REGISTRY AND PRIVACY STATEMENT

Registry and Privacy Statement in accordance with the EU General Data Protection Regulation (GDPR). Updated 03/22/2024.

Registrar

Clara Finland Oy
VAT number: 2725118-4
Address: Albertinkatu 33, 00180 Helsinki
Phone: 09-2312 0200

Contact person in matters relating to privacy policy

Contact person: Timo Kuisma

Name of the register

Customer database for Clara Finland Oy Clara SaaS service.

Purpose of processing the personal data

The purpose of the register is the data storage and processing of persons associated with the Clara customer relationship management system. People entered into the system are for example

  • Volunteers
  • Customers of volunteering tasks
  • Employees of the organization
  • Stakeholder contacts

Information content

The register may contain the following information:

  • Contact information, such as name, address, phone number and e-mail address
  • Username and password
  • Date of birth, gender
  • Marketing restrictions
  • History of contacts (e.g. phone calls and meetings)
  • Events and their participants (e.g. trips and seminars)
  • Interview and training history

Sources of information

The sources of information are the people themselves, as well as the persons involved in coordination of voluntary work.

Information is obtained by person herself/himself upon registration, or when person becomes a member of the registrar, a worker, a volunteer, a donor or is participating in any activity in which e.g. the name, address and telephone registration is necessary (e.g. trips). Person's acquisition of registrar services, such as training or calendars. Person's participation in campaigns.

Regular destinations of disclosed data

The use of stored data is limited to the registrar's own use and will not be disclosed to third parties without the permission of the person.

Transfer of data outside the EU or the EEA

Information is not disclosed.

Principles of data protection

The register is kept in secure system protected by technical measures and databases are located in locked and guarded premises. The right to process personal data is entitled only to employees who work on behalf of the registrar. The register can be used only with personal user ID and password. Data is processed in accordance with the Personal Data Act § 32 and § 33 to protect the confidentiality.

Right of access to personal data

A person has the right to check their information in accordance with the Personal Data Act § 26 or alternatively request deletion of their data.

The request must be in writing and signed, delivered to the contact person mentioned as the responsible for the registrar. The registrar is entitled to charge a reasonable fee for provision of information, if less than one year has passed since the last time the requestor got the information for review.

en