Privacy Policy

We process your personal data according to the General Data Protection Regulation (GDPR) of the European Union, as well as according to all other relevant legislation according to Finnish and EU law. In this privacy policy we explain our basis for processing your personal information, and inform you of your rights regarding your personal data.

Data controller contact details

Semantti Oy
Teknologiantie 11
90590 Oulu
Finland
Email: privacy@semantti.com
Business ID: 3462983-5

Purpose and legal basis for processing

We process your personal information for marketing, generating leads for our sales, distributing factual information and news about our company and products and measuring, providing you products and services, and improving the website user experience.

For users who access this website, the legal basis for processing personal data is our legitimate interest to understand website traffic in order to improve the experience.

If you subscribe to our marketing, or use our managed services or online products then information you give us is used to provide you the services you subscribe to, there the legal basis for processing is explicit consent of the data subject - your own consent.

What personal information do we process?

Our hosting, content delivery, analytics and spam protection services collect visitor information in the form of IP-addresses and potential cookies automatically submitted by your web browser.

We may also collect email addresses, domain names, IP-addresses and optionally your name and company affiliation if you submit them manually via forms on our website or by using our managed services and online products.

Data sources

We use following services as data sources:

  • GitHub Pages for hosting web content, it may log visitor IP-addresses and browser cookies
  • Plausible.io for usage statistics, it may log visitor IP-address and browser cookies
  • Hubspot.com for form based registrations and subscriptions, it may collect visitor IP-addresses, browser cookies and registration details that may include your email address, your name and your company affiliation
  • Microsoft Office 365 for webinars and on-line meetings, it may collect visitor IP-addresses, browser cookies and registration details that may include your email address, your name and your company affiliation

Your rights as a data subject

You have the following rights according to GDPR regarding the processing of your personal data. You can exercise your rights either directly through our services, or by contacting us by email.

  • Right of access: You have the right to check at any time, what personal information we have stored about you.
  • Right to object: You have the right to object to our processing of your personal data, if you think that our processing does not happen according to the GDPR or if you think we have no lawful basis for processing your data. You can exercise this right by removing your user accounts and refraining from using the services.
  • Right to erasure: You have the right to remove your personal data from the services at any time. The easiest way to do this is to log in to the services and to remove your user accounts.
  • Right to data portability: You have the right to request a machine-readable summary of your personal data from us, so that you can transfer them to another service provider. If you want to exercise your rights, please contact us by email.
  • Right to lodge a complaint: You have the right to complain to the supervisory authority if you think we are in violation of your rights, in violation of GDPR, or the Finnish law regarding personal data protection. The supervisory authority in this case is the Office of the Data Protection Ombudsman (Tietosuojavaltuutettu) in Finland.
  • Right to object to direct marketing: You have the right to object to using your personal data for direct marketing purposes.

Duration of processing

Email addresses, names and company affiliations submitted are retained until the person unsubscribes. If a subscriber requests a permanent opt-out from any future marketing then the opt-out address is retained until the person in question requests to be removed from the opt-out list.

Data recipients

Your personal data can be accessed by our employees and contractors, who develop and maintain our products, services, sales, marketing and business.

Data transfers outside of EU

We require our foreign service providers that their countries have an adequate level of data privacy as required by the GDPR, and that they are committed to follow the GDPR and other relevant EU regulations.

Automated individual decision-making

Your personal data is not used for automated individual decision-making or profiling.

Data protection principles and measures

We don’t collect or ask you for personal information unless we truly need it. We require a non-disclosure agreement (NDA) from all our employees who process personal information. We control and keep track of who has access to the services used to process the data. We use transport layer encryption (TLS) to protect your interaction with our website.