Visit Häme Website Visitor Registry

Controller

The Regional Council of Häme
Niittykatu 5, 13100 Hämeenlinna,
Finland,
hameenliitto@hame.fi

In the Häme Regional Council, the governing body of the municipal federation serves as the data controller.

Data Protection Officer

For additional information on data protection in the Häme Regional Council, please contact the Data Protection Officer. The Data Protection Officer is an internal expert responsible for overseeing personal data processing and ensuring compliance with data protection regulations.

Hanna-Kaisa Sinervo
Wetterhoffinkatu 2
13100 Hämeenlinna, Finland
Tel: +358 50 378 0820

Data Protection Statement and Processing of Personal Data in Häme Regional Council

Legal Basis and Purpose of Personal Data Processing

The purpose of the registry is to ensure the security of the Visit Häme website. The information collected (IP address) is used only in case of errors or in connection with the investigation of data breaches.

The legal basis for processing is legitimate interest.

Grounds for Legitimate Interest

General web security and best practices. The controller’s legitimate interest in processing the collected personal data is based on the freedom to conduct a business.

Categories of Personal Data

IP address, visit time, and visited pages.

Recipients and Recipient Groups

A limited, authorized staff of the company providing the website hosting services.

Content of the Register

The personal data register contains the following information:

• IP address
• Web visit time
• Pages visited by the user

Regular Data Sources

Data is obtained from users during visits to the organization’s website.

Retention Period of Personal Data

The information from Google Analytics is saved 14 months.

Regular Disclosures and Transfers of Data Outside the EU or EEA

The data in the registry is available only to authorized representatives of the site as well as external service providers when used. Data will not be disclosed outside the initiative or to its partners except in cases of data breaches or similar incidents.

The site uses Google Analytics cookies, and the data may be transferred and stored on servers that may be located outside the EU and EEA.

Principles of Register Protection

Only specified employees of the site and companies acting on its behalf have access to the website hosting server. Each authorized user has a unique username and password. The system is protected by a firewall that safeguards against external access. Data protection and processing comply with data protection laws, regulatory requirements, and good data management practices.

Cookies

Our website uses cookies; you can read more on the cookies page.

Rights of the Data Subject

• Right of Access: The data subject has the right to inspect the data stored about them in the register. Requests for inspection should be made in writing by contacting Visit Häme or the registry contact in Finnish or English. The request must be signed.
• Right to Data Portability: The data subject has the right to transfer their data to another system. Requests can be addressed to the registry contact person.
• Right to Rectify Information: Incorrect, unnecessary, incomplete, or outdated personal data must be corrected, deleted, or completed upon request. Requests for correction must be made in writing and signed. The request should specify the data to be corrected and the reason for correction. If a request is denied, a written certificate stating the reasons will be provided, and the denial may be referred to the Data Protection Ombudsman for resolution.
• Right to Restrict Processing: The data subject has the right to request restriction of data processing, for example, if the personal data is incorrect.
• Right to Object: The data subject may request correction or deletion of their data. Requests should be directed to the registry contact person.
• Right to Lodge a Complaint: If the data subject believes that their personal data has been processed in violation of data protection regulations, they have the right to file a complaint with the supervisory authority, including in the member state of residence or workplace.

Contact Information for the National Supervisory Authority

Tietosuojavaltuutetun toimisto
PL 800
Ratapihantie 9
00521 Helsinki, Finland

Tel: +358 29 56 66700
tietosuoja@om.fi
www.tietosuoja.fi

Other Rights Related to the Processing of Personal Data

The data subject has the right to prohibit the processing and disclosure of their data for direct marketing and other marketing purposes, request data anonymization where applicable, and exercise the right to be forgotten in full.