Search
- Fess search
Showing 81 to 100 of 393 entries.
-
Frequently asked questions about banking Are banks permitted to copy my ID? Yes. Banks have a statutory obligation to know and identify their customers. Among other things, this means that the bank must verify the customer’s identity in a reliable...https://tietosuoja.fi/en/faq-banking
-
Designating a data protection officer A data protection officer must be designated if your organisation processes sensitive data on a large scale monitors individuals regularly, systematically and on a large scale or your organisation is a public ...https://tietosuoja.fi/en/designating-a-data-protection-officer
-
Brexit and the transfer of personal data to the UK When the transition period for the withdrawal from the EU ended, the United Kingdom lost all its rights and obligations as a Member State. Due to the withdrawal from the EU, data protection regula...https://tietosuoja.fi/en/brexit-and-the-transfer-of-personal-data-to-the-uk
-
Accessibility statement of Tietosuoja.fi This accessibility statement applies to the website www.tietosuoja.fi and it was created on 22 September 2020. The statement has been updated on 20 January 2026. We are committed to providing accessibility ...https://tietosuoja.fi/en/accessibility-statement
-
Data protection officers A data protection officer is an expert within the organisation, who monitors the processing of personal data and provides advice on compliance with data protection regulations. The data protection officer monitors complian...https://tietosuoja.fi/en/data-protection-officers
-
Transfers on the basis of an adequacy decision Personal data can be transferred out of the European Union and European Economic Area if the European Commission has issued a decision on an adequate level of protection for personal data (‘adequacy d...https://tietosuoja.fi/en/transfers-on-the-basis-of-an-adequacy-decision
-
Frequently asked questions about the Digital Services Act (DSA) What kinds of operators are subject to the DSA's obligations? The obligations imposed by the Digital Services Act (DSA) apply to all online services, referred to as 'intermediary serv...https://tietosuoja.fi/en/digital-services-act-dsa-
-
Frequently asked questions about search engines How do I request that a search result be erased from a search engine? Contact the search engine directly to request the erasure of a search result. Out of the search engines, at least Google and Bing...https://tietosuoja.fi/en/faq-search-engines
-
Purpose limitation The purpose of processing personal data must be planned and defined clearly before the start of processing. Personal data may only be collected and processed for a specific and lawful purpose. The data may not be processed in a ...https://tietosuoja.fi/en/purpose-limitation
-
Derogations for specific situations Article 49 of the General Data Protection Regulation provides for derogations for specific situations. They are a last-resort basis for data transfer, only applicable in exceptional cases . The transfer of data ...https://tietosuoja.fi/en/derogations-for-specific-situations
-
Processors A processor is an individual or an organisation that processes personal data on behalf of a controller. Processors operate according to the controller’s instructions and under its supervision. The controller determines the purposes and ...https://tietosuoja.fi/en/processors
-
The processing of personal data at the Office of the Data Protection Ombudsmanhttps://tietosuoja.fi/en/our-data-protection-policy
-
Current issues Deputy Data Protection Ombudsman: individuals must be able to access their credit information for free Publication date: 30.3.2026 Suomen Numerokeskus fined for failing to provide call recordings Publication date: 25.3.2026 The Offi...https://tietosuoja.fi/en/current-issues
-
Scientific research and data protection Taking care of data protection builds trust in research subjects and is a requirement for the success of any study. It is essential to plan the processing of personal data for its entire lifespan before the ...https://tietosuoja.fi/en/scientific-research-and-data-protection
-
Find out whether the Data Protection Ombudsman can help you What do you want to do? I want to obtain information on the processing of my personal data. I want access to my personal data I want to rectify my personal data. I want to erase my person...https://tietosuoja.fi/en/en/find-out-whether-the-data-protection-ombudsman-can-help-you-rights
-
Defining the research scheme and purpose for processing personal data Processing personal data for purposes of scientific research must comply with the requirement of purpose limitation. The purpose of processing personal data must be planned and ...https://tietosuoja.fi/en/defining-the-research-scheme-and-purpose-for-processing-personal-data
-
Lecture requests The Office of the Data Protection Ombudsman’s experts can be invited to give lectures at training events held by stakeholders and other organisations. As a rule, such lectures are subject to a fee. The fees are based on the Act on...https://tietosuoja.fi/en/lecture-requests
-
Frequently asked questions about the internet Is the controller entitled to publish personal data from its personal data file on its website? Personal data stored in a personal data file may only be published on the internet with the consent of th...https://tietosuoja.fi/en/faq-internet
-
European cooperation The Office of the Data Protection Ombudsman is an active member of the European Data Protection Board (EDPB). The EDPB promotes cooperation between European data protection authorities and the consistent application of data pr...https://tietosuoja.fi/en/european-cooperation
-
Controller's legitimate interests The processing of personal data can sometimes be justified due to the legitimate interests of the controller or a third party. The use of legitimate interests as a basis for processing requires particularly carefu...https://tietosuoja.fi/en/controller-s-legitimate-interests