Privacy Policy

General Information

Newsme Corporation Oy Ltd, business ID: 3198608-7 (hereinafter the “Company”, “we” or “us”) acts as a controller in relation to the processing of personal data in connection with your use of our mobile application named Scoop (hereinafter the “App”). This privacy policy describes how the Company processes personal data; e.g., what kinds of personal data we collect, for which purposes the personal data is used and to which parties the personal data can be disclosed. The Company is committed to being transparent about how we collect and use personal data and how we meet our data protection obligations. This privacy policy applies to the users of the App. The App is a short-video app where the users can watch the fact-based short-videos made by influencers, and earn achievements in the App.

Personal data refers to any information relating to a natural person (“data subject”) that can identify him/her directly or indirectly. Personal data, data subject, controller and other key terms are defined in the General Data Protection Regulation (2016/679, “GDPR”). The Company complies with the GDPR in all processing of personal data in conjunction with other applicable national data protection legislation (“data protection legislation”).

The App may also contain links to external websites and services operated by other organizations that we do not manage. This privacy policy is not applicable to their use, so we encourage you to review the privacy policies that apply to them. We are not responsible for the privacy policies of other websites or external services.

Minors

The App is not intended for children under 13 years of age. If you are under 13, please do not use the App. If we learn that we have collected or received personal data from a child under 13, we will delete that personal data. If you believe we might have any information from or about a child under 13, please contact us at support@scoop.video.

Contact Information

Controller: Newsme Corporation Oy Ltd
Business ID: 3198608-7
Address: Panimokatu 2 A, 00580 Helsinki, Finland
Email: support@scoop.video
Controller representative: Iiro Lahdenranta, iiro@scoop.video

Personal data will be processed for the following purposes based on the defined legal bases:

  • Provision of our services and the App (contract or its preparation, legitimate interest)
  • Developing and improving our services and the App through analytics (consent)
  • Ensuring security of our services and the App and preventing abuses (statutory obligation or our legitimate interest)
  • Complying and fulfilling our legal duties and obligations such as tax law and accounting related obligations (statutory obligation)
  • Establishing, exercising, or defending against legal claims (statutory obligation or our legitimate interest).

For processing activities that are based on a legitimate interest, we have carefully balanced such legitimate interest with the data subjects’ right to privacy and concluded that our interest outweighs the data subjects’ rights and freedoms.

Where the processing is such that a consent is required by the applicable legislation, we will state so and obtain the consent, and this will be the legal basis for the processing. However, you have the right to withdraw that consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal. If such withdrawal means that we are no longer able to provide our services and the App, we may cease to provide the services and the App.

What Data is Collected, Stored and Processed?

The Company collects only such personal data from the data subject that is relevant and necessary for the purposes described in this privacy policy.

The following personal data from the data subjects will be processed:

  • Login details and usage details
  • Data relating to the device you use to access the App, device-specific data
  • Application related data, such as retention time, interactions, and activities data regarding videos
  • Information collected through cookies or other tracking technologies, i.e., analytical data

Data Sources

The personal data is collected directly from the data subjects themselves, for example, when downloading and using the App, and personal data may also be collected automatically when the data subject downloads and uses the App.

Retention of Personal Data

We retain personal data only for a period that is necessary to achieve the purposes for which personal data is processed, unless there is a legal obligation to retain personal data for a longer period of time (for example, responsibilities and obligations under specific legislation, accounting or reporting obligations). The periods vary greatly from one type of processing to another. The Company may retain information for a longer period of time if it is required, for example, to exercise a legal claim, to defend a legal claim, or to settle a similar dispute. In general, we observe the following criteria for retaining and deleting personal data:

  • Account information of users of the App is retained for the duration of using the App, i.e. when the App and thus, the account is deleted, all account-specific analytical data will be deleted.
  • In relation to the security of our services and preventing abuses, personal data is processed for the duration of the investigation of abuses or other harmful user experiences.
  • Personal data is stored for as long as a certain legal obligation requires. For example, the Accounting Act imposes an obligation to maintain information on the accounting’s supporting material for 6 years following the end of the financial year.
  • Full legal name and email address of persons reporting either copyright or trademark infringements

Detailed retention times can be provided upon requests.

We evaluate the necessity and accuracy of the personal data on a regular basis and endeavor to ensure that the incorrect and unnecessary personal data are corrected or deleted.

Disclosures, Transfers and Recipients of Personal Data

For the purposes stated in this privacy policy, the personal data may be disclosed, when necessary, to authorities and to selected third parties, such as third-party service providers. In such case, the personal data will only be disclosed for purposes defined above and any disclosure is always limited to only the strictly necessary personal data included in such purposes.

We do not sell or otherwise disclose personal data to third parties outside the Company for such third parties’ own purposes.

In addition, we may share the personal data in connection with any merger, sale of our assets, or a financing or acquisition of all or a portion of our business and in connection with other similar arrangements.

The personal data is also disclosed to third parties if required under any applicable law or regulation or order by competent authorities, and to investigate possible infringing use of the services and the App as well as to guarantee the safety and usability of the services and the App. In the event of emergencies or other unexpected circumstances, the Company may be required to disclose the personal data of registered persons in order to protect human life, health and property.

In order for the Company to provide the services, personal data is processed also by the following actors. List of the processors and other recipients:

  • Google LLC

Data Transfers Outside the EU/EEA

The Company’s main principle is that personal data is processed within the European Union (EU) or the European Economic Area (EEA). All the data centers that the Company uses to store data, are located in the EU/EEA, as well as the cloud service storages used.

Some of the services used by the Company for processing personal data may operate outside the territory of the EU or the EEA. Thus, personal data can be transferred outside the European Union and the European Economic Area.

In case personal data is transferred outside the EU/EEA, such transfers are either made to a country that is deemed to provide a sufficient level of privacy protection by the European Commission or transfers are carried out by using appropriate safeguards such as Standard Contractual Clauses (SCC) adopted, including any supplementary measures, where assessed to be necessary, or otherwise approved by the EU Commission or competent data protection authority in accordance with the GDPR.

The following recipients may transfer personal data outside the EU/EEA:

  • Google LLC (USA)

Protection of Personal Data

Securing the integrity and confidentiality of personal data is important to the Company. We have taken appropriate technical and organizational measures in accordance with industry standards in order to keep personal data safe and to secure it against unauthorized access, loss, misuse or alteration by third parties, such as by firewalls, physical security measures, access controls, assignment of access rights, encryption and active monitoring of the aforementioned measures.

Nevertheless, considering the cyber threats in modern day online environment, we cannot give full guarantee that our security measures will prevent illegally and maliciously operating third parties from obtaining access to personal data or absolute security of the personal data during its transmission or storage on our systems.

All parties processing personal data have a duty of confidentiality in matters related to the processing of personal data. Access to personal data is restricted to those employees and parties who need it to perform their duties. We also require our service providers to have appropriate methods in place to protect personal data.

Use of Cookies and Similar Technologies

The Company uses Google Analytics for Firebase. For more information, please see www.google.com/policies/privacy/partners/.

Automated Decision-Making and Profiling

The Company does not use any automated decision-making nor any profiling pursuant to the Article 22 GDPR.

Rights of the Data Subjects

The data subject has several rights under applicable data protection laws.

Right to access and right of inspection

The data subject has the right to obtain confirmation as to whether or not personal data concerning them is being processed.

The data subject has the right to inspect and view data concerning them and, upon a request, the right to obtain the data in a written or electric form. This applies to information that the data subject has provided to the Company insofar the processing is based on a contract/consent.

Right to rectification and right to erasure

The data subject has the right to demand the rectification of incorrect personal data concerning them and to have incomplete personal data completed.

The data subject has the right to require the Company to delete or stop processing the data subject’s personal data, for example where the data is no longer necessary for the purposes of processing.

However, please note that certain personal data is strictly necessary in order to achieve the purposes defined in this privacy policy and may also be required to be retained by applicable laws.

Right to data portability

The data subject has the right to receive the personal data that he or she has provided to the Company in a structured, commonly used, and machine-readable format and, if desired, transmit that data to another controller. The right to data portability applies on the processing of the personal data based on consent or a contract.

Right to restriction of processing

The data subject has the right, under conditions defined by data protection legislation, to request the restriction of processing of his or her personal data. In situations where personal data suspected to be incorrect cannot be corrected or removed, or if the removal request is unclear, the Company will limit the access to such data.

Right to object to processing

The data subject has the right to object to the processing of your personal data where the Company is relying on its legitimate interests as the legal ground for processing. For example, the data subject may object to his or her personal data being used for marketing purposes.

In cases where the processing is based on the data subjects’ consent, the data subject has the right to withdraw his or her consent to such processing at any time.

Right to lodge a complaint with a supervisory authority

The data subject has the right to lodge a complaint with a competent data protection authority if the data subject considers that the processing of personal data relating to the data subject infringes current legislation.

However, we request that the matter will be dealt with the Company in the first instance.

The relevant authority in Finland is the Data Protection Ombudsman (http://www.tietosuoja.fi).

Exercising Rights

Requests regarding the rights of data subjects shall be made in written or in electronic form, and the request shall be addressed to the controller, the Company, using the contact details mentioned on this privacy policy.

Identity will be checked before the information is given out, which is why we may have to ask for additional details. The request will be responded to within a reasonable time and, where possible, within one month of the request and the verification of identity.

If the data subject’s request cannot be met, the refusal shall be communicated to the data subject in writing. The Company may refuse the request (for example erasure of data) due to a statutory obligation or a statutory right of the company, such as an obligation or a claim relating to our services. Please note that the Company may charge a reasonable fee where requests from a data subject are manifestly unfounded or excessive, in particular because of their repetitive character.

The data subject may exercise the aforementioned rights by sending a written request by email or mail using the contact information provided in this privacy policy.

If you have any questions relating to our data protection policies or wish to exercise your rights, please do not hesitate to contact us.

Changes to this Privacy Policy

The Company may make changes to this privacy policy at any time by giving a notice on the App and/or by other applicable means. The data subjects are highly recommended to review the privacy policy (https://scoop.video/privacy) every now and then.

If the data subject objects to any of the changes to this privacy policy, the data subject should cease using the App, where applicable, and he/she can request that we remove the personal data, unless applicable laws require us to retain such personal data. Unless stated otherwise, the then-current privacy policy applies to all personal data we process at the time.

This privacy policy has been published on 1st of September 2022, version 1.0.

Version History

3.0, Removed reference to Smart Points, 30.8.2023.
2.0, Added personal information being collected when reporting copyright or trademark infringements, 12.09.2022.
1.0, Document created, 01.09.2022