Our company stores and processes personal data as required by the EU data protection regulation GDPR ((EU) 2016/679). This privacy notice describes why and how we process your personal data in connection with our business.

1. Controller 

Name: Wave Company Oy 

Business ID: 3254836-1

Address: Elimäenkatu 17-19

Postal code: 00510

Post Office: HELSINKI

Telephone number: 0404119646

Email address: 

2. Contact us

Company: Wave Company Oy

Data Protection Officer: Taija-Maija Korhonen 

Address: Kuortaneenkatu 2

Postal code: 00510

Post office: HELSINKI

Telephone number: 0405220901


3. Register name 

The register is related to the company's business management.

4. Purpose of use of the register 

We collect certain personal information about our current and potential customers, partners, freelancers looking for a new assignment through us and IT experts looking for a new job through Wave Company and our recruitment candidates. 

Personal data is collected so that we can, for example, process job applications, CVs, contacts and business requests sent to us. 

The customer's data is collected and processed with the customer's consent, or for the implementation of the contract with the customer. Collected personal data is used to maintain and develop the customer relationship. 

We also use analytics on our website to learn more about how our site is used and how we can improve its usability.

The storage of the information in the register is based either on a contractual relationship with our company, consent received from a person to store data, or our company's legitimate interest in collecting information in terms of the conditions of our business.

We process the IP addresses of our website visitors for purposes related to the use of cookies. The legal basis for processing is consent in accordance with the Act on Electronic Communications (917/2014).

5. Basis for data collection and processing

We collect and store information based on customer and work relationships and related to business, about potential new customers. The collection of possible new data is based on business activity.

We use information:

  • To manage the business relationship between us; 

  • To process sent requests and communications, to provide our services, and to protect Wave Company's legitimate interests in connection with the provision of such requests and services;

  • To promote our services and communicate with you; 

  • And, to analyze, plan and develop our operations.

Wave Company has a legitimate interest in processing the personal data listed above for the purposes described. This legitimate interest is based on your connection with us, and applies, for example, to your position in a company connected to us or to your direct Contact.

6. Information content 

Freelancers looking for a new assignment & IT experts looking for a new job

We collect the following information that we may have received during the contact process:

  • Your name and contact information;

  • Professional interests and skills;

  • Where would you like to work;

  • Link to your LinkedIn profile;

  • Application or cover letter, CV and other files/information that you yourself want to send to us; 

  • And, information related to the processing of the Application received in conversations, interviews and other communications between us and you.

We only use this information to process your application, to communicate with you and to find out the relevant professional information we need to find the most suitable jobs and/or projects for you. This means that we use this information to present your skills and work history to potential employers and partners who are looking for talent. We will not share your information with anyone else unless specifically required by applicable law or government order.

7. Data storage period

Personal data is stored as long as it is needed to implement the contract with the customer or to develop customer service.

We keep information about our current customers, new senders of cooperation requests, freelancers and recruitment candidates only as long as necessary for the respective purpose. 

Since the retention period depends heavily on the case, we regularly check the necessity of our data and delete the data when it is no longer needed based on the specified processing basis.

8. Regular data sources 

We collect your personal data from you, for example through the forms on our website, from our customers and partners.

From the registers kept by the authority within the limits allowed by law (e.g. 

Data is also collected using the Google Analytics analytics tool.

In addition, in connection with the business, for example in the acquisition of new customers, we can use, for example, names picked up from the media, which we can contact in a business sense.

9. Regular data releases and data transfer outside the EU or the European Economic Area 

Data is not regularly released outside the company.

Information will not be disclosed to parties operating outside the territory of the member states of the European Union or the European Economic Area.

10. Use of cookies 

We use so-called cookies on our website: cookie function, i.e. cookies. A cookie is a small text file that can be sent to the user's computer and stored there, which enables the website administrator to identify visitors who visit the website frequently, to facilitate the login of visitors to the website, and to enable the compilation of composite information about the visitors. With the help of this feedback, we are able to constantly improve the content of our pages. Cookies do not damage users' computers or files. We use them in such a way that we can offer our customers information and services according to the individual needs of each.

If the user visiting our pages does not want us to receive the above-mentioned information with the help of cookies, most browser programs enable the cookie function to be turned off. This is usually done through the browser settings.

However, it is good to take into account that cookies may be necessary for the proper functioning of some of the pages we maintain and the services we offer.

11. Protection 

The information contained in the register is stored in appropriate cloud services, where it is physically protected by firewalls, passwords, encryption and other generally accepted technical means in the information security industry. Physically maintained materials are located in premises to which access to unauthorized persons is blocked.

Only identified employees of the controller and companies acting on behalf of the controller have access to the information contained in the register. Log information is written about all personal data processing operations, so we can check when and by whom the personal data has been processed.

12. Automated decision-making

Automated individual decisions (Article 22 of the EU Data Protection Regulation) are not made.

13. Rights of registered person 

The registered person has the right to check what information concerning him has been stored in the personal data register. A written inspection request must be sent signed to the person responsible for registry matters.

The right of inspection is free of charge once a year at most

The registered person has the right to demand the correction or deletion of incorrect or outdated data or the transfer of data from one system to another. They also have the right to limit or object to the processing of his data in accordance with Articles 18 and 21 of the EU Data Protection Regulation.

The registered person has the right to withdraw the previously given consent to data processing or to file a complaint with the supervisory authority about matters related to the processing of their personal data.

The registrant also has the right to deny the use of their data for direct marketing purposes.

These issues and other questions are best resolved by contacting the controller's contact person mentioned above by email.

© 2024 Wave Company.