Processing Personal Data at the Guarantee Foundation

In all our operations, including when processing personal data, we always comply with the principles of data protection specified in data protection legislation.

We only collect information that is necessary for our operations and their development. The collection of data is based on the person’s consent or another legal basis for processing.

We collect data:

  • to provide our services
  • to respond to contact requests or requests for material
  • to organise events and training
  • for communication and marketing purposes
  • for promotion and research purposes, using anonymised customer cases.

Data is collected directly from our customers or other persons via electronic forms, newsletter subscriptions, emails, telephone conversations and meetings.

Processing and Disclosure of Data

All data is processed appropriately and with care. It is not passed on without consent. All data processing is monitored appropriately.

We have drawn up privacy policies regarding our personal data processing. Data is stored only for as long as it is needed, depending on the purpose of the data collection.

We abide by an obligation of secrecy regarding all content related to personal data. As a rule, no data is disclosed outside the EU or EEA. The third parties whose services we use are also committed to complying with current legislation regarding the processing of personal data.

Our staff are trained in data protection and information security. We use secure methods and tools in our work. We regularly train our personnel in legislative changes, principles and practices related to data protection, and information security.

We make sure our data and services are technically secure, and all our operations strive to prevent any personal data breaches and information security incidents.

Rights of the Data Subject

According to the General Data Protection Regulation, the data subject has, among other things, the right to be informed about the processing of their personal data, the right to be forgotten, the right to restrict the processing of their data, and the right to access, rectify and erase their data. However, the data subject cannot exercise all rights in all situations. For example, the basis on which personal data is processed can affect the data subject’s rights.

Contact Details

  • Controller: Guarantee Foundation
  • Business ID: 0858294-9
  • Contact person: Managing Director Juha Pantzar, firstname.lastname(at)
  • Data Protection Officer: Antti Helenius, tietoturva(at)