Member Registry and Privacy Statements
On this page, you will find the registry and privacy statements of Women in Film & Television ry in accordance with the Personal Data Act (10 and 24 §) and the EU General Data Protection Regulation (GDPR).
The statements were prepared on 2.5.2024. The latest changes were made on 3.5.2024.
Registry Controller
Women in Film and Television Finland ry
Address: Kaapelitehdas – Tallberginkatu 1B, 5. krs
00180 Helsinki
Phone: +358 44 971 3324
Email: wift@wift.fi
Person responsible for the registry
Jutta Ahtola
wift@wift.fi
+358 44 971 3324
Registry name
Women in Film & Television member registry
The legal basis and purpose of processing personal data according to the EU General Data Protection Regulation is
The consent of the individual (documented, freely given, specific, informed and unambiguous) and the legitimate interest of the controller (in this case, membership).
The purpose of processing personal data is to communicate with the membership of Women in Film and Television Finland.
The data will not be used for automated decision-making or profiling.
Registry data content
Information stored in the registry includes: name, contact details (phone number, e-mail address, address), country of origin & professional title. On a voluntary basis, we also record information on the applicant's place of residence, nationality, primary language, gender, employer and self-employment. The personal data collected on a voluntary basis is used to provide statistical information for the development of the organisation's membership services.
Membership data is kept on file for the duration of membership.
Regular data sources
The information stored in the member register is obtained from the member applicant through, for example, messages sent via web forms, e-mail, telephone, social media services, contracts, networking meetings and other situations where the member applicant provides their information.
Information from contact persons of companies and other organisations may also be collected from public sources such as websites, directory services and other companies.
Regular data disclosures and transfer of data outside the EU or EEA
There is no regular disclosure of personal data to other parties. Data may be published to the extent agreed with the member.
Principles of registry protection
Care is taken in the processing of the registry, and data processed with information systems is appropriately protected. When registry data is stored on Internet servers, appropriate care is taken of the physical and digital security of their hardware.
The registry controller ensures that stored data, as well as server access rights and other critical data for the security of personal data, are processed confidentially and only by those employees whose job description it belongs to.
Right of inspection and the right to demand correction of information
Every person in the registry has the right to check the data stored in the registry and to demand that incorrect information be corrected or incomplete information be supplemented. If a person wants to check the data stored about them or demand their correction, the request must be sent by email to the registry controller. The registry controller may, if necessary, ask the person making the request to prove their identity.
Other rights related to the processing of personal data
The person in the registry has the right to request the deletion of their personal data from the registry ("the right to be forgotten"). Likewise, registered persons have other rights according to the EU General Data Protection Regulation, such as the restriction of processing personal data in certain situations. Requests must be sent by email to the registry controller. The registry controller may, if necessary, ask the person making the request to prove their identity. The registry controller responds to the customer within the time specified in the EU Data Protection Regulation (usually within a month).