We process personal data with care, and take proper care of data security. Up-to-date technical solutions such as firewalls and encryption are used.
In our processes, the personal data is processed only by our employees or our partners' employees who are entitled to process personal data. Access and read-only access to the data systems are determined and granted only to the extent required by the task and only to the individuals who need the personal data in the data system concerned in order to perform the task assigned to them.
We process your personal data in accordance with General Data Protection Regulation (GDPR), in a way that respects the rights and freedoms of the data subject. We ensure that data protection principles are followed at all stages of the processing of personal data.
Personal data is be processed manually (on paper) electronically and in various different data systems which are administered by either Aalto or its partner.
We have selected as service providers only those processors who comply with good personal data processing practices through appropriate technical and organizational measures, meet the requirements of the General Data Protection Regulation and are able to enforce your rights.