to certain qualifications, such as arising from applicable laws or regulations by public authorities, which qualifications are not fully described below.

You may use these rights by sending a letter or e-mail, including your name, address, phone number and a copy of a valid ID to us on the addresses set out above. If your request regards personal data in a cookie, you have to enclose a copy of the said cookie. We may request the provision of additional information necessary to confirm your identity. We may reject requests that are unreasonably repetitive, excessive or manifestly unfounded.

Right to access

Nordic Leaders offers you access to your personal data that we process. This means that you can contact us and request us to inform you about the purposes of processing your personal data and the types of personal data involved.

Right to correct

You have the right to have incorrect/unprecise, incomplete, outdated, or unnecessary personal data we have stored about you corrected or completed.

Right to deletion

You may also ask us to delete your personal data from our systems. We will comply with such a request unless we have a legitimate ground to not delete the personal data.

Right to object

You may object to certain use of your personal data if such personal data are processed for other purposes than necessary for the performance of our services or for compliance with a legal obligation. You may also withdraw your prior consent to process your personal data. If you object to the further processing of your personal data, this may lead to fewer possibilities to use our websites and other services.

You have the right to opt out of receiving electronic direct marketing communications from us by clicking on the opt-out link provided in all marketing communications we send you and choosing not to receive marketing communications from us in the future. You also have the right to prohibit us from using your personal data for direct marketing purposes, market research and profiling by contacting us on the addresses indicated above.

Right to restriction of processing

You may request us to restrict certain processing of your personal data. If you restrict certain processing of your personal data, this may lead to fewer possibilities to use our website and other services.

Right to data portability

You have the right to receive your personal data from us in a structured, commonly used format in order to transmit the personal data to another controller.

Information security

We will take all reasonable, appropriate security measures to protect Nordic Leaders and our customers, candidates from unauthorized access to or unauthorized alteration, disclosure or destruction of personal data we hold. Measures include, where appropriate, encryption, firewalls, secure facilities and access rights systems. Should despite of the security measures, a security breach occur that is likely to have negative effects to your privacy, we will inform you about the breach as soon as reasonably possible.

Applicability

This Privacy Statement is applicable worldwide, to all of the services offered by Nordic Leaders. This Privacy Statement is published in English.

Right to make a complaint

You have the right to make a complaint with the data protection authorities concerning our processing of your personal data. You can make the complaint with the data protection authority of the EU member state where you have your permanent residence or where you work, or where you find that a potential breach with regard to your personal data has occurred. In Finland, the relevant data protection authority is the Data Protection Ombudsman.