Principally, we do not sell, trade or license any personal data to third parties. Companies belonging to the Fortum group of companies may process personal data in accordance with existing privacy laws. Personal data may be disclosed to our authorized employees or affiliates to the extent necessary for the purpose of processing. The data will never be available to all employees but to a limited number of authorized persons.
We also use third parties as our data processors to help process personal data on our behalf. When a third party processes personal data on our behalf, we always ensure via contractual arrangements that the processing of personal data is always conducted safely and in accordance with privacy laws and data processing best practices.
List of categories of the third parties processing data (=data processors):
- Recruitment and head hunting companies
- Personnel assessment companies
- Authorities responsible for security/background clearance
- Debt collection service providers
- Health service companies (health certificates, possible drug tests)
In addition, personal data may be disclosed to authorities when we are required to do so by law, based on demands made by competent authorities in accordance with existing privacy laws.