Register and Privacy statement and cookie practices
This is the Company’s registration and data protection statement in accordance with the EU General Data Protection Regulation (GDPR). Prepared on 22 May 2022.
Who we are
T&D Finnish Education Oy
The address of our website is: https://td-edu.fi.
Company number 3264745-8
Contact person in matters concerning the register:
We process personal data confidentially and by the new EU data protection regulation.
This privacy statement explains what kind of information is collected about the user of the online service, what it is used for, and what influence the user has.
When site users leave comments on the site, we collect the information in the comment form, as well as the user’s IP address and browser version information to facilitate the identification of spam messages.
When visitors leave a comment on this site, we collect the information that is visible in the comment fields, the IP address, and information related to the browser version.
If you upload images to this site, you should avoid uploading images with stored location information (EXIF GPS). Site visitors can download and view location information from the images that are on the site.
As most of the online services, our website uses first-party and third-party cookies for several purposes. First-party cookies are mostly necessary for the website to function the right way, and they do not collect any of your personally identifiable data.
The third-party cookies used on our website are mainly for understanding how the website performs, how you interact with our website, keeping our services secure, providing advertisements that are relevant to you, and all in all providing you with a better and improved user experience and help speed up your future interactions with our website.
If you leave a comment on the site, you can choose to save the name, email address, and URL in a cookie. This function increases the convenience of use because you do not have to fill out the form again every time you add a comment. Cookie information is deleted from the browser after one year.
If you have an account and log in to the site, we set a temporary cookie that determines whether your browser supports cookies or not. This cookie does not contain personal information and is deleted when the browser window is closed.
When you log in, we set several cookies that save your login and display settings. Login cookies are deleted within two days, and cookies related to display settings are deleted after a year. If you select “Remember me” when logging in, your login information will be stored for two weeks. If you log out, the cookies related to logging in will be deleted at the same time.
If you publish an article or edit an existing one, we save a cookie in the browser that contains the ID of the article to be edited. The cookie expires in one day.
The content embedded from other sites
Articles on this site may contain embedded content (for example, videos, images, articles, fonts, etc.). Opening embedded content imported from other sites is comparable to the visitor visiting a third-party site.
You can change your cookie preferences any time by clicking the above link. This will let you revisit the cookie consent banner and change your preferences or withdraw your consent right away.
In addition to this, different browsers provide different methods to block and delete cookies used by websites. You can change the settings of your browser to block/delete the cookies. Listed below are the links to the support documents on how to manage and delete cookies from the major web browsers.
If you are using any other web browser, please visit your browser’s official support documents.
Who we share your information with
If you request a password reset, your IP address will be included in your reset email.
How long do we keep information
If you leave a comment, the comment and its metadata will be stored for the time being. This is done so that we can recognize and approve subsequent comments automatically, rather than keeping them in the moderation queue.
We store the user profile data of registered users. All users have the opportunity to see, modify and delete their own personal data at any time. Only the username cannot be changed. Website administrators can view and edit user profile information.
What rights do you have to your own information
If you have a user account on this site or have left comments, you can request a summary file of your own personal data, including all the personal data you have given us. You can also request the deletion of your personal data. The right to delete your own data does not apply to personal data that we have to keep for maintenance, legal, or information security reasons.
Where we send your information
Visitors’ comments may be checked through an automated anti-spam service.
1. The contact person responsible for the register
2. Register name
3. Legal basis and purpose of personal data processing
According to the EU General Data Protection Regulation, the legal basis for processing personal data is:
The purpose of processing personal data is to communicate with customers and maintain a customer relationship or work relationship.
The information is not used for automated decision-making or profiling.
4. Data content of the register
Information to be recorded in the register is a person’s name, position, company/organization, contact information (phone number, e-mail address, address), website addresses and content management system user IDs, IDs/profiles in social media services, information about ordered services and their changes, invoicing information, other customer relations and information related to the ordered services.
Information is stored for the duration of the customer relationship or one year.
5. Regular sources of information
The information to be saved in the register is obtained from the customer, e.g. From messages sent via web forms, by e-mail, by phone, via social media services, contracts, customer meetings, and other situations where the customer gives out their information.
Information about contact persons of companies and other organizations can also be collected from public sources such as websites and directory services.
6. Regular transfers of data and transfers of data outside the EU or EEA
Information is not regularly disclosed to other parties. Information can be published to the extent agreed with the customer.
Data can also be transferred by the controller outside the EU or EEA. Data will not be transferred to the United States without the express consent of the data subjects.
Personal data will not be disclosed to other parties.
7. Principles of registry protection
Care is taken when processing the register and the information processed with the help of information systems is properly protected. When registry data is stored on Internet servers, the physical and digital data security of their hardware is taken care of accordingly. The registrar ensures that stored data as well as server access rights and other data critical to the security of personal data are handled confidentially and only by those employees whose job description it is.
8. Right of inspection and right to demand correction of information
Every person in the register has the right to check the information stored in the register and to demand the correction of any incorrect information or the completion of incomplete information. If a person wants to check the information stored about him or demand correction, the request must be sent in writing to the controller. If necessary, the registrar can ask the requester to prove his identity. The controller responds to the customer within the time stipulated in the EU data protection regulation (generally within a month).
9. Other rights related to the processing of personal data
A person in the register has the right to request the removal of personal data about him from the register (“right to be forgotten”). Those registered also have other rights according to the EU’s General Data Protection Regulation, such as limiting the processing of personal data in certain situations. Requests must be sent in writing to the controller. If necessary, the registrar can ask the requester to prove his identity. The controller responds to the customer within the time stipulated in the EU data protection regulation (generally within a month).