Privacy Statement for Theses Competition
Privacy statement in accordance with the EU General Data Protection Regulation
The Finnish Youth Research Society processes personal data responsibly, respecting the privacy of the individuals. We process personal data in accordance with the applicable laws and statutory guidelines and the principles of good governance.
Date of creation: 18 March 2019. Updated: 24 August 2021.
Finnish Youth Research Society
Kumpulantie 3 A
00520 Helsinki, Finland
Tel. +358 44 416 5314
Contact person of the register
Kumpulantie 3 A
tel. +358 44 416 5314
Name of the register
Participant register of the Finnish Youth Research Society’s thesis competition.
The Finnish Youth Research Society has also published other privacy statements. The Finnish Youth Research Society maintains a list of all of its privacy statements in accordance with the law, in the controller’s statement on processing operations.
Purpose of personal data processing
Personal data are processed on the basis of the data subject’s consent for the purposes of the Finnish Youth Research Society’s thesis competition and associated actions.
Data content of the register and categories of individuals
The customer register contains data on persons participating or who have participated in the Finnish Youth Research Society’s thesis competition.
The customer register includes the following identifying information: name, address, email address and telephone number. Other processed register data includes data provided by the data subjects on the educational institution they attend, their thesis and its instructor, grade and date of approval. The register also includes the theses submitted to the competition.
By registering in the competition, data subjects give their consent to the inclusion of their thesis in Youth Research Library archives from where the thesis can be borrowed, and the publication of their work on the Finnish Youth Research Society’s website should the work be awarded.
The personal data of those participating in the competition will be permanently entered in the register of persons who have taken part in the thesis competition in different years unless the data subject separately requests that their data be erased.
Regular Sources of information
Register data are received from the data subjects themselves when they register in the competition.
Regular disclosure of data
The data included in the register will be provided to the jury that evaluates the submitted theses and to the Youth Research Library.
In addition, register data may be transferred to another processor of personal data within the organisation.
The controller will not disclose the data subjects’ personal data to any other parties in addition to those mentioned above. Due to the technical requirements of data processing, some of the data may be physically located on subcontractors’ servers and devices.
Transfer of data to non-EU or non-EEA countries
Personal data is not transferred to non-EU or non-EEA countries.
Principles of register protection
The data stored in electronic form and protected by technical means. Access to the data is subject to sufficient rights and authentication. The data can only be accessed by the controller.
Data subjects’ rights
Right of access
Data subjects have the right to review the register data concerning them and to be provided with a copy of this data if they so request. Requests to review personal data must be made in writing to the contact person for the data register.
Right to rectification
Data subjects have the right to request that the data concerning them in the register be rectified. If the data is inaccurate, requests to rectify data must be made in writing to the contact person for the register.
Right to erasure
Data subjects have the right to request that the data concerning them in the register be erased. Requests to erase personal data must be made in writing to the contact person for the data register.
It may not be possible to erase all of the data immediately, due to accounting regulations, for example. The data is erased by anonymising the personal information of the data subject – that is, by deleting or encrypting all data that may make the person identifiable.
Right to file a complaint with the supervisory authorities
Data subjects have the right to file a complaint with the supervisory authorities concerning the processing of their personal data.