FINFRINGE ry is committed to managing personal data according to privacy laws and good data processing practices. Privacy laws here refer in particular to the EU's General Data Protection Regulation and national personal data legislation.  Written 12.12.2019. Last change  11.11.2022.


Data controller 


Business ID: 2909247-1

Address: Itäinen Rantakatu 60a C 55, 20810 Turku


Name of the register 

FINFRINGE Customer Register


People authorised to handle the register

Executive Director Kristina Vahvaselkä, +358452039080

FINFRINGE ry Chairman Sami Rannila

Email address: first name (at)


The purpose of the register

The purpose of the register is for FINFRINGE ry to

  • Manage and develop customer, member and stakeholder relations
  • Offer and develop products and services
  • Provide, process and archive orders
  • Offer statistical analysis
  • Execute and monitor customer, member and marketing communication
  • Process, analyse and maintain statistics on customer feedback and customer questionnaires
  • Prevent and investigate misuse and problem situations.

The legal basis for the processing of personal data under the EU General Data Protection Regulation is one of the following:

  • individual's consent
  • agreement
  • legal obligation
  • legitimate interest.

The register contains personal information about FINFRINGE ry's current and potential clientele.


Information content of the register

The FINFRINGE ry Customer Register may contain the following information:

- Contact information (Name, address, telephone number, email address)

- Ticket order history and other customer relations information

- Labelling of direct marketing authorizations and prohibitions

- Other information needed to use the services.


Regular sources of information in the registry

Personal information is collected directly from customers, affiliates, public businesses and community contacts. Information is collected at the time of ticket purchase, and the customer is informed that the information will be stored in the register.


Use of cookies

We use cookies and other similar technologies, such as browser local storage, to provide and improve our services.

The use of cookies can be controlled, for example, through browser management. For more information about cookies, see the privacy or help documentation for each browser. Certain features of the services are cookie-dependent, so blocking and deleting cookies (browser and other options) may affect the functionality and experience of the online service.


Regular disclosures and transfers of data outside the EU and the EEA

Personal data will not be disclosed to third parties without permission except as permitted or required by applicable law, for example, when required for the technical execution of services and communications.

Eventio Oy, the ticket sales channel for FINFRINGE, controls the personal data collected in connection with ticket sales through Eventio Oy. When tickets are purchased through FINFRINGE's own point of sale through the Eventio system, the registrar is FINFRINGE. FINFRINGE will provide Eventio with personal information when selling tickets through the Eventio system.


Retention of information

We retain customer information for at least the duration of the customer relationship. After the customer relationship ends, the retention period depends on the information and its intended use. For example, identifying information is retained for five years after the end of the customer relationship, and potential customer information is generally retained for twelve months from the date of collection. We comply with legal obligations to retain information.

We strive to keep the personal information we hold accurate and current by deleting unnecessary information and updating outdated information. However, we encourage customers to periodically check that their information is up to date.


Registry protection

The register is electronic. Access to the register shall be restricted to those employed by the controller and other specified persons who need information in the course of their duties. Electronic files are protected by usernames and passwords.


Right of inspection and right of prohibition

According to the Personal Data Act, the customer has the right of inspection and error correction, and the right to prohibit sending electronic messages and the use of personal data for direct marketing. In order to exercise this right of prohibition or to obtain further information on the processing of personal data, the customermay contact the above-mentioned registrar.