Idearace 2024

Idearace is a business idea competition held in South Karelia for university students studying in Finland as well as for entrepreneurs and individuals residing in South Karelia, Finland. The organizers of Idearace, Business Mill and Lutes, are committed to protecting the privacy of their service users. This privacy notice explains what personal data we collect, how we process it, and what rights and options individuals have regarding the data collected about them. The collected data is processed as described in this privacy notice, in accordance with the General Data Protection Regulation (GDPR) of the European Union and other applicable legislation.

Idearace services may be provided on different platforms, and the services may include links to or access to websites or services of other operators. We recommend that you carefully review the privacy policies and terms of use of such third parties. Idearace is not responsible for the privacy practices or terms of use of third parties.

What personal data do we collect?

We collect and store only essential personal data necessary for the implementation of the business idea competition, such as name, phone number, email address, or other information essential for the purposes mentioned in this privacy notice.

Where do we collect data from?

We collect personal data from the registrants themselves through the competition form or from other publicly available sources, such as user data from our social media channels.

Why do we process personal data?

The primary basis for processing personal data is the use of Idearace services, the individual’s other relevant connection to our services, or the individual’s consent. In all cases, we aim to minimize the collection of identifiable personal data.

We process your personal data for one or more of the purposes defined below:

  1. Service provision

Your personal data may be used for the provision of Idearace services, responding to your requests and inquiries, and other similar tasks, as well as for preventing misuse of services.

  1. Service development

Your personal data may be used for the development of Idearace services and improving customer experience. Your personal data may be used for surveys and research related to Idearace services.

  1. Marketing and customer communication

 Your personal data may be used for marketing Idearace services and events, for example, to send you targeted notifications related to our services and to contact you regarding customer service or service-related matters.

How do we use cookies?

The Idearace website uses cookies. Cookies are created by Matomo Analytics, which we use to analyze page views and develop our website. If you do not wish to accept cookies, you can disable them in your browser settings.

What are your rights?

Under the General Data Protection Regulation of the European Union, the data subject has the right to access their collected personal data and the right to rectify, erase, restrict, and transfer their data to another controller. The data subject also has the right to withdraw consent to the processing of their data at any time.

If you wish to exercise the rights under data protection legislation, please contact our data protection officer, whose contact details are provided below under “Controller’s Contact Information”.

You may also at any time prohibit Idearace from using your personal data for direct marketing as well as for customer satisfaction or other surveys. However, we may still send you notifications regarding our services in cases of changes, malfunctions, or disruptions.

The data subject has the right to lodge a complaint with the Office of the Data Protection Ombudsman if they believe that the processing of their personal data violates applicable legislation.

Transfer or disclosure of data

Collected personal data will not be transferred or disclosed to third parties outside of Idearace without the individual’s consent. We use the Matomo Analytics tool on our website, whose service provider may be located outside the European Union or the European Economic Area. In these situations, as well, adequate data protection is ensured in accordance with the GDPR.

Principles of registry protection

Care is taken in the processing of the registry, and the information processed through the data systems is appropriately protected. When registry information is stored on Internet servers, both the physical and digital security of the hardware is adequately maintained. The controller ensures that stored data, as well as access rights to servers and other information critical for the security of personal data, are treated confidentially and only by employees whose job description includes such tasks. Individuals with access rights to our customers’ personal and other data are bound by confidentiality obligations.

We retain collected data for as long as it is necessary for our operations.

Controller’s Contact Information

LAB University of Applied Sciences Ltd (Business Mill), address: Yliopistonkatu 36, 53850 Lappeenranta, and LUT Entrepreneurship Society ry, address: Yliopistonkatu 34, PL 20, 53850 Lappeenranta.