PRIVACY POLICY FOR THE TIP2025 CONFERENCE
Data Protection Act 2018/1050, EU General Data Protection Regulation 2016/679.
The Privacy Policy includes information that must be provided to data subjects when processing personal data. The Privacy Policy helps fulfill the controller’s accountability obligation.
Accountability is a key principle of the General Data Protection Regulation (GDPR), requiring that the data controller must be able to demonstrate compliance with data protection legislation.
This document provides event-specific details on the processing of personal data. For more information about personal data processing at Xamk, please visit xamk.fi/tietosuojailmoitus.
1. Data Controller
South-Eastern Finland University of Applied Sciences (Xamk)
Patteristonkatu 3 50100 Mikkeli
0406550555
Business ID: 2472908-2
2. Contact Person for Matters Concerning the Register
Saara Vauhkonen
Patteristonkatu 3 50100
Mikkeli 050 574 4926
Phone number: +358505744926
3. Name of the Register
TiP2025 Contact Information Register for the Theory in Practice Conference 4. On what basis is my personal data processed?
The contact information register is used to coordinate the organization of the event and for event communication, such as sending electronic newsletters and
invitations.
The register is processed by the employees of the South-Eastern Finland
University of Applied Sciences for the TiP2025 Conference.
The legal basis for processing is the consent of the data subject: for participants in the event, the processing of personal data is based on the consent (GDPR Article 6, Paragraph 1.a) given by the data subjects at the time of registration for the event.
5. What kind of information about me is processed?
The register may include the following information: personal data (name, email address, phone number, organization, position within the organization) and information related to the organization of the event.
6. Regular Sources of Information
Customer information is regularly obtained from the customer themselves at the time of registration.
7. Will my personal data be disclosed to third parties?
No information from the register is disclosed to other parties. However, information may be reported to the project’s funder as required, including the list of event participants.
8. Will my data be processed outside the EU or EEA?
Data is not transferred outside the EU or EEA.
9. How is my data protected and how long is it retained?
Access to electronic systems is protected by usernames and passwords. Personal data is retained for as long as there is a need for its use, but no longer than 2 years.
10. How can I exercise my rights under the data protection regulation?
Data subjects can make all requests to the contact person listed below:
Saara Vauhkonen, 050 574 4926, etunimi.sukunimi@xamk.fi
When the legal basis for processing is consent, data subjects have the following rights:
• The right to receive information about the processing of personal data
• The right to access personal data stored in the database. The request for information should be addressed to the person responsible for the register.
• The right to request correction of your data
• The right to request deletion of your data (excluding statutory obligations) • The right to request restriction of the processing of your personal data
• The right to object to the processing of your personal data
• The right to request the transfer of your personal data provided by you to another data controller
• The right to withdraw your consent if the processing of personal data is based on consent • The right not to be subject to automated decision-making.
