NOUSU project’s privacy statement | SeAMK

NOUSU project's privacy statement

Articles 13 and 14 of the EU General Data Protection Regulation

Data Protection Act (1050/2018)

Articles 13 and 14 of the Combined Data Subject Information Document (EU Data Protection Regulation 2016/679)

1. Controller

Seinäjoki University of Applied Sciences, SeAMK Library
Kampusranta 11, Frami F
FI-60320 Seinäjoki, Finland
+358 20 124 3000
seamk(at)seamk.fi

2. Controller’s representative

Tarja Sandvik, Project Manager, Seinäjoki University of Applied Sciences
tel. +358 40 680 7180
tarja.sandvik@seamk.fi

2a. Official responsible for the personal data file

Tarja Sandvik, Project Manager, Seinäjoki University of Applied Sciences
tel. +358 40 680 7180
tarja.sandvik@seamk.fi

2b. Contact persons in matters relating to the data file

2c. Contact details of the Data Protection Officer

Jarmo Jaskari, Data Protection Officer, Seinäjoki University of Applied Sciences
+358 40 868 0680
jarmo.jaskari(at)seamk.fi

3. Name of the data file

NOUSU – Osaamisella uuteen nousuun (Creating new growth with competence) project.

4. Purpose of processing personal data/data file use

The purpose of this data file is the implementation of the NOUSU – Osaamisella uuteen nousuun (Creating new growth with competence) project and collection of necessary data for a needs assessment, communications, marketing of project activities, processing the event registration information, and information required by the project’s financer.

The project data is stored according to the financer’s instructions. The project will end on 31 December 2022.

5. Purpose of maintaining the data file

The processing of the personal data entered in the data file is based on oral or written consent provided by data subjects in connection with their participation in surveys and/or training, signing up for workshops and other events, and participation.

Data concerning specific companies are based on public business registries.

5a. Data content of the file

Data on registration for training, workshops and other events for the purpose of communication, and data collection required by the financer:

  • Company name
  • Registrant/participant name
  • Email address
  • Phone number

For the needs assessment:

  • Company name
  • Respondent’s telephone number
  • Email address

For personal interviews:

  • Only relevant and necessary contact information recorded on discussions

Public contact information:

  • Company name
  • Contact person
  • Contact person’s contact details

5b. Information systems using the data file

  • Webropol
  • Office 365
  • Google Forms

6. Regular sources of data

Registration information, participation lists, surveys, personal interviews.

Contact information is also collected from public business registers, companies’ public websites and public contact registers, such as Fonecta.

7. Regular disclosure of data

Information about participation in project activities is disclosed to the financer in the context of payment applications.

The data are processed as a whole together with the Ilmajoki and Kurikka business services for the purpose of planning project activities; no individual respondents can be identified from these data. The data of individual companies are also not disclosed to the business services of other municipalities.

8. Transfer of data outside the EU or the EEA

No data stored in the file is transferred outside the EU or the EEA.

9. Principles of data file protection

A.      Manual material

Material available on paper is stored in locked cabinets and a locked facility. Only persons handling the data have access to these materials.

B.      Computer-processed data

The materials processed electronically are stored on a SeAMK internal network disk protected from third parties by user IDs and passwords. The data file may only be accessed by employees whose job involves the processing the personal data files.