Suomalais-ugrilainen kulttuuripääkaupunki Kuhmo

Registry and privacy statement

This is Runolaulajat ry’s registry and privacy statement in accordance with the EU General Data Protection Regulation (GDPR). Created: January, 31.2022.

1. Data controller

Runolaulajat ry (2949198-2)
Kainuuntie 99
88900 Kuhmo

2. Contact person responsible for the registry

Pekka Huttu-Hiltunen
phh@runolaulu.fi
0401798600

3. Registry name

Association’s customer registry.

4. Legal basis and purpose of processing personal data

According to the EU General Data Protection Regulation, the legal basis for processing personal data is the relationship between the association and its members, partners and customers. The purpose of processing personal data is to communicate with customers. No data will be disclosed. The data is not used for automated decision-making or profiling.

5. Registry data content

The information to be stored in the register is: the person’s name, contact information (phone number, address and email address) and other information related to the member, partner or customer relationship. The information remains in the association’s register for the duration of the membership, partner or customer relationship, unless the person in the register requests to delete the information.

6. Regular sources of information

The information to be saved in the register is obtained from the customer, e.g. by e-mail, telephone, via social media services, contracts, customer meetings and other situations where a member, partner or customer discloses their information.

7. Regular disclosure of data and transfer of data outside the EU or EEA

No data will be regularly disclosed to other parties. Data can be published to the extent agreed upon with the customer.

8. Registry protection principles

The registry is processed with care, and all data processed with data systems are appropriately protected. When registry data is stored on online servers, the physical and digital security of the hardware is properly addressed. The data controller ensures that stored data, server access, and other information critical to the security of personal data is handled in confidence and only by employees whose job description requires handling said data.

9. Right of inspection and right to demand rectification

Every person in the registry has the right to review their personal data stored in the registry and demand rectification of any inaccuracies or omissions in their data. Should a person want to review or demand correction to their stored personal data, a personally signed written request should be submitted to the data controller. If necessary, the data controller may ask the requester for proof of their identity. The data controller shall respond to the customer within the time period set by EU’s General Data Protection Regulation (generally within one month).

Any person in the registry has the right to request erasure of their personal data from the registry (“right to be forgotten”). The data subject is also entitled to all other rights declared in the EU’s General Data Protection Regulation, such as the right to restrict processing of their data in certain situations. Any requests should be submitted to the data controller in writing. If necessary, the data controller may ask the requester for proof of their identity. The data controller shall respond to the customer within the time period set by EU’s General Data Protection Regulation (generally within one month).

10. Other rights related to the processing of personal data

A person in the register has the right to request the removal of personal data about him from the register (“the right to be forgotten”). Those registered also have other rights according to the EU’s General Data Protection Regulation, such as limiting the processing of personal data in certain situations. Requests must be sent in writing to the controller. If necessary, the registrar can ask the requester to prove his identity. The controller responds to the customer within the time stipulated in the EU data protection regulation (generally within a month).

11. Use of cookies

On our website, we use the so-called cookie function, i.e. cookies. A cookie is a small text file that can be sent to the user’s computer and stored there, which enables the website administrator to identify visitors who visit the website frequently, to facilitate the login of visitors to the website, and to enable the compilation of composite information about the visitors. With the help of this feedback, we are able to constantly improve the content of our pages. Cookies do not damage users’ computers or files. We use them in such a way that we can offer our customers information and services according to the individual needs of each.

If the user visiting our pages does not want us to receive the above-mentioned information with the help of cookies, most browser programs enable the cookie function to be turned off. This is usually done through the browser settings. When accessing the site for the first time, the browser asks if cookies are allowed and with what restrictions.

However, it is good to take into account that cookies may be necessary for the proper functioning of some of the pages we maintain and the services we offer.