Surveillance camera register
1. Register controller
Lappeenrannan Asuntopalvelu Oy (Business ID: 0433221-3)
Valtakatu 44,
53100 Lappeenranta
Tel. 0800 143 100
2. Person managing register matters
Martti Mäkelä
PL 150,
53101 Lappeenranta
Tel. 0800 143 100
aspainfo@aspakoti.fi
3. Register name
Surveillance camera register
4. Purpose of personal data use
The processing of personal data is based on the company’s legitimate interest and/or on investigating crimes, vandalism, and other misuses that have occurred on the properties owned by the controller.
5. Register content
Video footage of individuals, vehicles, etc., moving in the areas under surveillance.
6. Regular sources of information
Surveillance cameras
7. Data retention period
Surveillance data are retained for a necessary period if they contain information relevant to the purpose of use that needs to be investigated. After the investigation is concluded, data are retained for as long as necessary to initiate, present, or defend a legal claim. Once the need for data retention ends, information is deleted within three years.
Otherwise, data are routinely overwritten by new recordings within a maximum of six months from recording.
8. Regular data disclosures
Data are not disclosed to external parties, except in cases of suspected crimes when information may be provided to the police.
9. Data transfer outside the EU or European Economic Area
Data may be transferred outside the EU or EEA if necessary.
10. Rights to inspect, prohibit, and correct
The registered individual has the right to inspect what personal data about them are stored in the register. Inspection requests must be made in person at the controller’s premises. The requester must specify the location and as precise a time as possible when the filming might have occurred and include a photo of themselves in the inspection request.
11. Register protection principles
Electronically processed data within the register are protected with firewalls, passwords, and other technical means generally accepted in the field of information security. Manually maintained materials are stored in secured premises.
Only designated employees of the controller and companies acting on its behalf and under its instructions, who have signed confidentiality agreements, have access to the information contained in the register, based on individual access rights granted by the controller.
