Data Protection Officer
Data Protection Officer Lassi Kauttonen
The Ministry of Social Affairs and Health, Department for Communities and Functional Capacity
The Ministry of Social Affairs and Health, PO 33, FI-00023 Government
Registry: kirjaamo.stm(at)gov.fi and tel. +358 295 63100
Digital security at the Ministry of Social Affairs and Health
The premise of the Ministry of Social Affairs and Health is that everyone must be able to carry out their work in a safe environment. In addition, all citizens must be able to use electronic services securely and be informed that their personal data is carefully protected with appropriate data protection measures. As most of the work and services nowadays take place in an electronic environment or at least with ICT devices, the safety of the electronic environment is vitally important for the Ministry of Social Affairs and Health.
Information security is promoted, for example, as part of the steering of digitalisation in the healthcare and social welfare sector, various law drafting groups, advisory boards and information work, and by guiding the administrative branch. The Ministry is active in cross-administrative expert groups that are related to information security in different ministries. It also issues statements and participates in international information security networks.
The legislative drafting and advisory boards take into account the information security of the digitalisation of the healthcare and social welfare sector and its special features and requirements and, in a similar way, information steering supports the implementation of information security in the healthcare and social welfare sector.
In addition to preparing for various cyber-security situations and making risk-based information security plans, the Ministry manages continuity and preparedness in accordance with national guidelines and policies, such as national cyber security exercises and risk management.
While ensuring the information security of its own systems, the Ministry promotes the information security of the Government's shared systems and works in close cooperation with government experts.
The Ministry has appointed an information security manager and two other highly experienced information security experts.
Processing of personal data
Personal data is only stored for justified reasons. As a rule, the data is needed to implement services and for communication. The use of the services is voluntary, and the personal data provided is not processed for any purposes other than those indicated.
The data is processed by the persons maintaining the contents of the service in the ministries, as well as by cooperation partners and their subcontractors who produce the service. The Ministry has agreed on the processing of personal data with these bodies in accordance with the requirements of the General Data Protection Regulation.
As a user of services, you have the right to know what data we store about you and who processes your data. In addition, you can also check the data we have collected about you and update it, if necessary.
User's rights and requests for personal data
If you need more information concerning the processing of your personal data at the Ministry, please contact the Ministry's Data Protection Officer.
The data stored
The data collected varies depending on the case. When registering for an event, participants are typically requested to provide their name and email address. Depending on the event, other personal data may also be requested.
When you are in contact with us, we also collect the following information
- Data that you have given to us when you have participated in events.
- Feedback and letters you have sent, requests for documents or information, and any other contacts you have made.
Disclosure of data
We may disclose data on a case-by-case basis to parties involved with the surveys, such as the security control personnel of ministries. Our subcontractors process personal data in their role as service providers.