Executive summary
The present privacy policy describes the principles and policies regarding data
collected and handled by the petrisarvamaa.eu website. The owner of the
petrisarvamaa.eu website is Petri Sarvamaa and it is administered by Petri
Sarvamaa’s office. We are committed to protecting the privacy of the users of our
website and we adhere to privacy and other laws, and follow good privacy
practices in our activities. The gathered personal data is used, for example, for
sending out newsletters and handling correspondence.
We collect data directly from our website users, automatically via the website’s
technical set up and through analysis services offered by third parties.
Electronic Direct Marketing – we may send you emails provided that you have
subscribed to our newsletter and agreed to it. You can cancel the newsletter
subscription at any time if you wish by using the cancel subscription link or by
sending us an email to petri.sarvamaa (at) europarl.europa.eu.
Using cookies and other monitoring techniques – Our website uses cookies for
monitoring and analysing its use. In addition, the website may include third party
cookies and so-called social plugins.
Sharing information with third parties – We share personal information with our
associated partners only for reasoned purposes, which are described in more detail
in section 4.
You have the right to receive information regarding which of your personal data
is handled by the petrisarvamaa.eu website and how – By following the
instructions given below, you can check the person register on the
petrisarvamaa.eu website to see which of your personal data is registered there.
We will not store your data for longer than is necessary for the purposes described
in the present privacy policy.
1. General
The present privacy policy outlines what personal and other data we collect and
how we handle the information.
The petrisarvamaa.eu website complies with valid legislations on users’ privacy and
it handles personal data based on good data management and handling principles.
‘Personal data’ refers to information that can be used to identify individuals. In
addition to personal data, we also collect non-personal data, which refers to
information that is linked to service use, which cannot be used to identify
individuals.
2. How we use collected data
Personal data retrieved via the petrisarvamaa.eu website can be used for the
following purposes:
- ordering services (newsletter)
- handling correspondence
- ensuring usability and effectiveness
- design purposes and service development
3. What information we collect and from what sources
Personal data is collected both from users themselves and other sources. The
information is gathered via different channels (internet, email, etc.), either directly
from users or from our associated partners. Information may also be gathered
automatically via the service’s technical set-up.
We use different sources to gather the following information about users.
Information given by users
We gather information that is given to us by users when they order our services
(newsletter), for example, or when they give us their contact details via a contact
form.
This information includes:
- name
- material sent by users (photos, opinion pieces and other types of texts),
- comments that appear on social media channels
Technically gathered information about service use
We use technical means to gather information about service use and the technical
aspects of devices by means that are described in more detail below. The
information is collected automatically.
The information includes:
- IP address (and country of location)
- activities and when they are carried out in services (including viewed
websites and content as well as viewing times) - unique identification codes used by devices
- information regarding deployed devices, operating system type and
software versions - browser type and language settings
- the website that has led the user to the various services and the website
the user visits after using those services, the user’s server and domain
Information received from third parties
In relation to our services, we use analytical tools and measuring systems provided
by third parties in order to also gather and take advantage of information that is
not person-related. These include Google Analytics.
In addition, we may use information that we have bought or received from third
parties. In such cases we demand that the third party has gathered and shared the
information according to legal principles.
Marketing Register
We may save information, such as users’ names and languages of instruction,
marketing consent and prohibition, as well as contact information for contacting
purposes, in the marketing register. This information is stored in the marketing
register indefinitely. Users can prohibit the use of this information for direct
marketing purposes by the means described in section 9.
4. Sharing information with third parties
Personal information can be shared for reasoned purposes. When sharing data, we
adhere to current legislation on personal information.
Information can be shared with entities that are involved in the provision of
services, such as email services, as well as data and analytical services, and services
that provide company information. Information may also be shared with entities
that take part in data analysis.
We may also share user information with competent authorities or when
requested to do so by other entities, in each case according to valid legislation, or in
order to monitor and make sure that service conditions are being followed, and to
ensure the safety of services.
5. Cookies and other monitoring techniques
We use cookies, web beacons, scripts and other similar technical identifiers and
techniques in order to identify terminal equipment, to monitor and analyse service
use, to improve service quality, to develop services further, and to focus
advertising and other marketing elements.
Cookies are small text files that the browser saves onto the user’s terminal
equipment. Cookies usually include an anonymous, unique identifier, which can be
used to identify the browsers that are using the services. Information gathered via
cookies can be shared with third parties provided that the conditions set by the
present privacy policy are followed.
Services may also include third party cookies, such as those used by measuring and
monitoring services and ad networks. In connection with service use, third parties
may enable cookies on your data terminal equipment.
Third Parties
When delivering services, we use our own technical tools as well as those offered
by third parties in order to collect and also take advantage of non-personal
information. Measuring services, such as Google Analytics, also use cookies. The
petrisarvamaa.eu website and its associate partners may gather information
regarding the effectiveness of marketing strategies, including content impressions
and email sign-in rates.
With regards to services provided by third parties, their specific privacy policies
and user conditions will apply. In such cases, the petrisarvamaa.eu website is not
responsible for the way those entities gather and handle data, including how they
use cookies and other monitoring techniques and links. We recommend that you
familiarise yourself with the service conditions and privacy policies relevant to
such third party services. The petrisarvamaa.eu website may utilise information
gathered via third party services in order to analyse and categorise service users,
as well as focus and limit advertising within such services.
How to clear and block cookies
6. Personal data processors
The petrisarvamaa.eu website processes your personal data in accordance with
valid privacy laws. The data can only be handled by specified persons and according
to guidelines set by Petri Sarvamaa’s office.
We may use external service providers for data processing and a specific technical
user interface for opening saved information. Users’ personal data may be shared
with such service providers to the extent to which it is necessary in order to
maintain, develop and offer services. We choose our service providers carefully
and make contractual arrangements to ensure that personal data is handled in
accordance with the applicable legislation on data protection.
7. Transferring data to third countries
In general terms, we do not transfer personal data outside the EU or ETA. If
information is transferred to countries outside the EU or ETA, we will make sure
that it is protected by appropriate means, for example, by carrying out agreements
regarding confidentiality and processing issues based on appropriate legislation. To
do this we use standard contractual clauses approved by the European
Commission, for example, and otherwise, by ensuring that personal data is handled
according to the present privacy policy.
8. Register protection
Our registers are protected duly by appropriate technical and organisational
measures. We also ensure that our systems are fault tolerant and are capable of
data restoration.
Our registers are administered within protected servers and services. Protective
measures include, for example, access management, access control, firewalls and
password protection, which only enables the website administrators and service
providers that have a contract with the petrisarvamaa.eu website to access saved
information.
With regards to potential personal data breaches, we will contact authorities or
users directly according to applicable legislation on data protection.
9. User rights
Data verification Users have the right to check the information about them that
appears in the petrisarvamaa.eu website’s person register.
Rectifying and erasing data Users have the right to request for errors in their
personal data to be corrected or for data to be supplemented or removed from the
register if it is incorrect, unnecessary, incomplete or expired with regards to the
purpose of the handling of that piece of personal data.
If the user wants their personal data to be modified or removed from the
petrisarvamaa.eu website’s register, they should send an email to
petri.sarvamaa (at) europarl.europa.eu.
Prohibiting direct marketing Users have the right to refuse direct text marketing
by following the guidelines that appear in such messages for being removed from
the list, or by notifying the petrisarvamaa.eu website separately.
Withdrawal of consent If the processing of personal data is based on a separate
consent that has been granted by a user on the petrisarvamaa.eu website, the user
has the right to withdraw that consent with regard to the processing of data that
relates to them.
If users want to use their above-mentioned rights, they can contact the
petrisarvamaa.eu website at any time via the contact details that appear in section
12.
10. Data storage
The petrisarvamaa.eu website will store your personal data in accordance with
valid privacy laws and only for as long as is necessary for the purposes described in
this privacy policy.
If the user no longer subscribes to services, the majority of their personal data will
be removed, transferred to a permanent marketing register or modified so that the
object of that data can no longer be recognised.
11. Changes in the Privacy Policy
We develop our services and we may occasionally modify the present privacy
policy. Changes may also be based on amendments with regards to legislation on
data protection. Therefore we recommend that you check the privacy policy
regularly.
12. Registrar
The petrisarvamaa.eu website’s administrator acts as the registrar. Users may
contact the administrator whenever they want to via the following contact details:
petri.sarvamaa (at) europarl.europa.eu
tel. +32 2 28 38647
petrisarvamaa.eu
European Parliament
Rue Wiertz, ASP 11 E 215
1047 Brussels
Belgium
www.petrisarvamaa.eu
