- Home
- /
- About SAMK
- /
Information security
The European Union’s General Data Protection Regulation protects natural people’s basic rights and freedom and especially the right to protect personal data. It confirms the rules for handling personal data and the rules regarding free transfer of personal data. The principle is legality, moderation and transparency.
To ensure transparency, the register holder must implement the adequate procedures to deliver the registered information on the principles of handling the registers, the contents, resources and sharing information. The registered must also be told about his/her rights and how to use them. On this site, Satakunta University of Applied Sciences carries out its duty to inform.
Register holder
The register holder is Satakunta University of Applied Sciences (SAMK)
SAMK has a named person in charge of data protection. You can contact him/her regarding all issues with your personal data.
tietosuojavastaava@samk.fi
Data protection documents
| Name of register | Maritime Marketing Register | |
| Contact person | Anu Hakkarainen | anu.hakkarainen@samk.fi |
| Cause for handling: | Consent by registered | |
| Purpose of handling: |
|
|
| Groups of registered: | Partners, subcsribers | |
| Information groups: | Information group | Storage time |
| first and last name(s), contact information | Information will be removed if consent is cancelled | |
| Information sources: | Person him-/herself | |
| Groups of receivers: | Information not forwarded | |
| Data transfer outside EU/ETA: | Data is not disclosed outside EU/ETA | |
| Automatic decision-making: | No automatic decision-making | |
| Profiling: | No profiling of registered | |
| Name of data file |
SAMK EduTravel Client register (updated 10.3.2022) |
||
| Contact person | Maaria Berg, Manager of SAMK EduTravel | maaria.berg@samk.fi / edutravel@samk.fi; tel. 044 710 3351 |
|
| Cause for handling | necessary to complete agreement, consent to data gathering | ||
| Purpose of handling | Event & Trips participants registrations, international cooperation, company cooperation, national and local cooperation, marketing in different channels | ||
| Groups registered | Co-operation partners and their customers | ||
| Information groups | Information group | Storage time | |
| First and last name(s) | 10 years | ||
| Social security number | 10 years | ||
| Contact information | 10 years | ||
| Information regarding tuition and work, title | 10 years | ||
| Photographs of events | 5 years (due lack of marketing photos of travel groups after 2020 /Covid-19_removed until next travel group photos on 2023?+ 2 years, by 2025) | ||
| Information based on consent will be removed if consent is cancelled | |||
| Information sources | Person self / photographer /B2B customer /co-operator | ||
| Groups of receivers | KOTA statistics by Ministry of Education and Culture receive information on international visitors once a year | ||
| Data transfer outside EU/ETA | Data is not disclosed outside EU/ETA | ||
| Automatic decision-making | No automatic decision-making | ||
| Profiling | No profiling of registered | ||
| Title of register | youragent.fi service | ||
| Contact person | Aleksi Postari | aleksi.postari@samk.fi | |
| Basis for lawfulness of processing | Basis for lawfulness of processing | ||
| Purpose of processing |
|
||
| Categories of data subjects | Applicants for summer jobs and internships, employers' job selection data processing employees | ||
| Categories of data | Categories of data common to all registrants | Retention | |
| First names, last name | The data will be erased upon revoking of consent
The registrant may check, rectify and erase their data
|
||
| Contact details | |||
| State of consent | |||
| Categories of data specific to applicants | |||
| Date of birth | |||
| State of driver's license | |||
| Education | |||
| Language skills | |||
| Photo | |||
| Showcase video | |||
| Answers to the 20 profiling questions | |||
| Skill profile | |||
| State of work cards | |||
| CV | |||
| Fields of interest | |||
| Details of applied position (job title, type and location) | |||
| State of consent to affiliates' job search related emails | |||
| Employment situation (not employed, employed through elsewhere, employed through youragent.fi) | |||
| Categories of data specific to employers | |||
| Company details (name, website, logo) | |||
| Details of offered job (title, type, location) | |||
| Sources of data | The user | ||
| Categories of receivers | The data will not be passed to third parties. | ||
| Data transfer outside EU/ETA | The data will not be passed outside EU/ETA. | ||
| Automatic decision-making | There is no automatic decision-making. | ||
| Profiling | The registrants will not be profiled. Applicants create profiles to tell of themselves and their skills. The information given by the applicants will not be used to predict, analyze or classify them into groups, nor will the data be combined or further processed. The applicant keeps the data up to date. Businesses create profiles with the necessary skills for their open summer jobs/internships. Based on the applicants' profiles, the service offers the businesses applicants for interviews. The service performs no automatic decision-making or profiling. For more information, see Office of the Data Protection Ombudsman: https://tietosuoja.fi/en/automated-decision-making-and-profiling | ||
| On data processing | The employers and their employees involved in recruitment will be identified before granting access to employers' applicants' information. The only information of the businesses offering jobs that an applicant can see is a list of their names. | ||
Rights by the registered
Please contact data protection officer: tietosuojavastaava@samk.fi
Principles of register protection
Manual material
The material is located in locked premises, which have access control and camera surveillance.
Electric material
Data systems including electric material are located in a network of their own, which is protected by data security device.
A physical access to these materials is limited only to the parties involved. The information is transferred through hidden channels. The information is handled with personal usernames and profiles.
Instructions and training
Extensive instructions have been given for the use of the register, and the personnel has been trained to follow the instructions.