Privacy statement
This is the Register and Data Protection Statement in accordance with the Original Lapland Association’s Personal Data Act (Sections 10 and 24) and the EU General Data Protection Regulation (GDPR). Prepared on March 17, 2022. Last modified: March 17, 2022
- The controller
Original Lapland ry
c/o Loma-Vietonen, Kuusirannantie 59
95675 MELTOSJÄRVI
Data Review and Deletion Requests (GDPR) etc. at post@seven-1.com.
- Contact person responsible for the register
Iina Askonen, Project Manager of the Original Lapland Project, info@originallapland.com, tel. +358 400 802 904.
- The name of the registry
www.originallapland.com customer and marketing register.
- Legal basis and purpose of the processing of personal data
The legal basis for the processing of personal data under the EU General Data Protection Regulation is
– the person’s consent (documented, voluntary, identified, informed and unambiguous)
The purpose of the processing of personal data is to communicate with customers for information purposes and to market the area and services in the form of a newsletter.
The data is not used for automated decision making or profiling.
- Information content of the register
By default, Original Lapland ry does not collect any personal information about visitors to the site. By filling out and submitting the form on the website, the customer agrees to the storage and use of the information provided in the manner mentioned in the form.
The information to be stored in the register via the form is: the person’s e-mail address. The information collected on the form (e-mail address) will be kept for the time being for the information of the association.
The information that is displayed in the profile view is collected from registered users of the site. The information created by the user is appended to the username. The profile information of registered users is saved. Users have the ability to view, edit and delete their personal information at any time. Only the username cannot be changed. Webmasters can view and edit user profile information.
Anonymized user data is collected to improve the service of the website using Google Analytics.
- Content embedded from other sites
Articles on this site may contain embedded content (such as videos, images, articles, etc.). Opening embedded content imported from other sites is comparable to having a visitor visit a third-party site themselves.
These sites may collect information about you, use cookies, embed third-party tracking cookies, and monitor your interactions with the embedded content, including tracking interactions if and when you are logged in to the site.
Youtube: link to the Youtube Privacy Statement:
https://policies.google.com/privacy?hl=en
Instagram: link to Instagram’s privacy statement:
https://help.instagram.com/519522125107875
Google Maps Privacy:
https://policies.google.com/privacy?hl=en
Google Drive Privacy:
https://policies.google.com/privacy?hl=en
- Analytics
We use Google Analytics. Link to the Google Privacy Statement:
https://policies.google.com/privacy?hl=en
- To whom we share your information
Original Lapland ry does not share personal information with anyone. The analytical data of the website is distributed to the technical service provider, Mainostoimisto Seven-1 / Kiuas Oy.
- Regular sources of information
Rekisteriin tallennettavat tiedot saadaan asiakkaalta sivuston lomakevastauksena.
- Regular transfers of data and transfers of data outside the EU or the EEA
The information will not be disclosed or published to other parties on a regular basis. Third party information may be processed outside of Europe. See links above. The site may use non-European proxies (CDNs).
- Registry Security Principles
The register shall be handled with due care and the data processed by the information systems shall be adequately protected. When registry data is stored on Internet servers, the physical and digital security of their hardware is adequately addressed. The controller shall ensure that the data stored, as well as the access rights to the servers and other information critical to the security of personal data, are treated confidentially and only by the employees whose job description it belongs to.
- Right of inspection and right to request correction of information
Every person in the register has the right to check the information stored in the register and to request the correction of any incorrect information or the completion of incomplete information. If a person wishes to check or request the rectification of data stored about them, the request must be sent in writing to the data controller. If necessary, the controller may ask the applicant to prove their identity. The controller will respond to the customer within the time limit set by the EU Data Protection Regulation (generally within one month).
- Other rights related to the processing of personal data
A person in the register has the right to request the deletion of personal data concerning them from the register (“the right to be forgotten”). Data subjects also have other rights under the EU’s general data protection regulation, such as restrictions on the processing of personal data in certain situations. Requests must be sent in writing to the controller. If necessary, the controller may ask the applicant to prove their identity. The controller will respond to the customer within the time limit set by the EU Data Protection Regulation (generally within one month).
The recipient of the newsletter can also cancel it themselves via the electronic link in the newsletter.