You are here

Do we share Personal Data about you with others?

Only persons within Neste who need to process Personal Data for carrying out their tasks have access to Personal Data. All of them are subject to an obligation of confidentiality.

When we share Personal Data with other organizations, we make sure that we share it  in accordance with this Privacy Policy and we always ensure that we have a legal basis for doing so. Such organizations include other companies within the Neste group, third party service providers and our distribution partners. Please see below for a description of service providers and other organizations that we share Personal Data with.

Sharing with Neste Group companies

We share Personal Data within the Neste Group when needed to fulfil the purposes we have listed in this Privacy policy. For example, we share Personal Data with other Neste Group members in order to carry out administration and credit or other financial control.

ICT service providers and suppliers

We use carefully selected information and communication technology (“ICT”) service providers for development, implementation, support, and maintenance of our applications and information technology infrastructure. 

Marketing services and customer service providers

We use carefully selected digital marketing service providers, communications service providers and media agencies to help us deliver and present our marketing content based on the Personal Data we collect about our customers, but such service providers can use your Personal Data only to provide services to us, and not for their own marketing purposes. 

Payment and invoice service providers

Our payment and invoice service providers help us complete transactions with you.

Credit control and other due diligence services

We share Personal Data with carefully selected credit reporting agencies in order to assess your orders, to evaluate your credit worthiness and, where necessary, to collect overdue payments from you announce the unpaid debt you have to Neste. Where necessary, our partners also carry out mandatory background checks on our behalf which allows us to fulfil our obligations as a payment service provider to combat anti-money laundering and terrorism financing.

Transport services, delivery partners, and product suppliers

We disclose Personal Data to transport service providers, delivery partners, and product suppliers when we need to do so for responding to your request for products or services or fulfilling customer orders, for example for delivering ordered products to our customers. We may also disclose your Personal data to reach out to you as a potential buyer of our product.

Other partners

We disclose Personal Data to our service provider partners to ensure, for example, that they provide you with the appropriate benefits. 

Required Disclosures 

Except as otherwise described in this Privacy Policy, we will not disclose your Personal Data to any third party unless required to do so by law, court order, legal process, or subpoena, including to respond to any government or regulatory request, or if we believe that such action is necessary to: (a) comply with the law, comply with legal process served on us or our affiliates, subsidiaries, contracted vendors, or affinity partners, or investigate, prevent, or take action regarding suspected or actual illegal activities; (b) enforce our Terms (including for billing and collection purposes); (c) take precautions against liability; (d) investigate and defend ourselves against any third-party claims or allegations; (e) assist government enforcement agencies or to meet national security requirements; (f) to protect the security or integrity of our Site, our services, or any software we provide related thereto; or, (g) exercise or protect the rights, property, or personal safety of us, our users, or others.

We will attempt to notify you about these requests unless: (i) providing notice is prohibited by the legal process itself, by court order we receive, or by applicable law, or (ii) we believe that providing notice would be futile, ineffective, create a risk of injury or bodily harm to an individual or group, or create or increase a risk of fraud upon us, our users, our Site, or our Services. In instances where we comply with legal requests without notice for these reasons, we will attempt to notify that user about the request after the fact if we determine in good faith that we are no longer legally prohibited from doing so and that no risk scenarios described in this paragraph apply.

It is likely that the identity and categories of such third parties will change during the life of your account. We require that our third-party service providers only use your Personal Data as necessary to provide the requested services to us and each service provider is subject to a set of terms consistent with the applicable portions of this Privacy Policy.

 

Disclosure of De-Identified Personal Data: 

We may share De-Identified Personal Data with third parties for any purpose. “De-Identified Personal Data” means Personal Data that has been deidentified, pseudonymized, anonymized, aggregated, and/or otherwise processed so as to be unidentifiable in such a way that the data can no longer be attributed to a specific individual (by reasonable means) without the use of additional information, and where such additional information is kept separate and under adequate security to prevent unauthorized re-identification of a specific individual such that one could not, using reasonable efforts, link such information back to a specific individual. 

De-Identified Personal Data or non-personal data may be aggregated for system administration and to monitor usage of the Site. It may be utilized to measure the number of visits to our Site, average time spent, number of pages viewed and to monitor various other Site statistics. This monitoring helps us evaluate how visitors use and navigate our Site so we can improve the content. We may share De-Identified Personal Data or anonymous information (including, but not limited to, anonymous usage data, referring/exit pages and URLs, IP address, platform types, number of clicks, etc.) with interested third parties to help them understand the usage patterns for certain Services, and for any other purpose we deem appropriate. We may disclose, sell, rent, etc., your De-Identified Personal Data to third parties and we may receive valuable consideration for doing so.

Your Consent to Disclosure/Transfer/Sale of Your Personal Data. You consent to our disclosure of your Personal Data and other information to a potential or actual buyer of our company or other successor for the purpose of considering a merger, divestiture, restructuring, reorganization, dissolution, change in control, or sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation or other court proceeding, in which Personal Data held by us is among the assets transferred. You agree to and do hereby consent to (and shall not object to) our assignment, conveyance, transfer, and/or license (whether by contract, merger or operation of law) of any or all of our rights to your Personal Data and your consents, in whole or in part, and other information, with or without notice to you and without your further consent.