Suomen Latu

Join us

Privacy Policy

Privacy Policy

Privacy Policy

In this privacy policy, we provide information exclusively regarding the customer registers of the Suomen Latu ry website and its background systems, as well as the principles for processing that data.

We may occasionally change our privacy practices and this privacy policy. We recommend that you review our privacy practices regularly.

1. Controller

Suomen Latu ry Paavo Nurmen tie 1, 00250 Helsinki, Finland

jasenpalvelu@suomenlatu.fi

Business ID: 0202192-1

2. Person Responsible for Register Matters and/or Contact Person

Suomen Latu Member Services jasenpalvelu@suomenlatu.fi

3. Name of the Register

Suomen Latu ry website user and form data register.

4. Legal Basis and Purpose of Processing / Use of the Register

The legal basis for the processing of personal data under the EU General Data Protection Regulation (GDPR) is the legitimate interest of the controller when the data is used for website development, browsing analysis, statistics, and reporting.

The legal basis for contacts received through website forms is a contract when the data is used for customer service and volunteer registration. The legal basis for newsletter subscriptions made through website forms is consent.

The data is not used for automated decision-making. Data may be used for profiling.

5. Data Content of the Register

  • First and last name

  • Address information

  • Electronic contact details – telephone number, email address, etc.

  • Data collected by Google Analytics

  • Additionally, website forms provide the user with the opportunity to voluntarily provide other information they deem relevant.

Data Retention Period Data is stored only for as long as the legal basis for processing is valid. Data may be stored longer to the extent necessary to fulfill obligations set by current legislation (e.g., accounting responsibilities) and to demonstrate their proper fulfillment.

6. Regular Sources of Information

Data is collected directly from the user via electronic forms on the website and through the Google Analytics application.

7. Regular Disclosures of Data and Transfer of Data Outside the EU or EEA

Data is disclosed to companies that maintain information systems on behalf of the controller. Data collected by Google Analytics may be processed outside the EU or the European Economic Area (EEA).

8. Principles of Register Protection

Care is taken in the handling of the register, and data processed with the help of information systems is appropriately protected. When registry data is stored on internet servers, the physical and digital security of their hardware is appropriately managed. The controller ensures that stored data, server access rights, and other information critical to the security of personal data are handled confidentially and only by employees whose job description requires it.

Electronically Stored Data Full registry data can only be accessed by the controller and the technical maintenance personnel of the processors.

Manual Material As a rule, we avoid printing registry data into manual material. If, in certain situations, manual material is printed from the register, the material is kept in a locked space, and only the controller has the right to use the material.

9. Right of Access and Implementation of the Right of Access

Every person in the register has the right to check their data stored in the register and to correct any incorrect or incomplete information.

10. Other Rights Related to the Processing of Personal Data

A person in the register has the right to request the removal of personal data concerning them from the register (“the right to be forgotten”). Likewise, data subjects have other rights under the EU General Data Protection Regulation, such as restricting the processing of personal data in certain situations.

Requests must be sent in writing to the controller. The controller may, if necessary, ask the requester to prove their identity. The controller will respond to the customer within the timeframe set by the EU GDPR (generally within one month).

11. Cookies

This site uses cookies. The site sends a small file to the browser, which is stored on the computer’s hard drive. We use both (temporary) session cookies, which close when you close your internet browser, and persistent cookies, which are stored on the computer’s hard drive. The purpose of the cookie is to improve the user experience on the site.

If you are a registered user, the cookie also manages the login and access to pages intended only for registered users. Cookies can be used to track and view the user’s interests and thereby influence the usability of the service. Internet browsers generally accept cookies automatically. If necessary, the use of cookies can be disabled in the browser settings, in which case some functionalities will be removed.

Advertising cookies may be used to help optimize the advertising experience for the service user. Some third-party vendors, including Google, may also use cookies or web beacons (1-pixel image files) to improve the advertising experience.

The data collected with cookies and web beacons does not contain the user’s personal data. Online activities cannot be linked to a specific person through them.

Compiled: February 27, 2026

Back to top