Privacy policy statement for subscribers to newsletters
Privacy policy statement according to the EU’s Data Protection Regulation.
Controller
Finnish Pension Alliance TELA
Salomonkatu 17 B
00100 Helsinki
Contact persons for matters concerning the register:
Register name
Register of subscribers to newsletter.
Purpose of the processing of personal data
The address data are used for sending TELA’s newsletters to subscribers. In addition, personal data can be used as material for analysis and statistics on the subscriber register. Personal data are not used for commercial purposes.
Basis for the processing of personal data
The processing of personal data is based on the consent given by the subscribers to newsletter.
Categories of personal data concerned
Those who have subscribed to the newsletter.
Contents of the register
The following personal data are stored in TELA’s register:
- person’s name
- email address
- organization represented by the person.
Regular data sources
The persons themselves give the data to TELA on their own initiative.
Recipients of personal data
TELA does not disclose personal data for use outside its own activities, except when law requires that.
Period for which personal data are stored, or the criteria used to determine that period
The information is deleted from the register when the subscriber terminates the subscription or when the newsletter is no longer published.
Rights of data subjects
Data subjects have the right to request access to their personal data and the right to request the rectification or erasure of data or restriction of the processing.
Automatic decision-making
Personal data are not processed automatically. Nor are they used for automatic decision-making.
Right to withdraw consent
Data subjects have the right at any time to withdraw the consent they have given to processing their personal data.
Right to lodge a complaint to the supervisory authority
Data subjects have the right to lodge a complaint to the Data Protection Ombudsman if they consider that the processing of their personal data violates the General Data Protection Regulation.
Protection of personal data
The register is maintained and protected by various technical and organizational measures. Access to the data is limited by user credentials.
The third-party personal data processor (CRM system administrator) is responsible for protecting the register in accordance with a personal data processing agreement.