PRIVACY POLICY IN ACCORDANCE WITH § 10 AND § 24 OF PERSONAL DATA ACT (523/99)
- Controller and contact details of the controller
University of Helsinki
Centre for Continuing Education HY+
P.O. Box 53 (Fabianinkatu 32)
FI-00014 University of Helsinki
- Contact in registration-related matters
Requests for contact in register-related matters shall be submitted via e-mail (info@hyplus.fi). A representative of University of Helsinki Centre for Continuing Education HY+ will respond to any register-related questions or feedback within two weeks of receiving the request for contact.
- Name of the register
University of Helsinki Centre for Continuing Education HY+’s Marketing Register
- Aim of processing personal details
The purpose of the processing of personal data is to manage the customer relationship, to implement customer’s and HY+’s rights and duties, to use the personal details in accordance with Personal Data Act in online service purposes, research activities, and directing HY+’s advertising and/or direct marketing of the Controller and/or customer communication through HY+’s communication media channels and services without disclosing any personal data to external parties.
The personal data is retained in the Marketing Register as long as HY+ sees it to be necessary or the customer wishes to stay on the mailing list. The customer can unsubscribe from the mailing list after which their information will be deleted from the Register in accordance with the data protection guidelines.
- Information the register contains
Different kind of information is compiled in the Register based on the purpose it is used for. The register may include for example following information about the customer:
- Name
- E-mail address
- Mobile phone number
- Company and position
- Company’s address
- Access log
- Register’s sources of information
The register is compiled based on HY+’s customer data system and public internet sources.
- Disclosure of information according to rule
The controller will not disclose customers’ personal data to external parties, except when it is necessary to the arrangements of the provided service or required by the Finnish authorities for the purpose of performing their statutory duties. The data will not be transferred outside the European Union or the European Economic Area.
- How we use cookies
We use cookies on our website. The cookies we use do not store personally identifiable information. By using our website, you agree to the use of cookies and other technologies as set out in this policy. You can disable, reject or block the cookies by changing the settings of the browser you are using. In this case, however, our website may not function fully.
- Deletion and adjusting of information
Information can be removed from the register based on a personal request or due to the termination of a customer relationship. The customer has also a right to demand adjustment of incorrect information.
- Right of Inspection
Customers have the right to inspect their personal details in the Register unless otherwise provided by the Personal Data Act. Requests must be made in person or in writing (signed in person). Requests are addressed to the contact information provided in paragraph 1. or submitted on an appointment booked in advance. The identity must be verified with a valid and official ID. HY+ aims to answer the requests within 30 days.
- Principles of protecting the register
Personal data is kept confidential. The information network and hardware, where the register is located and used by the controller and it’s IT partners, if any, are protected by firewall and other necessary technical measures. The register’s security measures comply with the data security policy of University of Helsinki Centre for Continuing Education HY+.
Those using the register are the staff members of University of Helsinki Centre for Continuing Education HY+, who are committed to observe the rules laid down in the Act on the Openness of Government Activities (621/1999) and elsewhere in the Finnish law.
The same processing procedures described above apply to both manual and electronic data sets.
- Right of veto
The customer has a right to deny the disclosing and using of their information to direct mail advertising and other marketing activities.
13.1.2021