Privacy Policy

Kellosepäntaidon edistämissäätiö sr /Kelloseppäkoulu

Privacy Policy for the Customer and Marketing Register

EU General Data Protection Regulation (2016/679)

Date of preparation 3 January 2023


1. Data Controller

Kellosepäntaidon Edistämissäätiö sr

Business ID 0101304-9

Foundation for the Promotion of Watchmaking, sr

Vanha maantie 11, 02650 Espoo

Telephone: 09 4355770 (switchboard/office)

 

2. Representative of the Data Controller and Contact Persons

Representative of the Data Controller

Name: Principal Hanna Harilainen

Address: Kellosepäntaidon Edistämissaätiö sr, Vanha maantie 11, 02650 Espoo

Phone: 040 543 9029

Email: hanna.harilainen@kelloseppakoulu.fi


Contact Person of the Data Controller

Name: Director of Development Keijo Honkonen

Address: Kellosepäntaidon Edistämissaätiö sr/Kelloseppäkoulu

Vanha maantie 11, 02650 Espoo

Phone: 050 383 2963

Email: keijo.honkonen@kelloseppakoulu.fi 

 

3.Contact Information of the Data Protection Officer (DPO)

Name: School secretary Eija Karppinen

Address: Kellospäppäkoulu, Vanha maantie 11, 02650 Espoo

Phone: 09 4355770

Email: kanslia@kelloseppakoulu.fi

 

4. Purpose for personal data processing

According to the EU General Data Protection Regulation, the legal basis for processing personal data is based on the person’s consent. The customer and marketing register of Kellosepäntaidon Edistämisäätiö sr. is based on customer relationship maintenance and communication with customers, as well as the marketing of Kellosepäntaidon Edistämisäätiö sr.’s courses, products and services. The customer relationship is always based on a contract. Within the scope of the Personal Data Act, Kellopäntaido Edistämisäätiö sr collects customer data for the following purposes:

  • Customer relationship management, maintenance, and communication with customers
  • Marketing to different target groups
  • Processing of customer feedback
  • Measuring customer satisfaction and service development
  • Statistics
  • Studies and surveys carried out by the watchmaking school

5. Legal Basis for Processing Personal Data

The Data Controller’s Statutory Obligation: Provision of education.


6. Data Content of the Register 

The customer and marketing register of Kellospäntaido Edistamissaätiö sr may contain the following information:

  • First and last name
  • date of birth
  • language
  • contact information (phone number, email address, address)
  • organisation name, department, address, and social security number
  • billing information
  • web site addresses
  • information about the services ordered by the customer, their delivery, and invoicing
  • customer feedback and contacts
  • other information related to the customer relationship and ordered services
  • information related to marketing and sales promotion, such as marketing measures aimed at the data subject and participation in them (e.g. participation in competitions, courses, and events)

7. Information Sources

The collection of names and other contact information is based on a customer relationship or other connection with Kellosepäntaido Edistämisäätiö sr.

The information to be recorded in the register is received from the customer via e-mail, telephone, social media services, contracts, customer meetings, and other similar situations where the customer discloses their information. Personal data can also be obtained from a third party who reports the person as participating in the service we offer.


8. Data Transfer or Disclosures

Personal data is not disclosed outside the organisation, except in the case of debt collection. An external personal data processor is not used in the processing of personal data.


9. Data Transfer or Disclosure Outside the EU or the European Economic Area

Personal data is not transferred outside the EU or EEA

 

10. Principles for the Protection of Personal Data / the Register

The register is only intended for the internal use of the educational institution, for which user group-specific (administration, full-time teachers, lesson teachers, and application recipients) access rights are defined for users.

The right of use ends when the person moves away from the tasks for which it was granted.

The system is always used in a network environment in an SSL-protected connection. The system’s server devices are kept in a locked state, to which only IT personnel can access. The computers that use the system are located in controlled premises. Paper documents are stored and protected so that outsiders do not have access to them.

Those employed by Kellospäntaido Edistamissaätiö sr. have a duty of confidentiality.


11. Data Retention Period

The register’s personal data is stored permanently within the framework permitted by law. Kellosepäntaidon Edistämisäätiö sr regularly assesses the need to store data, and in addition, Kellosepäntaidon Edistämisäätiö sr takes reasonable measures to ensure that incompatible, out-of-date, or incorrect personal data is not kept in the register regarding the purposes of the processing.


12. Rights of the Data Subject

The registered person has the right to check the information about himself. The registered person can submit a request for inspection rights in person or in writing to the educational institution’s data protection officer. The registered person has the right to correct, supplement, or delete his data.


13. Other Rights of the Data Subject

The Data Subject’s right to delete his data. The right to delete personal data does not apply if the processing of data is necessary for archiving purposes in the public interest or for scientific or historical research purposes or statistical purposes if the right to delete data prevents or greatly complicates the processing of personal data.

The privacy statement can be viewed at https://www.kelloseppakoulu.fi