Ceepos cash management system's privacy statement
Articles 13 and 14 of the EU General Data Protection Regulation
Data Protection Act (1050/2018)
Articles 13 and 14 of the Combined Data Subject Information Document (EU Data Protection Regulation 2016/679)
1. Controller
Seinäjoki University of Applied Sciences
Kampusranta 11, Frami F
FI-60320 Seinäjoki, Finland
+358 20 124 3000
seamk(at)seamk.fi
2. Controller’s representative
Asmo Myllyaho, Head of Property and Information Management, Seinäjoki University of Applied Sciences
tel. +358 40 830 4262
asmo.myllyaho(at)seamk.fi
2a. Official responsible for the personal data file
Pilvi Aarnio, Controller, Seinäjoki University of Applied Sciences
tel. +358 40 680 7270
pilvi.aarnio(at)seamk.fi
2b. Contact persons in matters relating to the data file
Kirsi Ollila, Chief Accountant, Seinäjoki University of Applied Sciences
tel. +358 40 680 7588
kirsi.ollila(at)seamk.fi
2c. Contact details of the Data Protection Officer
Jarmo Jaskari, Data Protection Officer, Seinäjoki University of Applied Sciences
tel. +358 40 868 0680
jarmo.jaskari(at)seamk.fi
3. Name of the data file
Ceepos cash management system and online payment service of the Seinäjoki University of Applied Sciences – register of users (for official use).
4. Purpose of processing personal data/data file use
Reception of cash transfers and online payments. The Ceepos system is used by the customers of the Seinäjoki University of Applied Sciences. Their personal data is not entered in the Ceepos cash management system. The data subjects are staff members of the Seinäjoki University of Applied Sciences.
5. Purpose of maintaining the data file
Organising the company’s cash management and online commerce.
5a. Data content of the file
The data subjects are staff members of the Seinäjoki University of Applied Sciences who use the Ceepos cash management system and/or the Ceepos online payment service at points of sale and financial services.
The following information on the data subjects is entered in the data file:
- name
- email address
- access rights
The following information on the customers is entered in the data file:
- name
- address
- email address
- phone number
- date of birth (in registrations for training)
- order history
5b. Information systems using the data file
–
6. Regular sources of data
The data entered in the data file is obtained from the staff members requesting access rights. They provide the information with the consent of their supervisors.
7. Regular disclosure of data
The user data is only known to the system administrators. Personal data is only disclosed to designated contact persons when the data file is checked and when there are changes in the data.
8. Transfer of data outside the EU or the EEA
No data stored in the file is transferred outside the EU or the EEA.
9. Principles of data file protection
A. Manual material
Manual material is kept in locked premises in the Seinäjoki University of Applied Sciences.
B. Computer-processed data
The data file is located in a server of the Seinäjoki University of Applied Sciences, which is protected with access rights and a firewall. The data file can only be accessed with the access rights specified by the Seinäjoki University of Applied Sciences.