Our website does not collect or store e-mail addresses or any other personal or identifiable information about users without the user’s consent.
Information about the register
Event enrollment register
Information relating to those who enroll for the association’s events will be treated
confidentially, and the information will not be used for other purposes or passed on.
Only necessary information relating to the event is collected during enrollment.
The information from the event participant’s enrollment form is sent to the
association’s email address, email@example.com. From there the information is
transferred for storage on the membership register, because one of the uses of this
is in invoicing event participation. The name of this register is the membership
register of the Finnish Hemophilia Society (SHY). Personal information on the
membership register is kept confidential and the information is maintained in
databases that are protected by firewalls and passwords.
Retention and disposal of participant information
Participant information for events free of charge is destroyed immediately after the
event. Only the number of participants is recorded for monitoring and statistics.
For events with participation fee, SHY is required according to provisions of the
Finnish Accounting Act to retain the participant’s information for at least six years.
Only such information as is needed to verify the payment is retained; sensitive
information provided by the participant (such as health information and allergies) is
destroyed after the event. The number of participants is recorded for monitoring
Membership register of the Finnish Hemophilia Society (SHY)
TIETOTOIMISTO.FI – Privacy Polity
1 TECHNICAL ADMINISTRATOR OF THE REGISTER
Arts & Minds Oy
Address: Otsonkallio 2, 02110 Espoo
Tel. 09-5915 0590
2 CONTACT PERSON IN MATTERS REGARDING THE REGISTER
Arts & Minds Oy
3 REGISTER NAME
Tietotoimisto.fi service. Membership register software of the Tietotoimisto.fi service.
4 PURPOSE OF PERSONAL DATA PROCESSING
4.1 SERVICE USER ORGANIZATIONS
The information of the service’s user organizations is stored for invoicing and information purposes.
4.2 REGISTER OF MEMBERS
The user organizations of the Tietotoimisto.fi service store the information of their members in the service. Members’ information is used in the service for managing the member register, managing member magazines and other address lists, as well as member communication, membership fee invoicing and other management of member invoicing and member ledger. The main users of the service’s user organizations manage access rights to the information of the members of their own organization.
5 DATA CONTENT OF THE REGISTER
5.1 INFORMATION OF USER ORGANIZATIONS:
Suomen Hemofiliayhdistys ry. (SHY)
Föreningen för Blödarsjuka i Finland rf. (SHY)
The Finnish Hemophilia Society (SHY)
Siltasaarenkatu 4, 7 krs. 00530 Helsinki FINLAND
Puh/Tel: +358 50 323 1356
5.2 MEMBER REGISTER
The following information can be stored in the Tietotoimisto.fi service:
- Name and contact information of the member
- Information related to membership (member type, etc.)
- Username and password for maintaining your own contact information
6 PERSONAL DATA STORAGE PERIOD
Personal data in the member register service is stored as long as the customer exists. Information
deleted after termination of the customership as part of normal deletion routines.
Personal data appearing in the log data, excluding personal IDs, is stored for 2-24 months.
7 REGULAR INFORMATION SOURCES
Information entered into the system by service user organizations or information sent to the service provider.
8 REGULAR TRANSFER OF DATA
The service provider does not make regular disclosures of data.
9 DATA TRANSFER OUTSIDE THE EU OR EEA
Data is not transferred outside the EU or EEA.
10 REGISTRY PROTECTION PRINCIPLES
Personal information is kept confidential. The data is collected in databases that are firewalled and
password protected. Communication connections are protected with TLS protection. Databases and their
backups are located in locked and guarded premises. Only Arts & Minds Oy has access to the information
by persons working in maintenance.
The servers are protected by virus protection, firewalls, passwords, information security practices and access is limited only for certain people. The servers’ information security updates are kept up-to-date.
Only those people in user organizations who need information from the personal register for the operation of the organization have access to the register and the members of their own organization with the help of a personal password. User organizations manage the users themselves.
Only persons who are committed to confidentiality have access to personal data on behalf of the service provider or are subject to an applicable statutory duty of confidentiality.
The service uses certified server facilities (Mediam Oy) located in Finland to the capital region, close to fast network connections. Server space is designed to be critical as an investment space for server systems that require operational reliability, and they offer technically advanced and a secure environment for our data systems. The server space meets the requirements of the Finnish Communications Regulatory Authority, class A for equipment premises (Communications Agency 48 A/2003, “Important premises”). The security of our server space is taken care of e.g.
with the following measures:
- Security services
- Camera surveillance 24/7/365
- Burglary protection
- Electronic alarm system (e.g. motion detection)
- Access control system
- air conditioning: regulated temperature and humidity
- uninterruptible power system (UPS)
- fire protection and fire alarm system
11 RIGHT OF INSPECTION
According to the Personal Data Act, the registered person has the right to check the information about himself stored in the register and to receive copies of it. The inspection request must be made in writing and addressed to the person responsible for registry matters.
12 RIGHT TO DEMAND CORRECTION OF INFORMATION
The controller corrects, deletes or completes what is in the register, in terms of the purpose of the processing at the request of the data subject of incorrect, unnecessary, incomplete or outdated personal data. The registered person must contact the person responsible for the registry affairs of the registrar for information for correction.
13 OTHER RIGHTS RELATED TO PERSONAL DATA PROCESSING
According to the Personal Data Act, the registered person has the right to prohibit the controller from processing him/her information regarding direct advertising, distance sales and other direct marketing as well as market and for an opinion poll. The registered person should contact the person in charge of the registry affairs of the registrar to the person to enforce the ban.
14 CHANGES TO THIS PRIVACY STATEMENT
Arts & Minds Oy reserves the right to change this privacy statement.