Skip to main content
Oma Säästöpankin konttori

Privacy Policy

We processes personal data in accordance with legislation.

Registration and use of personal data

OmaSp (hereinafter also the Bank) processes personal data in accordance with legislation, and otherwise ensures the protection of privacy and banking secrecy in the processing of personal data. Personal data is processed for the purpose of managing the Bank's services and operations. In addition, the Bank uses its personal registers for marketing to its customers. Information is obtained from the customer himself or his representatives, from public registers kept by the authorities, as well as from credit information and customer failure registers, and from Suomen Asiakastieto Oy's credit information register. If required by a business and service transaction, the Bank may record calls and save messages to verify the content of the message. Bank secrecy restricts the disclosure of information held by the Bank to a third party other than with the consent of the person to whom the information relates or in cases required by law. Anyone wishing to verify the data relating to him or her must submit a written, handwritten request for verification to the controller. The data subject has the right to demand the correction, deletion or supplementation of incorrect information concerning him in the register. The data subject has the right to prohibit the controller from processing personal data concerning the data subject for the purpose of direct mail, distance selling and other direct marketing, as well as market and opinion research.

Use of cookies

OmaSp's website uses cookies to improve the user experience. A cookie is a small text file that is stored on a user's computer when you visit a website. Cookies are used, among other things, to improve the security and usability of the website. The user's identity is not revealed by cookies. If you want to avoid the use of cookies, you can configure your browser so that cookies are not downloaded to your computer. However, this can affect the functionality of the site.


The site collects usage statistics for Google Analytics, which is used to track, develop, and plan marketing for the site. The data collected cannot be used to identify individual users or individuals. In addition, the site uses the collection of target group and topic information (Google Analytics Demographics), which is used to record e.g. age, gender and user topics. You can change the settings related to the collection of this information in your own Google Account.You can turn off Google Analytics tracking with the Chrome Browser Add-on, if you wish.

Identification principles

OmaSp's bank IDs can be used in OmaSp's online services and for strong electronic identification of personal customers in TUPAS identification services. In its identification services, the Bank complies with the identification principles of the Banks 'Tupas identification service and the service description of the banks' Tupas identification service prepared by the Confederation of Finnish Financial Services. The identification principles and service description are available on the website of the Confederation of Finnish Financial Services: The use of bank IDs in the service provided by the bank corresponds to the customer's handwritten signature and the customer is responsible for all orders and agreements made with OmaSp's online services with his bank IDs. Other service providers may use the identification information transmitted by the authentication service as part of the generation of the electronic signature, if the parties so agree. Bank IDs cannot be used to make an advanced electronic signature within the meaning of the Act on Strong Electronic Identification and Electronic Signatures (617/2009). The external service provider and the customer can agree on the legal effects of an electronic signature with bank IDs in the service of the external service provider. Bank IDs are completely personal and may not be passed on to anyone else. Corporate and institutional customer identification is not a strong electronic identification for strong electronic identification and electronic signatures under the Act.