Subscribe to the Aalto2 newsletter
and you will be the first to know about current exhibitions, events and offers
Read more about how we handle your contact information
Data protection is important to us and we always treat personal information with care and in compliance with the relevant laws and regulations. We undertake to respect all rights related to stored personal data. We treat this data in accordance with the EU’s General Data Protection Regulation (GDPR).
This data-protection policy applies to users of the Aalto2 Museum Centre’s online services and to the use of our contact-management system in communications sent out to customers.
The processing of your personal data is the responsibility of the Aalto2-museokeskus Oy (Controller of the Register), our Business ID is 3261400-7.
Aalto2 maintains contacts with actors in the cultural sector and with its own audiences. We provide information about our activities, such as exhibitions and events. This requires the processing of personal data and the maintenance of personal registers.
If you wish you can join our e-mail lists using the online form and unsubscribe from them at any time by clicking on the link in each message. We always indicate clearly which e-mail list is being referred to, i.e. you yourself can choose what lists you want to belong to.
We send out targeted invitations to events, such as exhibition openings and seminars. We use information for managing registration and participant lists, and for communication related to events. You can choose not to receive messages at any time by clicking on the link in our e-mail message.
We may contact you if you have used the Aalto2 services, for instance, for booking guided tours. We can also profile our directed messages on a general level.
We monitor visitor traffic, for example, to investigate what content is popular, or from what sources people usually come to our websites.
The personal information that we process is primarily data that customers themselves have given us, for example, by subscribing to our newsletters. Personal data is destroyed in accordance with the Personal Data Act when the legal grounds for storing them expire. You can ask for your own data to be deleted by contacting us and, for example, stipulating when you no longer want to receive marketing messages by e-mail from us.
Personal information held by the Aalto2 is accessible only by those working for Aalto2 whose work involves processing that data. Processing of the data in the registers requires a password and user name, plus sufficient user rights. The registers are protected from outside access. For example, the online store’s customer data can be accessed by staff who deal with online-store orders and guided-tour bookings.
Personal data is also accessible by the developers of the system in question, who are committed to processing personal data securely. That includes IT-service providers who have a contract with the Aalto2, and who develop or maintain these systems on our behalf.
We will not disclose your data to any outside organization or individual without your permission. User data will only be disclosed to those outside the Aalto2 insofar as, for example, delivery of online store orders and developing online services on our behalf require it. We can disclose customer data to public authorities in accordance with current legislation.
You can at any time check what personal data about you is stored in our registers. Requests to check and correct data should be sent by e-mail to email@example.com or in writing to the address below. Note that checking of data requires proof of identity, which may require you to come to our premises in person.
As our operations develop we may make changes to or clarifications of this data protection policy.
Alvar Aallon katu 7
Business ID 3261400-7