Data Controller Discendum Oy Kiviharjunlenkki 1 E, 90220 Oulu Phone number: 020 718 1850
Contact person: Terttu Kaikkonen Kiviharjunlenkki 1 E, 90220 Oulu Phone number: 020 718 1850
Name of the personal data file
Customer register of Open Badge Passport Service.
Purpose for the handling of personal data
The Service Provider can collect information and personal data to maintain and handle the relationship between the Service Provider and Service user and to plan and develop the business activity of the Service Provider through various research methods. The information and personal data may be used for distribution of information to the users of the Service and possibly for direct marketing if allowed by law or if user has given his/her consent for it. The information and personal data may also be used for investigation and follow up in cases of suspected misuse.
The Service Provider can also collect information about the use of the Service for statistic purposes. This information does not target any individual user.
Personal data (mandatory):
- first name
- last name
- e-mail address
- date of birth
User data (optional):
- phone number
- Facebook account
- LinkedIn account
- Twitter account
- Pinterest account
- Instagram account
Regular Sources of Data and Cookies
1. When the user creates a user profile in the Service and is thus registered as a customer, 2. When users update information in their user profiles, 3. When users otherwise use the Service.
A cookie is a document which the web service saves into the user’s computer. Cookies are not software, spyware or viruses and they cannot execute functions by themselves.
Disclosure and Transfer of Personal Data
The Service Provider does not per se disclose information to third parties. Information can be disclosed for research and marketing purposes if the user gives permission when asked separately. Information is disclosed also to representatives of law enforcement for, for example, criminal investigation when and in the scope required by Finnish law in effect at any given time.
Only the username, which each user can define her/himself, is displayed to other users in the Service.
No personal data is transferred outside the European Economic Area.
Saving personal data and security
The personal data saved in the register is collected into joint databases which are secured with firewalls and other appropriate technical measures. All persons handling the register have personal access rights (username, password and access level information) to the register issued by the register owner. Only persons who need the said information to carry out their work assignments can access the user’s personal data. These persons include the Service Provider’s customer service personnel and the technical administrators of the Service.
The Service Provider will strive to ensure that no personal user data stored disappears, no data is used for wrong purposes and that no one can access or change the data without authorization.
The users are asked not to disclose their username or password to anyone other than the Service Provider in a situation where help is asked of the Service Provider.
Right of Access and Correction of Data
Users can access, modify and delete their personal data that the Service Provider has collected by logging into the Service.
According to the Law on Personal Data Act (Henkilötietolaki 523/1999) section 26, a person has the right to check information concerning her/himself in the register. The inspection request must be sent in writing and signed to the register contact person or it can be presented in person in the above mentioned address. A person in the register has the right to demand an erroneous piece of information about her/himself in the register to be corrected.