Privacy policy statement for participants registered for TELA’s events
Privacy policy statement according to the EU’s Data Protection Regulation.
Controller
Finnish Pension Alliance TELA
Salomonkatu 17 B
00100 Helsinki
Contact person for matters concerning the register:
Register name
People registered for events.
Purpose of the processing of personal data
Management of registrations for training and other events organized by TELA, and keeping the registrants informed of events. Sending of course material and feedback requests to participants, and provision of meals, if any.
The data are not used for commercial purposes.
Basis for the processing of personal data
The processing of personal data is based on the consent of the data subject.
Categories of personal data concerned
- people registered in training
- people registered for events
Contents of the register
Email addresses of people enrolling in training or other events.
In addition, other information may also be collected as appropriate. This may include
- name
- organization represented by the person
- position in the organization
- phone
- special diet, if applicable.
Regular data sources
Personal data are collected in accordance with the data subjects’ own account and consent, from the persons themselves.
Recipients of personal data
TELA does not disclose information for use outside its own activities, except when law requires that.
Period for which personal data are stored, or the criteria used to determine that period
Personal data are stored for the duration of the event and debriefing.
Rights of data subjects
Data subjects have the right to request access to their personal data and the right to request the rectification or erasure of data or restriction of the processing.
Automatic decision-making
Personal data are not processed automatically. Nor are they used for automatic decision-making.
Right to lodge a complaint to the supervisory authority
Data subjects have the right to lodge a complaint to the Data Protection Ombudsman if they consider that the processing of their personal data violates the General Data Protection Regulation.
Protection of personal data
The register is maintained and protected by various technical and organizational measures. Access to the data is limited by user credentials.
The third-party personal data processor (CRM system administrator) is responsible for protecting the register in accordance with a personal data processing agreement.