Keeper of the register

Redicom Oy is the keeper of the personal register of members. This Privacy Policy will only cover the personal data of members. of the personal data subjects.

• Redicom Oy
• Kutomotie 16
• 00 380 HELSINKI

The keeper of the personal data of the organisation/company customers is the employer of each employee. Safetypass.EU provides an empty platform service for the employer, where the employer enters his/her own data in response to the request, and the content of the data, its accuracy and the management of the content.

Persons responsible for the register

The person responsible for the register is the project manager assigned by Redicom Oy. The contact person for the register is CIO Juha Männistö, Viinikankatu 49, 33800 Tampere, tel. +358 40 844 2301 The information systems of the personal register are managed by Redicom Oy. The information system of the personal register is maintained by Redicom Oy.

Name of the register

The name of the personal register is "Safetypass.EU".

Purpose, legal basis and grounds for processing of the personal data file

The purpose of Safetypass.EU is fourfold:

• For an individual, the system provides an electronic training account as a record of competences and achievements for further distribution or to demonstrate professional qualifications.
• For the company, the system provides, through the person's data authorisation, the data link required to manage, manage and achieve competence requirements.
• For the owner of a qualification training programme, the system provides a performance management, performance platform and management system.
• For the trainer, the system provides a training notification site, course management, course training history and automated qualification reporting and course history in the person's own folder.

The legal basis for processing personal data under the EU General Data Protection Regulation is:

• the consent of the individual, which is requested and logged at the time of the start of the service
• a company-specific agreement where consent is requested from the individual and logged.
• where applicable, the employer's sector-specific legislation, such as the law on the right to work, which is obtained by requesting the consent of the employee and the person concerned, and
• legitimate interest of the data controller (customer relationship, proof of completion of training, employment relationship or membership)

The purpose of processing personal data is to build a register of work and leisure skills for the individual to share, request completion or deletion of information they own. By accessing the Service, each user authorises Safetypass.EU and any employer company to process his/her data held on the Service for the purpose of providing the Service. Through the Service, the individual will be able to make data queries to third party registers in compliance with the European Community GDPR data protection article. The individual will be able to make a query to obtain his/her own data or to transfer his/her own data to another register. The service also includes initial European-wide training modules for qualification holders and their descriptions.

Data content of the personal register

Personal data will be stored in the system to the extent that the individual decides to submit them to the service. At a minimum, the following information is required:

• First name and surname
• Date of birth
• First name and surname
• Telephone number.

Company information is stored to the extent that the company decides to submit it to the service, or at least to the extent that the company decides to submit it:

• Name
• Type of company
• Business name
• Address details
• E-mail address
• Website address and
• Qualification training programmes owned by the company, if any

The log contains different levels of information:

• who is asking
• who is asking
• who to ask * what to ask
• when the survey was conducted
• who was asked who, what was asked when, what was asked about * what was asked about * where was asked about.

Regular data sources

In data queries, the aim is always to confirm the source of the data. In the case of training data, this is done through a data query to the owner of the training programme or, in the case of a company linkage, through a list of training records validated by the company. In the case of personal data, the individual provides his/her own information about him/herself and his/her skills. The company will be able to complete the person's competences. The source of the course data is either the course module and thus the trainer and the training event, or the date of the course through the confirmation of the training programme.

Regular data disclosures and data transfers outside the EU or the European Economic Area

No data will be passed on. Data resources are not transferred outside the EU or the European Economic Area.

Principles for the protection of the register

Service process

The register is processed with due care and the data processed by the information systems and the environment in which the systems are used are adequately protected. The physical and digital security of the hardware is adequately ensured. The controller shall ensure that the data stored, as well as access rights to servers and other information critical to the security of personal data, are treated confidentially and only by employees whose job description includes this.

Public address

The personal data register operates on the internal and external network of Redicom Oy in such a way that the external