Search
- Fess search
-
Data protection in the development and use of AI systems These pages have information on the requirements arising from data protection legislation that should be taken into account when artificial intelligence (AI) systems are developed and used. ...https://tietosuoja.fi/en/ai-systems-and-data-protection
-
Data protection Data protection safeguards your rights when your personal data is processed Everyone has the right to the protection of personal data concerning him or her. Data protection is a fundamental right that safeguards the rights and free...https://tietosuoja.fi/en/data-protection
-
Frequently asked questions about information systems Can the customer of the company be entitled to log data by virtue of the right of access? Article 15 of the General Data Protection Regulation provides for the data subject's right of access to ...https://tietosuoja.fi/en/faq-information-systems
-
EU digital and data regulation The EU's digital and data regulation facilitate the movement of data within the EU, create clear and fair rules for data use and promote compliance with privacy, data protection and competition rules. Digital and dat...https://tietosuoja.fi/en/eu-digital-and-data-regulation
-
Right to data portability The data subject has the right to receive the personal data that he or she has provided to a controller in a structured, commonly used and machine-readable format and, if desired, transmit that data to another controller....https://tietosuoja.fi/en/right-to-data-portability
-
What is personal data? All data related to an identified or identifiable person are personal data. In other words, data that can be used to identify a person directly or indirectly, such as by combining an individual data item with some other piec...https://tietosuoja.fi/en/what-is-personal-data
-
Risk assessment and data protection planning Controllers have a responsibility to assess the risks relating to the processing of personal data every time they are about to process personal data. A risk assessment allows controllers to plan the ste...https://tietosuoja.fi/en/risk-assessment-and-data-protection-planning
-
Right to inspect the data processed by a competent authority The competent authority is required to tell you whether it is processing personal data concerning you. You have the right to inspect which of your personal data different controllers are...https://tietosuoja.fi/en/right-to-inspect-data-processed-by-a-competent-authority
-
Processing of special categories of personal data As a rule, the processing of personal data belonging to special categories is prohibited. Such data reveals the person’s ethnic origin political opinions religion or philosophical beliefs trade uni...https://tietosuoja.fi/en/processing-of-special-categories-of-personal-data
-
Processing of the personal data of Data Protection Officers Controllers and processors must declare the contact details of their Data Protection Officers to our Office. The notification can be made with the form on our website or by providing the ...https://tietosuoja.fi/en/processing-of-the-personal-data-of-data-protection-officers
-
When your personal data are processed in the Schengen Information System or the Visa Information System The Schengen Information System (SIS) and the joint Visa Information System (VIS) of the EU countries are information exchange systems used as ...https://tietosuoja.fi/en/when-your-personal-data-are-processed-in-the-schengen-information-system-or-the-visa-information-system
-
Data Act and powers of the Data Protection Ombudsman The EU Data Act (DA) sets out how data generated by connected products can be shared. Most of the regulation became applicable on 12 September 2025. The Office of the Data Protection Ombudsman m...https://tietosuoja.fi/en/data-act
-
List compiled by the Office of the Data Protection Ombudsman of processing operations which require data protection impact assessment (DPIA) Updated 21.12.2018 Article 35 (1) GDPR requires a DPIA when the processing activity is likely to result in...https://tietosuoja.fi/en/list-of-processing-operations-which-require-dpia
-
Visiting the Office of the Data Protection Ombudsman Instituting a case Our website contains electronic forms for instituting cases falling within the competence of the data protection authorities ( read more on our office’s electronic services )....https://tietosuoja.fi/en/visiting-the-office
-
The Digital Services Act and powers of the Data Protection Ombudsman in the monitoring of online platforms The EU Digital Services Act (DSA) imposes obligations on digital service providers, such as online platforms, to improve the transparency an...https://tietosuoja.fi/en/digital-services-act
-
In the description of public access to documents, we describe what kind of information the Office of the Data Protection Ombudsman stores and how you can request information for yourself.https://tietosuoja.fi/en/description-of-public-access-to-documents
-
Personal data breaches What is a personal data breach? A personal data breach means an event leading to the destruction, loss, alteration or unauthorised disclosure of, or access to, personal data. Examples of personal data breaches include lost d...https://tietosuoja.fi/en/personal-data-breaches
-
If you would like to have your personal data transferred to another controller In certain situations, you have the right to receive your data and transfer them to another service provider. The right to data portability makes it easier for you to c...https://tietosuoja.fi/en/if-you-would-like-to-have-your-personal-data-transferred-to-another-controller
-
Rights of the data subject in scientific research The rights of the data subject arising from the basis for processing should be considered at the planning stage of the study. Research subjects must be informed of how their personal data will be p...https://tietosuoja.fi/en/rights-of-the-data-subject-in-scientific-research
-
Have you been affected by a personal data breach? This page contains instructions for people who have been affected by a personal data breach. If you have been affected by a personal data breach, first check what data about you could have been dis...https://tietosuoja.fi/en/have-you-been-affected-by-a-personal-data-breach