The rights and obligations of corporate and association subscribers

Companies, educational institutions and other organisations may provide, for example, e-mail and telecoms services for their staff and students. These so-called corporate and association subscribers are obliged to ensure a certain level of information security when their users' identification data are processed. Corporate and association subscribers also have the right to process identification data in other situations specified in the law.

These pages explain:

  • what maintaining information security entails;
  • what measures a corporate or association subscriber may take to implement information security;
  • what the definition of identification data covers;
  • when operators can process identification data.

Key words: Information security , Data protection

Updated 02.10.2013

LinkedIn Print


The Finnish Communications Regulatory Authority (FICORA)

The National Cyber Security Centre Finland (NCSC-FI)

Itämerenkatu 3 A

P.O. Box 313


Media contacts by telephone +358 295 390 248