Why do we handle your personal data?
Personal data is used for organising events, stakeholder cooperation, and communication.
Why are we allowed to handle your personal data?
The handling of personal data is based on an EU-wide General Data Protection Regulation (GDPR). The grounds of handling data are granted by approval of the registrant.
In event-participations, we handle also private data (e.g. information regarding diet). The grounds of handling such private data are granted by approval of the registrant.
Do we use automated decision-making or profiling?
We do not automate decisions or use profiling. Automated decisions mean a decision based on an evaluation of an individual’s certain attributes, which is only done via means of automated personal data handling and has either a judicial or an otherwise significant impact on the registrant. Examples of automated decision-making are e.g. creditworthiness and profiling.
Profiling means the automated handling of personal data, which evaluates the personal attributes of an individual. Profiling specifically means the analysis and prediction of an individual’s job performance, economic situation, health, personal preferences and interests, credibility, behaviour, location, or movement. Profiling is either fully or partially automated, is focused on personal data, and evaluates the personal data of an individual.
University of Eastern Finland, Kuopio
Yliopistonranta 1, P.O. Box 1627, 70211 Kuopio
Tel. +358 294 45 1111 (switch)
Deputy of Register Controller:
Jukka Mönkkönen, Headmaster
Mikael von und zu Fraunberg, Director at Neurocenter Finland
Contacts for Register Controller:
Emmi Reijula, Senior Specialist
Jani Miettinen, Data Scientist
Sanna-Maria Nurmi, Account Manager
Contact for Data Protection:
Helena Eronen, Data Protection Officer
Joensuu Campus, Aurora 3023
Tel. +358 294 45 8187 email@example.com
We handle the following personal data:
Name, contact information (email, home address, telephone number, organisation data, field of research, diet).
Retention of data: Data is retained as long as required to carry out the service.
Where is the personal data acquired from for the data handling?
From the registrant.
Regulatory data transfer and release:
Signing up for the event is done through a data system of Avidly. All handling of personal data is based on a data handling agreement between the University of Eastern Finland and Avidly.
Information regarding individual diets is transferred to the overseeing personnel of the event’s catering.
Data transfer and release outside of the EU or the ETA:
Personal data is not transferred outside of the EU or the ETA.
Personal data is handled through the following information system: WordPress.
Cookies are used in the browser-based information systems of personal data handling. A cookie is a small text file saved to the user’s device by its browser. Cookies are utilised to execute services, ease the log-in process of services, and to compile statistics of a given service. A user can disable cookies by modifying the browser settings, but doing so may prevent the correct functionality of a system.
Browser-based systems: WordPress
How do we protect your personal data?
The data security regulations and guidelines of the University of Eastern Finland are followed in all information systems handling personal data. In technical terms, the information systems and their user interfaces are protected by e.g. firewalls and a backup copy of the system data is executed regularly as a safety measure.
Access rights of information systems are limited through access right groups so that each user has only access to the data required in their given job.
Persons who are employed by the university and who carry out positions of trust are subject to the duty of confidentiality in accordance with section 23 of the Act on Publicity of Government Activities. In addition, university employees may not use or disclose the employer’s professional or business secrets to others during the employment relationship (Chapter 3, Section 4 of the Employment Contracts Act).
All confidential data, along with their time of retention, archiving, or disposal are defined in the records management programme of the University of Eastern Finland.
What rights do you have?
You have the right to:
– check any data concerning yourself
– request for correction of data
– demand deletion of your data (does not apply to legal tasks)
– demand limitation of handling your personal data
– oppose the handling of your personal data
– request the transfer of personal data provided by yourself to another register controller
– cancel your approval, if the personal data handling is based on approval
– not become a target of automated decision-making
To exercise your rights, you can submit a request either via the university’s services (staff, students) or through a form acquired from the university’s website. Alternatively, you can contact the data protection officer of the university.
You have the right to file a complaint to the Office of the Data Protection Ombudsman, if you feel that the handling of your personal data does not comply with the current legislation of data protection.
Contact information: Office of the Data Protection Ombudsman, P.O. Box 800, 00521 Helsinki firstname.lastname@example.org
For further information and guidance, you can contact the officer of data protection:
University of Eastern Finland Data Protection Officer Helena Eronen P.O. Box 111, 80101 Joensuu email@example.com Tel. +358 294 45 8187 Joensuu, Aurora 3023