Visit Häme Website Visitor Registry

Controller

The Regional Council of Häme
Niittykatu 5, 13100 Hämeenlinna,
Finland,
hameenliitto@hame.fi

In the Häme Regional Council, the governing body of the municipal federation serves as the data controller.

Data Protection Officer

For additional information on data protection in the Häme Regional Council, please contact the Data Protection Officer. The Data Protection Officer is an internal expert responsible for overseeing personal data processing and ensuring compliance with data protection regulations.

tietosuojavastaava(a)hame.fi
Wetterhoffinkatu 2
13100 Hämeenlinna

Data Protection Statement and Processing of Personal Data in Häme Regional Council

Purpose and Basis for Processing Personal Data

The purpose of the data register collected during a website visit is to gather visitor statistics for the Visit Häme site using the Google Analytics tool. The processing is based on the consent provided by the data subject.

Additionally, the site collects log data, which is used to ensure the security of the Visit Häme website. The information obtained (IP address) is only used in case of malfunction or for investigating security breaches. The basis for processing is a legitimate interest, where the collection and use of personal data are based on general web security practices.

Categories of Personal Data

IP address, visit time, and visited pages.

Recipients and Recipient Groups

A limited, authorized staff of the company providing the website hosting services.

Content of the Register

The personal data register contains the following information:

• IP address
• Web visit time
• Pages visited by the user

Regular Data Sources

Data is obtained from users during visits to the organization’s website.

Retention Period of Personal Data

The information from Google Analytics is saved 14 months.

Regular Disclosures and Transfers of Data Outside the EU or EEA

The data in the registry is available only to authorized representatives of the site as well as external service providers when used. Data will not be disclosed outside the initiative or to its partners except in cases of data breaches or similar incidents.

The site uses Google Analytics cookies, and the data may be transferred and stored on servers that may be located outside the EU and EEA.

Principles of Register Protection

Only specified employees of the site and companies acting on its behalf have access to the website hosting server. Each authorized user has a unique username and password. The system is protected by a firewall that safeguards against external access. Data protection and processing comply with data protection laws, regulatory requirements, and good data management practices.

Cookies

Our website uses cookies; you can read more on the cookies page.

Rights of the Data Subject

• Right of Access: The data subject has the right to inspect the data stored about them in the register. Requests for inspection should be made in writing by contacting Visit Häme or the registry contact in Finnish or English. The request must be signed.
• Right to Data Portability: The data subject has the right to transfer their data to another system. Requests can be addressed to the registry contact person.
• Right to Rectify Information: Incorrect, unnecessary, incomplete, or outdated personal data must be corrected, deleted, or completed upon request. Requests for correction must be made in writing and signed. The request should specify the data to be corrected and the reason for correction. If a request is denied, a written certificate stating the reasons will be provided, and the denial may be referred to the Data Protection Ombudsman for resolution.
• Right to Restrict Processing: The data subject has the right to request restriction of data processing, for example, if the personal data is incorrect.
• Right to Object: The data subject may request correction or deletion of their data. Requests should be directed to the registry contact person.
• Right to Lodge a Complaint: If the data subject believes that their personal data has been processed in violation of data protection regulations, they have the right to file a complaint with the supervisory authority, including in the member state of residence or workplace.

Contact Information for the National Supervisory Authority

Tietosuojavaltuutetun toimisto
PL 800
Ratapihantie 9
00521 Helsinki, Finland

Tel: +358 29 56 66700
tietosuoja@om.fi
www.tietosuoja.fi

Other Rights Related to the Processing of Personal Data

The data subject has the right to prohibit the processing and disclosure of their data for direct marketing and other marketing purposes, request data anonymization where applicable, and exercise the right to be forgotten in full.