Responsibility for information and information security

The responsible use of personal information and other confidential data is essential for maintaining the privacy and trust of students, employees, and partners. We provide guidance to our staff and students on when and how information can be processed and how and where it can be stored. This guidance is part of our standard orientation programme for personnel. Continual improvement, monitoring, and compliance with data protection regulations are integral to our practices. We fulfil the requirements of the data protection regulation by providing data subjects with information through publicly accessible privacy statements and data protection policy, which can be found on our website (in finnish).

Karelia UAS adheres to information security practices, guidelines, and technical tools aligned with the organisation’s approved risk level. To ensure their relevance and suitability, we continuously monitor the security, engage in exercises, and apply necessary updates. When making procurements, we consider the privacy and security requirements, and through processing agreements, we ensure that data handling complies with regulations, also with our partners. Additionally, we actively participate in national-level collaboration and share best practices, particularly within the higher education sector.