Privacy Policy

Data Controller

Kuopio Swimrun (Tmi Kuopio Swimrun)
Business ID: 2969645-1
Kipinäkatu 21 A 2, 70620 Kuopio, Finland
Contact person: Sampo Hyppölä
Email: info(a)kuopioswimrun.fi
 

Purpose of the Register

Personal data are collected to enable and support competitions, training camps, courses, and coaching events organized by the data controller. Only information necessary and relevant for these purposes (see section 3) is collected.

Legal Basis and Purpose of Processing

Personal data are collected and processed for the following purposes:
• To compile start lists and competition results
• To ensure timely communication
• To enable category divisions in competitions
• To manage equipment rentals
• To contact a participant or their next of kin in an emergency
• To prevent allergic reactions to food

Participants are required to provide the information requested by the data controller for participation in each event. If a participant requests the deletion or withdrawal of their data processing consent, the data controller may have to deny participation in the purchased service or event.
 

Data Content of the Register

Depending on the nature of the event, the register may include the following information:
• Name
• Gender
• Date of birth
• Nationality
• Email address
• Phone number
• Special dietary requirements
• Weight / height / clothing size
• Name and phone number of a next of kin
 
Data Retention Period

Personal data will be stored for a maximum of 30 years.
Competition results may be retained for a longer period for historical documentation purposes.

Regular Sources of Data

The data controller obtains participant information primarily from the following independent service providers. These services process personal data under their own privacy policies, as independent data controllers, not on behalf of Kuopio Swimrun. The data controller is not responsible for the personal data processing practices of these third parties:

Race 2 Race AB (RaceID): https://raceid.com/fi/public/privacy

Google Forms: https://policies.google.com/privacy?hl=fi#intro

Participants may also choose to provide the required event information directly to the data controller.
 

Disclosure of Data

For the Kuopio Swimrun competition, the participant’s name and gender will be published on the event website in the results list. The data controller may also share this data to Sportrec for GPS tracking.

The data controller may share participant email addresses and ranking-related information with My SwimRun Championships Association (Austria) for ranking purposes.

Personal data will not be shared among participants (e.g., via WhatsApp groups or shared email lists) without the participant’s consent.

Personal data will not be transferred outside the EU or EEA.
 

Use of Cookies

This website uses Google cookies to deliver its services and analyze traffic. Your IP address and user agent are shared with Google, together with performance and security metrics, to ensure service quality, generate usage statistics, detect and address abuse.”

The data controller is not responsible for the data protection practices of this website, as it is owned and operated by Google. The data controller does not receive or store personally identifiable visitor information from the website.

You can read more about Google’s privacy policy here:
https://policies.google.com/privacy?hl=fi#intro
 

Data Security

Data are stored either in a password-protected cloud service or on a hard drive kept in a locked premises. Access to the register is restricted only to those individuals who have the right to process the data as part of their duties.

 
Rights of the Data Subject

Data subjects have the right to access their personal data and to request the correction or completion of inaccurate or incomplete data. They also have the right to request the deletion of their data, but not before the event requiring such data has ended. Data subjects may also prohibit the use of their data for direct marketing of future events (Kuopio Swimrun newsletters).

Requests for access, rectification, or deletion must be submitted in writing to the data controller.