Ceepos cash management system’s privacy statement | SeAMK

Ceepos cash management system's privacy statement

Articles 13 and 14 of the EU General Data Protection Regulation

Data Protection Act (1050/2018)

Articles 13 and 14 of the Combined Data Subject Information Document (EU Data Protection Regulation 2016/679)

1. Controller

Seinäjoki University of Applied Sciences
Kampusranta 11, Frami F
FI-60320 Seinäjoki, Finland
+358 20 124 3000
seamk(at)seamk.fi

2. Controller’s representative

Asmo Myllyaho, Head of Property and Information Management, Seinäjoki University of Applied Sciences
tel. +358 40 830 4262
asmo.myllyaho(at)seamk.fi

2a. Official responsible for the personal data file

Pilvi Aarnio, Controller, Seinäjoki University of Applied Sciences
tel. +358 40 680 7270
pilvi.aarnio(at)seamk.fi

2b. Contact persons in matters relating to the data file

Kirsi Ollila, Chief Accountant, Seinäjoki University of Applied Sciences
tel. +358 40 680 7588
kirsi.ollila(at)seamk.fi

2c. Contact details of the Data Protection Officer

Jarmo Jaskari, Data Protection Officer, Seinäjoki University of Applied Sciences
tel. +358 40 868 0680
jarmo.jaskari(at)seamk.fi

3. Name of the data file

Ceepos cash management system and online payment service of the Seinäjoki University of Applied Sciences – register of users (for official use).

4. Purpose of processing personal data/data file use

Reception of cash transfers and online payments. The Ceepos system is used by the customers of the Seinäjoki University of Applied Sciences. Their personal data is not entered in the Ceepos cash management system. The data subjects are staff members of the Seinäjoki University of Applied Sciences.

5. Purpose of maintaining the data file

Organising the company’s cash management and online commerce.

5a. Data content of the file

The data subjects are staff members of the Seinäjoki University of Applied Sciences who use the Ceepos cash management system and/or the Ceepos online payment service at points of sale and financial services.

The following information on the data subjects is entered in the data file:

  • name
  • email address
  • access rights

The following information on the customers is entered in the data file:

  • name
  • address
  • email address
  • phone number
  • date of birth (in registrations for training)
  • order history

5b. Information systems using the data file

6. Regular sources of data

The data entered in the data file is obtained from the staff members requesting access rights. They provide the information with the consent of their supervisors.

7. Regular disclosure of data

The user data is only known to the system administrators. Personal data is only disclosed to designated contact persons when the data file is checked and when there are changes in the data.

8. Transfer of data outside the EU or the EEA

No data stored in the file is transferred outside the EU or the EEA.

9. Principles of data file protection

A.      Manual material

Manual material is kept in locked premises in the Seinäjoki University of Applied Sciences.

B.      Computer-processed data

The data file is located in a server of the Seinäjoki University of Applied Sciences, which is protected with access rights and a firewall. The data file can only be accessed with the access rights specified by the Seinäjoki University of Applied Sciences.