Data Protection and Information Management
The City of Rauma complies with the EU General Data Protection Regulation (GDPR) and other national legislation concerning data protection. Good information management in the City of Rauma ensures the uniform and high-quality management of data and the secure handling and use of data.
EU General Data Protection Regulation (GDPR)
The City of Rauma has complied with the EU General Data Protection Regulation (GDPR) since 25.5.2018. The GDPR is directly applicable legislation, which is supplemented by the Data Protection Act (1050/2018) and other national legislation.
With the Regulation, the rules on the processing of personal data have become more precise and harmonised across The European Union. Proper processing of personal data strengthens the rights of the data subject and increases openness and transparency.
Key elements of the GDPR include
- the lawfulness of the processing of personal data
- minimising the amount of personal data and ensuring the accuracy of personal data collected
- more information for the data subject
For private individuals, i.e. those who are registered, the reform will be reflected in new rights, for example. Data subjects will have the right to be informed about what data is stored about them and how their data is processed and used for different purposes.
Cookies
Rauma.fi and its sub-sites use cookies. A cookie is a small text file that a web browser stores on a user’s computer or mobile device. Cookies do not harm the device or other files. Only the server that sent the cookie can read or access the cookie later. Cookies can be used to track user activity on websites, but the information collected is not used to identify individual users. Some functionalities of the site will not be available if the user accepts only the necessary cookies. This includes, for example, the embedding of YouTube videos.
Cookies are used to improve the content of the website and to personalise the information and services provided to users. Cookies are also used to ensure technical functionality. Google Analytics is used to collect tracking information, such as statistics on the number of visitors and the most popular content.
Processing of Personal Data and Contracts
According to Article 28 of the GDPR, the processing carried out by the processor of data must be specified in a contract if the owner of data and the processor of data are different entities.
The City of Rauma has agreed with the software suppliers on the processing of personal data by means of a separate Privacy Policy attached to the contracts.
City of Rauma Data Protection Officer
The Data Protection Officer is the organisation’s internal specialist on data protection issues and the contact person for data subjects and the supervisory authority. Data subjects can contact the Data Protection Officer on any matter relating to the processing of their personal data or on questions concerning the exercise of their rights under the GDPR.
-
Kuusio Kristiina
Wellbeing Manager
Tel. 044 403 6383
kristiina.kuusio@rauma.fi
Further Information
Information Management
The Public Administration Information Management Act 906/2019 (the Information Management Act) defines the general principles and requirements for how information management should be implemented in public administration. The Act also applies to Finnish municipalities. The purpose of the Information Management Act is:
- to ensure the uniform and high-quality management and secure processing of data at the City of Rauma in order to implement the principle of public access;
- to enable the secure and efficient use of operational data to enable the city authorities to carry out their tasks and provide their services to citizens in an efficient and high-quality manner, in accordance with good governance;
- to promote the interoperability of information systems and resources.
The City of Rauma is an information management unit within the meaning of the Information Management Act, whose task is to organise information management in accordance with the requirements of the Act. Archiving is also part of information management, although it is regulated by a separate Archiving Act 23.9.1994/831.
Information management refers to information management activities and information security measures based on the needs arising from the performance of the Authority’s tasks or other activities. The management of an authority’s data, the processing stages and the information contained is part of information management, regardless of the way in which the data is stored and other processing methods.
- An information resource is a set of documents and other similar information related to a specific task or service of a public authority.
- A Document means a document referred to in Section 5 of Act No 621/1999 on the Openness of Public Administration.
- Data repositories are sets of information assets used in the performance of the tasks or other activities of a public authority, processed by information systems or manually.
Public document description of the City of Rauma: In order to implement the principle of publicity, the City of Rauma maintains a public document description on its website as part of the guidelines for information requests, i.e. a description of the data repositories managed by the City of Rauma and the information included in the register of cases. The description shows what information the City of Rauma holds and how to request it.