Skip to content
Descriptions of registers Register of Bloggers

Privacy Policy – the Finnish Fair Corporation’s blogger register 

Prepared 28 April 2014, edited 21 May 2018. 

1. Controller

Finnish Fair Corporation (name used in communications: Messukeskus)
Messuaukio 1, P.O. Box 21, FI-00521 Helsinki
Tel: +358 40 450 3250
Fax: +358 9 142 358 Business ID: 0116322-3

2. Person in charge of the data file

Tarja Gordienko, Communications Manager, Finnish Fair Corporation, Communications, tel. +358 40 450 3250,

3. Name of the file

The Finnish Fair Corporation’s blogger register

4. Legal basis and purpose of processing personal data

The legal basis for processing personal data in accordance with the EU General Data Protection Regulation is the person’s consent (documented, voluntary, individual, informed and unambiguous). A further basis is the agreement whereby the data subject has registered as a digital media representative of Messukeskus.

The purpose of processing personal data is marketing in conventional forms, such as direct marketing, and using electronic tools and text messages if the customer has not restricted marketing communications. In addition, personal data is used for the purposes of contacting customers, maintaining customer relationships, profiling customer segments and collecting data that is essential to the Finnish Fair Corporation’s business.

The Finnish Fair Corporation’s blogger register is used for accrediting bloggers who visit fairs, providing information on events organised by the Finnish Fair Corporation and managing relationships with bloggers, and estimating the number of bloggers who have visited Messukeskus.
Using the blogger register for providing information on events means sending bloggers information on fairs, requests for cooperation and invitations to various events.

5. Contents of the data file

The following is collected as mandatory data:

Name of the blog
Web address of the blog
Themes discussed in the blog
Views per month
Frequency of updates (once or more per week/a couple of times per month/once per month or less frequently)
Social media channels related to the blog and the number of followers/likes they have
Permission to disclose contact details to exhibitors
Contact details (name, email address, phone)
The description of the data file can be accessed at the Press Centre of Messukeskus and online at

6. Regular sources of data

Register data is entered into the system when a blogger applies for a blogger pass using an online form. Accredited bloggers receive a badge from Messukeskus, entitling them to admission to exhibitions organised by the Finnish Fair Corporation. Admission is free for accredited bloggers.

Blogger accreditations are recorded in a database in conjunction with every event, and the database can be used for events organised by the Finnish Fair Corporation at its discretion. Bloggers can restrict the use of their personal data for purposes other than accreditation for fairs.

Data provided by bloggers themselves can also be collected for the register from sources such as blog pages.

7. Regular disclosure of data and transfer of data outside the EU or the EEA

We may transfer or disclose personal data to our partners if this is necessary for purposes corresponding to this privacy statement. Such partners may include marketing partners, IT partners and others. In such circumstances, personal data is processed in accordance with applicable legislation.

We may also use third-party service providers, such as providers of payment services, debt collection services and analytics services, to conduct certain tasks involving processing personal data on our behalf.

We may also transfer or disclose personal data to other companies within our Group and to the successor business as a consequence of matters such as merger and acquisition transactions, the sale of the business, mergers, demergers, bankruptcy or receivership.

We will not otherwise sell or disclose your data to external parties. We will also not transfer data outside the EEA other than in circumstances permitted by data protection legislation. Personal data may also be transferred or disclosed to the authorities if the applicable law so demands.
Data may be published insofar as this has been agreed with the data subject.

8. Principles for securing the file

Due care is exercised when the file is processed, and data processed using IT systems is protected appropriately. When data from the file is stored on internet servers, the physical and digital information security of the hardware is arranged appropriately. The controller takes care to ensure that the saved data, server access rights and other information critical to the security of personal data is processed confidentially and only by the employees or partners whose duties require it.
Employees who process data in the customer file are bound by a duty of confidentiality. Data is communicated or disclosed to third parties only if there is a duty of notification prescribed by law, such as the customer’s own request or a statutory request made by the authorities. The system is protected by technical means.

9. Your rights as a data subject

Right of inspection  
The Finnish Fair Corporation offers you the right to inspect the personal data that we process about you. You can contact us in writing and ask us to tell you which personal data we process about you and the grounds for processing the data. The Finnish Fair Corporation is entitled to verify the identity of the enquirer. If less than 12 months has elapsed since your previous information request, we may require a fee to be paid for the work involved in realising the request.

Right to demand correction of data  
You are also entitled to correct or supplement data that is incorrect, inaccurate, incomplete, out of date or unnecessary.

Right to demand erasure of data  
You may also ask us to erase your personal data from our system. We will take the action you request unless we have a justified reason to refrain from erasing the data, such as fulfilling our obligations under legislation. The data may not be immediately erased from all of our backup systems or corresponding systems.

Right of objection  
You may also request restrictions on the processing of your personal data if the data is processed for purposes other than providing our services or fulfilling obligations arising under law. You may also object to your personal data being processed in the future, even if the processing is based on consent that you have previously granted. Objecting to the processing of personal data may result in more restricted opportunities to use our website and services.

Right to restrict data processing  
You may ask us to restrict the processing of certain pieces of your personal data. Requests to restrict data processing may result in more restricted opportunities to use our website and services.

Right to transfer data from one system to another  
You are entitled to obtain your personal data from us in a structured and widely used format so you can transfer the data to a different controller.

You may exercise your right by sending an email to
or by contacting us at the addresses specified above. Users who have registered for our services should primarily send their requests from the email address that is registered under the user data for the Service in question, and the response to the request will be sent to the same email address.

In addition to the foregoing rights and your other rights, legislation also guarantees you the right to submit a complaint to the supervisory authority, particularly in the Member State where you are permanently resident or working, or where the alleged contravention of the GDPR has taken place. The supervisory authority in Finland is the Data Protection Ombudsman.