Controller
Kela (Kansaneläkelaitos) - Social Insurance Institution of Finland
Nordenskiöldinkatu 12, 00250 Helsinki
PO Box 450, 00056
Tel. 020 634 11
Controller's contact person
In matters that concern wellbeing data stored in Kanta Services and other questions about the service, please contact the customer support for the Kanta Services at asiakaspalvelu@kanta.fi.
In matters concerning the rights of data subjects, please email your enquiries to the Kanta Services’ Data Protection Officer at tietosuoja@kanta.fi.
Name of data file
Wellbeing data stored in Kanta Services
Purpose of processing personal data / purpose of the data file
According to section 73 of the Act on the Processing of Client Data in Healthcare and Social Welfare (703/2023) (the Client Data Act), Kela is the data controller for the wellbeing data and service usage data stored in the Kanta PHR service, which is part of the national information system services in health care, the Kanta Services.
The purpose of wellbeing data stored in Kanta Services (Kanta Personal Health Records or PRH) is to enable the storage of citizens' (users') wellbeing data in a nationally centralised service in accordance with the Client Data Act. In accordance with the Client Data Act, users can store and process their wellbeing data in Kanta Services by means of wellbeing applications or in MyKanta and use the data to improve their wellbeing.
Kela is responsible for the usability of the Kanta Services and the data stored therein. Kela is responsible for storing the data recorded in Kanta, and in connection is responsible for the integrity, destruction and non-repudiation of the data stored in Kanta. In addition, Kela is responsible for ensuring that the data are destroyed after the retention period expires where the data subject has not deleted the data themselves by the end of the retention period. Kela is responsible for ensuring that the service functions technically in such a way that wellbeing data cannot be processed or disclosed in violation of the law.
Wellbeing data stored in Kanta Services consists of data produced by users themselves concerning their health and wellbeing. Users can store their data in Kanta Services using wellbeing applications and in the MyKanta. The user always has the right to decide on the use, editing and deletion of their data in Kanta PHR. In other words, the user is responsible for storing their wellbeing data and for ensuring that the information they enter in the service is accurate.
Wellbeing data in Kanta Services is stored until the user deletes the data or, if the person has not deleted their data, for a maximum of five (5) years after the person's death.
Kela does not have the right to process wellbeing data stored in Kanta Services more extensively than what is necessary to perform tasks related to the maintenance of the Kanta Services. Kela processes personal data in accordance with the EU General Data Protection Regulation and other laws regulating the processing of personal data.
The providers of wellbeing applications and devices connected to the Kanta Services are responsible for ensuring that the applications function correctly. The providers of wellbeing applications are responsible for complying with the Client Data Act and, in accordance with chapters 11 and 12, of the Act, for certifying a wellbeing application and meeting certification requirements.
Wellbeing data stored in Kanta Services and cookies
The user logs in to the Kanta Services through the Suomi.fi service when using the service for the first time and when the user grants access rights to their wellbeing data stored in Kanta Services to an application of the
user's choice. In these situations, cookies are used in order to provide the service. The user will not be asked for consent to the use of these cookies. Cookies are automatically deleted when the session is ended.
Content of the data file
The Kanta Services store wellbeing data stored by the user using a wellbeing application or in MyKanta. The wellbeing data stored varies depending on the application used. A list of wellbeing data that users can store in Kanta Services with each application connected to the service can be found in the Application list.
In addition, the following information about users is stored in Kanta Services:
- User's personal identity code
- Information about permissions the user has given to apps (for example, access to read and/or write measurement data)
- Information that the user has been informed about the storage of wellbeing data in Kanta Services and the date when the user was informed.
The above information data on the users of wellbeing data stored in Kanta Services is saved when the user begins using the service and whenever the user permission rights to applications or is notified of the updated Notification on wellbeing data stored in Kanta Services. When using the service for the first time, the user identifies themselves using Suomi.fi identification. The user selects an identification method / certification service provider and agrees to share their personal identity code with the controller of the identification service.
Regular sources of data
Data stored in the service is obtained from users themselves when the user stores or processes data with wellbeing applications or in MyKanta.
Regular disclosure and transfer of data outside the EU or the European Economic Area
Kela will not disclose data in the register to third parties. Kela does not have the right to disclose wellbeing data or other data stored in Kanta Services except as provided in section 73(3) of the Client Information Act.
In the future, the user may consent to the disclosure of wellbeing data stored in Kanta Services to service providers for the purpose of providing health and social services.
Kela will not transfer data outside the EU or the European Economic Area.
Principles of data file security
Wellbeing data stored in Kanta Services and related information are confidential.
Organisational principles of protection
Kela has a data security plan covering data security, privacy protection and information system use. Kela has a designated Data Protection Officer.
Kela will issue written instructions on processing in the data file and will ensure that personnel have sufficient expertise and competence for this purpose.
Kela will take the necessary measures on its own initiative if data stored in the service is processed unlawfully.
Technical protection
The processing of information that concerns the wellbeing data stored in Kanta Services requires strong identification of the administrator and citizen using the service, as well as access rights management related to the system. Citizen using the service must identify themselves with Suomi.fi multi-factor identification before they can grant access rights to wellbeing data stored in Kanta Services to a wellbeing application. The Digital and Population Data Services Agency is responsible for the identification and certificate services of the Kanta Services.
As a rule, Kela does not have the right to process wellbeing data stored in Kanta Services. Kela has the right to process wellbeing data stored in Kanta Services only to the extent necessary for maintenance purposes.
Logs are kept of all data processing activities by the user and by Kela for maintenance purposes.
Physical protection of locations and devices
Data stored in the register is safeguarded by technical means against modification and deletion. Kela's data centres and the physical locations where data are held are in Finland. Access to the data centres is restricted to Kela's technical maintenance personnel as required by their duties.
Access to personal data
The user can view wellbeing data they have stored in Kanta Services and information about the use of the data in MyKanta, where the data can also be printed out if necessary. It may also be possible for the user to view wellbeing data stored in Kanta Services by means of wellbeing applications to which the user has granted the right to retrieve data from Kanta Services. In addition, the user has the right to request a copy of the wellbeing data stored in the PHR.
Right to rectify data
Wellbeing data stored in Kanta Services is data produced by the user themselves and can be freely viewed, edited or deleted by the user.
Due to the restrictions of section 73 of the Client Data Act, Kela, as the controller, cannot process wellbeing data stored in the Kanta Services in order to carry out rectification requests. Because of this, Kela instructs citizens to personally edit or delete the data they have stored.
Right to lodge a complaint with a supervisory authority
If the user feels that their data has been processed in violation of applicable data protection regulations (Article 12–22 of the EU General Data Protection Regulation), the user has the right to lodge a complaint with the competent supervisory authority. In Finland, the supervisory authority is the Data Protection Ombudsman.