Register statement and privacy policy statement

Register statement and privacy policy statement

1. Data controller

TIEKE Tietoyhteiskunnan kehittämiskeskus ry
Työpajankatu 13, 2nd floor
00580 Helsinki
Tel +358 9 4763 0400

2. Person responsible for the register

Timo Simell
TIEKE Tietoyhteiskunnan kehittämiskeskus ry
Työpajankatu 13, 2nd floor
00580 Helsinki
Tel +358 9 4763 0400
Email: firstname.lastname@tieke.fi

3. Name of the register

TIEKE’s customer and member register

4. Purpose of data processing

Personal data is processed for the purposes of managing and analysing customer relationships, memberships and other relevant relationships, providing and personalising services, developing and planning operations, marketing and customer and member communications.

5. Data contents of the register

The following data may be processed in the register for all data subjects:

  • first and last name
  • contact information (postal address, telephone number, e-mail address)
  • organisation
  • title
  • username.

Necessary information relating to the activities, services and events described in paragraph 4, and to marketing and communication activities, such as service, use, billing, visiting, marketing authorisation and authentication data.

Data content may vary by service. The data contents are described in more detail in the service-specific descriptions, which can be found alongside the services on their websites.

6. Regular data sources

Personal data is collected from the data subject himself or herself, from the contact persons of the member companies, from the personal data sources of companies and individuals, as well as from the service, visiting and other events listed in paragraph 4. Data may also be collected, stored and updated from the websites of companies and entities, as well as from the registers of data controllers providing address, update or other similar services or from other similar reliable sources.

7. Data retention

After the end of the processing purpose referred to in paragraph 4, the data of data subjects may be transferred to TIEKE’s communications register on the basis of legitimate interests. If the data is not transferred as described above, the data will be deleted within approximately one year after the end of the last activity or proper connection, unless otherwise provided for in other legislation such as in the accounting regulations.

8. Processing, disclosure and transfer of data

As a rule, personal data is processed within the European Union or within the European Economic Area. On the basis of a cooperation agreement between the parties, TIEKE may use subcontractors for the technical, commercial or operational execution of data processing tasks.

If personal data is processed outside the European Union or the European Economic Area, TIEKE ensures that there is a legal basis for it.

Personal data may be transferred to TIEKE’s marketing and communications partners for marketing and communication activities carried out on behalf of TIEKE.

Information may be disclosed to the competent authorities within the limits of the GDPR (General Data Protection Regulation). Otherwise, TIEKE will not disclose personal data to third parties without the consent of the data subject.

9. Protection of the register

The register is used only by persons whose job description expressly includes its use. The databases and their backups are located in locked areas and are protected by firewalls, passwords and other technical safeguards.

10. Right of inspection and prohibition

The data subjects have the right to inspect their personal data contained in the customer and member register. A written request for inspection must be sent by e-mail to tieke@tieke.fi. The request for inspection may also be made in person at the controller’s office at the abovementioned address. An inspection request may be made free of charge once a year.

Data subjects have the right to prohibit the use of their data for direct advertising, distance selling or other direct marketing, and for opinion polls and market research, and the right to request correction of incorrect information by contacting tieke@tieke.fi.

In the case of e-mail communication, the data subject should use the e-mail address which he/she expects to be in the TIEKE data concerning him or her. In addition, TIEKE may, if necessary, request additional information or clarification for the verification of identity.

11.Right to lodge a complaint with a supervisory authority

The data subject has the right to lodge a complaint with the supervisory authorities if the data subject considers that his or her rights have been infringed in the light of the GDPR.

12. Deletion of data

Data subjects have the right to have their personal data contained in the customer and member register deleted. A written request for data deletion must be sent by e-mail to tieke@tieke.fi. The request for data deletion may also be made in person at the data controller’s office at the above address.

In the case of e-mail communication, the data subject should use the e-mail address which he/she expects to be in the TIEKE data concerning him or her. In addition, TIEKE may, if necessary, request additional information or clarification for the verification of identity.

13. Updating the register statement and privacy policy statement

TIEKE continuously develops its operations and therefore reserves the right to change this statement by notifying about it in the Services. The changes may also be based on changes in legislation.

This statement was last updated on 30 April 2020

TIEKE’s communications register

1. Data controller

TIEKE Tietoyhteiskunnan kehittämiskeskus ry
Työpajankatu 13, 2nd floor
00580 Helsinki
Tel +358 9 4763 0400

2. Person responsible for the register

Hanna Vuohelainen
TIEKE Tietoyhteiskunnan kehittämiskeskus ry
Työpajankatu 13, 2nd floor
00580 Helsinki
Tel +358 9 4763 0400
Email: firstname.lastname@tieke.fi

3. Name of the register

TIEKE’s communications register

4. Purpose of data processing

The information in the communications register enables communication with those interested in TIEKE’s activities, as well as with potential partners and customers. The various channels of communication provide information about TIEKE’s activities, events and service offerings as well as changes in these events, and address current digitalisation issues. The register can also be used for research and development activities.

The purpose of using personal data concerning potential customers and partners is to market and communicate about TIEKE’s services, products, events and projects.

5. Data contents of the register

The communications register may contain the following information:

  • first and last name
  • contact information (postal address, telephone number, e-mail address)
  • organisation
  • title
  • username
  • marketing authorisation and prohibition information

6. Regular data sources

The data in the register is collected primarily from the data subjects themselves (e.g. when subscribing to a newsletter, downloading guides or participating in events).

Data may also be collected, stored and updated from the websites of companies and entities, as well as from the registers of data controllers providing address, update or other similar services or from other similar reliable sources.

7. Data retention

The data is stored in the communications register until the person unsubscribes from either the newsletter or the event message. The data subject can unsubscribe from newsletters and event invitations through the link in the messages, and their data will be deleted from the communications register. In such cases, however, the communications register may retain information about the withdrawal.

The personal data of potential customers is stored in the communications register as long as the data subject is assigned to a task the marketed product or service is related to. The data subject may prohibit marketing (marketing ban). In such cases, however, the communications register may retain information about the marketing ban.

8. Processing, disclosure and transfer of data

As a rule, personal data is processed within the European Union or within the European Economic Area. On the basis of a cooperation agreement between the parties, TIEKE may use subcontractors for the technical, commercial or operational execution of data processing tasks.

If personal data is processed outside the European Union or the European Economic Area, TIEKE ensures that there is a legal basis for it.

Personal data may be transferred to TIEKE’s marketing and communications partners for marketing and communication activities carried out on behalf of TIEKE.

Information may be disclosed to the competent authorities within the limits of the GDPR (General Data Protection Regulation). Otherwise, TIEKE will not disclose personal data to third parties without the consent of the data subject.

9. Protection of the register

The register is used only by persons whose job description expressly includes its use. The databases and their backups are located in locked areas and are protected by firewalls, passwords and other technical safeguards.

10. Right of inspection and prohibition

The data subjects have the right to inspect their personal data contained in the communications register. A written request for inspection must be sent by e-mail to tieke@tieke.fi. The request for inspection may also be made in person at the controller’s office at the abovementioned address. An inspection request may be made free of charge once a year.

Data subjects have the right to prohibit the use of their data for direct advertising, distance selling or other direct marketing, and for opinion polls and market research, and the right to request correction of incorrect information by contacting tieke@tieke.fi.

In the case of e-mail communication, the data subject should use the e-mail address which he/she expects to be in the TIEKE data concerning him or her. In addition, TIEKE may, if necessary, request additional information or clarification for the verification of identity.

11.Right to lodge a complaint with a supervisory authority

The data subject has the right to lodge a complaint with the supervisory authorities if the data subject considers that his or her rights have been infringed in the light of the GDPR.

12. Deletion of data

Data subjects have the right to have their personal data contained in the customer and member register deleted. A written request for data deletion must be sent by e-mail to tieke@tieke.fi. The request for data deletion may also be made in person at the data controller’s office at the above address.

In the case of e-mail communication, the data subject should use the e-mail address which he/she expects to be in the TIEKE data concerning him or her. In addition, TIEKE may, if necessary, request additional information or clarification for the verification of identity.

The data subject can unsubscribe from newsletters and event invitations through the link in the messages, and their data will be deleted from the communications register.

13. Updating the register statement and privacy policy statement

TIEKE continuously develops its operations and therefore reserves the right to change this statement by notifying about it in the Services. The changes may also be based on changes in legislation.

This statement was last updated on 30 April 2020.