Electronic signature service for Seinäjoki University of Applied Sciences (SeAMK Sign)

Articles 13 and 14 of the EU General Data Protection Regulation

Data Protection Act (1050/2018)

Articles 13 and 14 of the Combined Data Subject Information Document (EU Data Protection Regulation 2016/679)

1. Controller

Seinäjoki University of Applied Sciences
Kampusranta 11, Frami F
FI-60320 Seinäjoki, Finland
+358 20 124 3000
seamk(at)seamk.fi

2. Controller’s representative

Asmo Myllyaho, Head of Property and Information Management, Seinäjoki University of Applied Sciences
tel. +358 40 830 4262
asmo.myllyaho(at)seamk.fi

2a. Official responsible for the personal data file

Teemu Virtanen, IT-support person, Information Management, Seinäjoki University of Applied Sciences
+358 40 830 0380
teemu.virtanen(at)seamk.fi

2b. Contact persons in matters relating to the data file

Teemu Virtanen, IT-support person, Information Management, Seinäjoki University of Applied Sciences
+358 40 830 0380
teemu.virtanen(at)seamk.fi

2c. Contact details of the Data Protection Officer

Jarmo Jaskari, Data Protection Officer, Seinäjoki University of Applied Sciences
tel. +358 40 868 0680
jarmo.jaskari(at)seamk.fi

3. Name of the data file

Electronic signature service for Seinäjoki University of Applied Sciences (SeAMK Sign)

4. Purpose of processing personal data/data file use

Case management. User can sign documents electronically and send them to other users for reviewing and signing electronically.

5. Purpose of maintaining the data file

The processing of data in the register is based on a statutory obligation as well as an important public interest under the law (Article 9 (2) (g)) and a legitimate interest of the controller or a third party.

5a. Data content of the file

Only the relevant personal data, the storage of which is necessary for the processing of the case, shall be stored in the register.

• Name
• Phone number
• Email address SeAMK/other Organization
• Title

5b. Information systems using the data file

SeAMK Sign, electronic signing service.

6. Regular sources of data

SeAMK Personnel from AD-system. User information other than SeAMK personnel from users themselves.

7. Regular disclosure of data

Sarake Oy is a processor of personal data that maintains the service and to whom the data is disclosed. Personal information is transferred using AD synchronization or manual logging.

8. Transfer of data outside the EU or the EEA

No data are transferred to non-EU or EEA countries.

9. Principles of data file protection

A.      Manual material

–

B.      Computer-processed data

SeAMK Sign is a Private / Hybrid Cloud SaaS service offered by Sarake Oy, where the service is managed and responsible for it is the service provider. The customer accesses the service through a web browser interface, mobile applications and a webservice interface. In principle, the service is limited only to the customer’s operating environment and cannot be accessed from the public Internet network.

Users only have access rights to the part of the file they need during their current employment relationship.

Data processing and the links between technical subsystems are adequately protected.