Suomi.fi e-Identification is a service in which you can identify yourself in e-services provided by different authorities and other public administration actors.
For the identification, you need an electronic identification token, such as mobile certificate, online banking codes, hightrust.id application or the Finnish Authenticator application. Once you have identified yourself, Suomi.fi e-Identification transmits your identification details to the service to which you want to log in.
When you use a Finnish identification token for identification, Suomi.fi e-Identification retrieves data on you from the Population Information System and transmits the data to the service. You can access several services with one identification. For example, you can identify yourself in Suomi.fi and use other services at the same time without having to log in separately. One login session is valid for 32 minutes. This is called a single sign on.
Digital and Population Data Services Agency
Lintulahdenkuja 2, 00530 Helsinki
PO Box 123, 00531 Helsinki, Finland
Telephone (switchboard) +358 29 553 6000
Email kirjaamo(at)dvv.fi
Contact person in register-related matters
Ulla Kankkunen, Chief Specialist
Telephone (switchboard) +358 29 553 6000
Email tietosuoja(at)dvv.fi
The purpose of Suomi.fi e-Identification is to identify an e-service customer and to transmit certain personal data on them to the service that the customer wants to use. The service also allows single sign on between services. The Digital and Population Data Services Agency has a statutory obligation to provide the Suomi.fi e-Identification service. Provisions on the obligation are contained in the Support Services Act (571/2016).
When European identification tokens are used, the task of the Digital and Population Data Services Agency is based on the eIDAS Regulation of the EU. Article 12 of the Regulation contains provisions on the establishment of an interoperability framework for national electronic identification systems (national nodes). Under the Act on Strong Electronic Identification and Electronic Trust Services (617/2009), maintenance of the national node is the responsibility of the Digital and Population Data Services Agency.
The Digital and Population Data Services Agency uses the event log register comprising the identification log data to monitor the use of Suomi.fi e-Identification and to investigate errors as well as any misuse and data protection violations. The Digital and Population Data Services Agency also uses the data saved in the event log register for statistical purposes.
The Digital and Population Data Services Agency will retain your personal data transmitted to the service for a maximum of 32 minutes and only as long as you remain logged in to the service. Your data is retained so that you can use the single sign on.
The Digital and Population Data Services Agency will retain the log data collected from Suomi.fi e-Identification for five years from the beginning of the calendar year following the identification event.
The following personal data is processed in Suomi.fi e-Identification: name, personal identity code, electronic unique identification number, details of Finnish citizenship, address details, email address and details of the non-disclosure for personal safety reasons. The scope of the data permit granted to the service determines which of this data is transmitted to the service. If you have a non-disclosure for personal safety reasons in the Population Information System, Suomi.fi e-Identification will not process data to which the non-disclosure applies. When you identify yourself, you can view the data to be transmitted to the service on the screen of your device before moving to the service.
If you identify yourself with a European identification token, Suomi.fi e-Identification will not retrieve any data from the Population Information System. In connection with the eIDAS identification, the following data from the identification token is transmitted to the service: name, date of birth and the unique PID identifier (person identifier). The content and format of PID varies by Member State.
If you identify yourself with the Finnish Authenticator application, Suomi.fi e-Identification will not retrieve any data from the Population Information System. In connection with the Finnish Authenticator identification, the following data from the identification token is transmitted to the service: name, date of birth and UID (unique identifier). UID is a sequence of 10 characters. It does not contain any information on the user.
The Digital and Population Data Services Agency saves log data in the identification event log register:
When a certificate card is used for identification, the following is also saved:
Other personal data transmitted to the service will not be saved in the event log register. However, the details of the personal data retrieved from the Population Information System and transmitted to the service will be saved in the register.
In eIDAS identification, the person identifier (PID) is saved in the event log register.
If you identify yourself with the Finnish Authenticator application, the unique identifier (UID) retrieved from the application is saved in the event log register.
When you are identifying yourself, Suomi.fi e-Identification uses your personal identity code to check whether you have activated Suomi.fi Messages:
For identification, Suomi.fi e-Identification uses personal data from
As a rule, the personal data transmitted by Suomi.fi e-Identification to the service in connection with the identification have been retrieved from the Population Information System.
In Suomi.fi e-Identification, the customer’s personal data specified in advance is disclosed to the service after the identification. Scope of the data to be disclosed depends on the data permit granted to the service. In connection with the activation of Suomi.fi e-Identification, the service has been granted the data permit specified in the Act on the Population Information System by the Digital and Population Data Services Agency. In this permit, the Digital and Population Data Services Agency has specified the Population Information System data that the service has the right to obtain in connection with the identification.
Suomi.fi e-Identification only discloses personal data from the service in connection with the identification.
No personal data is transferred outside the EU or the EEA or to international organisations.
No personal data is used for automated decision-making.
The purpose of Suomi.fi e-Identification is to transmit personal data. The service only saves data that it has transmitted during the identification session. In practice, the data transmitted by Suomi.fi e-Identification is data stored in the Population Information System. Instructions on checking data kept in the Population Information System can be found on the website of the the Digital and Population Data Services Agency.
You may have the right to check your data from the Suomi.fi e-Identification logs. You can request your data by sending an access request to the Registry Office of the Digital and Population Data Services Agency. Be prepared to provide proof of identity.
Suomi.fi e-Identification transmits data from the Population Information System to services. Personal data transmitted from the Population Information System cannot be corrected in Suomi.fi e-Identification. Any requests to correct data kept in the Population Information System are processed in other services of the Digital and Population Data Services Agency. Instructions on checking and correcting data kept in the Population Information System can be found on the website of the the Digital and Population Data Services Agency.
Most of the services provided by the Digital and Population Data Services Agency are based on compliance with the controller’s statutory obligation, the performance of a duty of public interest or the exercise of public authority. In such cases, you do not have any right to demand that your personal data should be deleted or transferred to another system. Moreover, as a rule, you do not have any right to object to the processing of your personal data.
If you think that your personal data is processed unlawfully, you can submit a complaint to the Office of the Data Protection Ombudsman.
Office of the Data Protection Ombudsman
Street address Lintulahdenkuja 4, 00530 Helsinki, Finland
Postal address PO Box 800, 00531 Helsinki, Finland
Email tietosuoja(at)om.fi
Switchboard +358 29 566 6700
Registry +358 29 566 6768