SAK Communications Register Privacy Statement

Personal information in the SAK Communications Register compiled on the basis of separate consent may be used for targeting SAK communications.

SAK collects and processes personal data only to the extent that is necessary to discharge the purposes described in this privacy statement. Processing is based on the individual’s consent given on registering for an event.

1 Data file controller

The Central Organisation of Finnish Trade Unions (SAK)
Business ID 0202092-9
Pitkänsillanranta 3, PO Box 157, FI-00531 Helsinki
Tel. +358 20 774 000
webmaster@sak.fi

2 Data file contact person

Marjo Pihlajaniemi, Communications Director, SAK
Tel. +358 20 774 000 (switchboard)
marjo.pihlajaniemi@sak.fi

3 Name of data file

SAK Communications Register

4 Purpose and basis of processing personal data

Personal information is used for targeting SAK communications. The information may also be used for improving SAK communications and services, and for issuing content recommendations and personalising services.

5 Information in the Register

The SAK Communications Register contains information that users have notified to SAK, for example when registering for events or subscribing to a newsletter. This information has been entered in the register with the express consent of the user.

The information that may be processed in the Communications Register includes:

  • forename and surname
  • event name
  • trade union
  • date or year of birth
  • status or professional title
  • e-mail address
  • telephone number
  • street address
  • postal code
  • postal district
  • any other details required for arranging an event
  • Information collected on the use of SAK online services

6 Regular data sources

Personal information is obtained from participants in person, based on individual consent. Personal information in the register may also be supplemented with data gathered on the use of SAK online services, such as:

  • details of the device or application used, including the browser version, device type or screen size
  • details concerning the use of online services, including page downloads, time spent accessing online services, navigation in online services, and various content viewed on the services
  • details of communications targeted by SAK, such as websites accessed via a newsletter
  • location data based on an IP address at a level no more specific than country of use
  • information collected by community plug-ins or other third parties.

A user of online services may be identified through the digital ID code created for the services when the individual accesses or logs into the online service via targeted SAK communications such as a newsletter.

Information on the use of online services is collected using cookies. Further details of SAK cookie policies.

7 Regular releases of data

Personal information in the SAK Communications Register is not generally disclosed to third parties. SAK may nevertheless disclose personal information to third parties for such purposes as conducting targeted communications, surveys or research. Third party service providers of this kind always operate on behalf of SAK and under its supervision. SAK never sells or discloses personal information to third parties in a manner that enables them to use it independently.

8 Transfer of information outside of the European Union or European Economic Area

The information is located in a register secured in accordance with clause 10. For example, information may be transferred to a newsletter software server located in the USA when the newsletter is sent via MailChimp. SAK has concluded an agreement with MailChimp that requires this enterprise to comply with the EU General Data Protection Regulation when processing the information, and to refrain from disclosing it to third parties.

9 Personal data retention period

SAK retains personal data for as long as is necessary for discharging the purposes specified in clause 4. The information is securely destroyed when SAK no longer needs the personal data that it has collected.

10 Principles of data file protection

Security and the protection of personal data are fully integrated into all use and processing of information at SAK, which processes all personal data securely and in the manner required by law.

The information in the Register will only be used by SAK employees who need it for their working duties in accordance with their access rights. Users are also bound by a duty of confidentiality.

SAK contractually ensures that its partners and service providers process data in accordance with current legislation at all times.

11 Right of access to information

Article 15 of Regulation (EU) 2016/679 provides that a data subject is entitled to access personal data concerning him or her, meaning the right to inspect the said data.

A request may be submitted by telephone (+358 20 774 000) or e-mail (sak@sak.fi).

12 Right to rectify and delete information

Participants are entitled to inspect information concerning them in the register and to have it rectified and deleted as necessary. They are also entitled to restrict processing of their information. Requests may be submitted to SAK by telephone (+358 20 774 000) or e-mail (sak@sak.fi).

13 Right to lodge a complaint with a supervisory authority

Article 77 of Regulation (EU) 2016/679 provides that a data subject is entitled to lodge a complaint with the Data Protection Ombudsman if he or she considers that processing of personal data infringes the EU General Data Protection Regulation.

14 Amendments

SAK may amend this privacy statement from time to time. We shall clearly announce any significant changes to the Privacy Statement when so required by applicable law. Please refer to the Privacy Statement from time to time for current details of any changes.

This privacy statement was last updated on 8 April 2021.