Futurice Privacy Policy
Information about what data we collect, how and why we do it, and how we process it.
This page explains how we process your data if you:
- are our client, business partner or a representative of either,
- are not (yet) our client but receive marketing communication from us,
- or visit our website.
If you are applying or have applied for a job at Futurice, please see our Recruitment Privacy Policy.
We are always committed to protecting your privacy as described in this privacy policy. Other policies and information on privacy, data protection, information security, business continuity and other similar matters are available on request.
Who are we and how can you contact us?
Your personal data is controlled by Futurice Oy (Kansakoulukatu 3, 00100 Helsinki, Finland; business ID 1623507-4) and other Futurice group companies. If you have any questions in relation to your personal data, please contact the local Futurice company:
You can also contact us at privacy@futurice.com and we are happy to help you.
In relation to Germany, we have also appointed a data protection officer that you may contact:
Condatis GmbH & Co. KGAndreas Rübsam (E-mail: andreas.ruebsam@condatis.eu)
What data do we process and why?
The following outlines the various types of personal data we process, the sources for each type of personal data, as well as the purpose and legal basis for processing said personal data.
If you are our client, business partner or a representative of either:
| Data type | Source | Purpose | Legal basis |
|---|---|---|---|
| Name | You or your organisation | Provision of services, management of client relationship | Business contract or relationship |
| Contact details | You or your organisation | Provision of services, management of client relationship | Business contract or relationship |
| Employer or other organisation | You or your organisation | Provision of services, management of client relationship | Business contract or relationship |
| Role | You or your organisation | Provision of services, management of client relationship | Business contract or relationship |
| Information about communication | Communication between you and us | Provision of services, management of client relationship | Business contract or relationship |
| Event sign-ups | You | Event organisation, management of client relationship | Your consent or our legitimate interest (event organisation) |
If you are not (yet) a Futurice client but receive marketing communication from us:
| Data Type | Source | Purpose | Legal Basis |
|---|---|---|---|
| Name | You or a personal contact at Futurice | Marketing | Your consent or our legitimate interest (marketing) |
| Contact details | You or a personal contact at Futurice | Marketing | Your consent or our legitimate interest (marketing) |
| Employer or other organisation | You or a personal contact at Futurice | Marketing | Your consent or our legitimate interest (marketing) |
| Information about comunication | Communication between you and us | Marketing | Your consent or our legitimate interest (marketing) |
| Event sign-ups | You | Event organisation | Your consent or our legitimate interest (marketing) |
If you are a website visitor:
| Data Type | Source | Purpose | Legal Basis |
|---|---|---|---|
| IP address | Your browing activities | Provision of a smooth user experience on our website | Our legitimate interest |
What data is processed when you visit futurice.com?
When visiting our website, a variety of personal information will be collected either automatically, by your active sharing of such data (e.g. on our contact form) or based on the consent you may have given in the cookie preferences. You should also note that the transmission of data via the Internet may be prone to security gaps, and it is not possible to completely protect your data against third-party access even if we do our best to prevent that.
Certain technical information (e.g. IP address, web browser, operating system, or time the site was accessed) is recorded by the website automatically when you access the website and is used to guarantee the error-free provision of the website and to analyze user patterns.
When you fill in a form (such as contact form) on our website, you are in control of the information you share to us on such form. The information will be stored and processed by us in order to handle your inquiry and in the event that we have further questions.
If you gave your consent to website performance, functional or advertising cookies, we may collect and process more detailed information on your use of our website through several different cookies set by us or third parties. More information about cookies on our website can be found below or by visiting the cookies settings.
Who processes your data? Is data processed by third parties outside the European Economic Area?
We may use certain tools for data processing that are made by companies domiciled outside the European Economic Area such as the United States. Your personal data may be transferred to and processed in such countries. In these countries, the level of data protection may not be comparable to that in the EU. For instance, it cannot be ruled out that U.S. agencies may process, analyze, and permanently archive your personal data for surveillance purposes. We have no control over these processing activities.
We may use, among others, the following service providers for processing:
| Service Provider | Purpose | Location | Read More |
|---|---|---|---|
| Hubspot CRM | Client relationship management, event sign-up management and marketing | EU, US and other countries (EU Standard Contractual Clauses), see list of sub-processing locations | Hubspot’s privacy policy |
| Google Workspace | Email, calendar and document management | EU | Google Cloud & the General Data Protection Regulation |
| Lyyti | Event sign-up management | EU | Lyyti - Data Protection |
| BigMarker | Webinars | US (EU Standard Contractual Clauses) | BigMarker’s privacy policy |
How long do we keep your data?
If you or your company is a client of Futurice, we may process your data as long as the client relationship is in force and for a maximum of 5 years thereafter unless there are reasons to keep such data for a longer period of time.
If you receive marketing communication from us, we may process your data until you inform us that you do not want to be in our marketing list anymore.
If you visit our website, we may process your data for a maximum of 2 years after your most recent visit. Details on the lifespan on the cookies on our website can be found on the cookie preferences page.
How do we use cookies?
Our website uses “cookies” for various purposes. Cookies are strings of information that may be stored on your computer to recognise and track visitors of our website. On our website, the cookies are catgorized as required, website performance, functional and advertising cookies.
Required cookies are required for the performance of electronic communication transactions or for the provision of certain functions you want to use (e.g. the storage of your previous cookie preferences). These are stored on the basis of a legitimate interest to ensure the technically error free and optimized provision of the website.
Other cookies are stored on your device only based on your responses to the cookie popup that was shown to you on your first visit. Performance cookies allow us to count visits and traffic sources and understand how visitors move around our website to improve the user experience of our site. Functional cookies enable the website to provide enhanced functionality and personalisation. Advertising cookies may be used by certain third parties to build a profile of your interests and show you relevant adverts on other sites. Some of these cookies are set by third parties to enable you or us to take advantage of services offered by such third party (such as adding videos to our website). For more information and to adjust your consent, visit the cookies settings.
You can always disable cookies by changing your cookie preferences or your web browser settings. If cookies are disabled or you remove your cookie consent, some functions of this website (such as displaying videos) may be limited but we still do our best to offer the website functions as well as we can.
What are your rights?
If the processing of your personal data is based on your consent, you can also at any time withdraw your consent.
You can at any time ask us to:
- confirm if we process any personal data related to you and to deliver an electronic copy of such data (“Right of access” under Article 15 of the GDPR and “Right to data portability” under Article 20 of the GDPR),
- correct any inaccurate personal data related to you (“Right to rectification” under Article 16 of the GDPR),
- erase any personal data related to you (“Right to erasure” under Article 17 of the GDPR),
- restrict our processing of any personal data related to you (“Right to restriction of processing” under Article 18 of the GDPR), and
- stop processing any personal data related to you due to personal reasons (“Right to object” under Article 21 of the GDPR).
You can always deny us from using any personal data related to you for direct marketing purposes.
Requests can be made to your Futurice contact person if you have one, or by emailing privacy@futurice.com. We investigate any such request and will let you know if we can fulfill your request or not. If not, we will give you reasons why your request could not be fulfilled.
What if I want to file a complaint?
If you disagree with our decision in relation to your request or you think your rights have not been respected, you can always contact us. You can also file a complaint with your local data protection authority such as:
- Finland: Tietosuojavaltuutettu (Data Protection Ombudsman)
- Germany: Bundesbeauftragter für den Datenschutz und die Informationsfreiheit (Federal Commissioner for Data Protection and Freedom of Information)
- Sweden: Integritetsskyddsmyndigheten (Swedish Authority for Privacy Protection)
- UK: Information Commissioner's Office
Information Security
Our employees’ expert knowledge and creative ideas as well as our clients’ intellectual property are the basis for our success. That’s why we care about information security - no matter whether it’s our clients’, service providers’, employees’ or corporate data. To protect it, we have established a high level of protection for the confidentiality, integrity and availability of our processes and information.
In order to meet our goal to effectively protect central business processes and the information and IT systems required within, we follow established security standards and have integrated different measures of information security into our internal processes. Defined information security goals help us to meet our business goals and to follow official and regulatory guidelines.
We expect our employees to stay conscious about information security in all the tasks they do. Futurice as an organisation provides the necessary support and tools for our people to stay on top of information security and corresponding guidelines, so that detected weak spots are brought to the attention of local information security representatives. All in the spirit of continuous improvement that being one of our core values.
Information about External Tools Used on Our Website
Hosting (Netifly Inc.)
This website is hosted by Netlify Inc., and personal data collected on this website may be stored on the servers of such external host. These may include, for instance, IP addresses, contact requests, metadata and communications, contact information, names, web page access, and other data generated through the website.
The external hosting ensures secure, fast, and efficient provision of our website. Our website host will only process your data to the extent necessary to fulfil its performance obligations and to follow our instructions with respect to such data.
Name and address: Netlify Inc., 2325 3rd Street Suite 296, San Francisco, California, 94107 USA
More information: Netlify’s commitment to protect your data
Google Analytics
This website uses functions of the web analysis service Google Analytics. Google Analytics uses technologies that make the recognition of the user for the purpose of analyzing the user behavior patterns. The information recorded by Google or a part of it may be transferred to a Google server in the United States based on the EU Standard Contractual Clauses, where it may also be stored.
Google Analytics enables the website operator to analyze the behavior patterns of website visitors. To that end, the website operator receives a variety of user data, such as pages accessed, time spent on the page, the utilized operating system and the userʼs origin. This data is assigned to the respective end device of the user. An assignment to a user-ID does not take place. Furthermore, Google Analytics allows us to record movements and clicks, among other things. Google Analytics uses various modeling approaches to augment the collected data sets and uses machine learning technologies in data analysis. Data is collected and used if you have accepted Marketing Cookies. You may restrict the processing of your personal data by not allowing Marketing Cookies.
You can prevent the recording and processing of your data by Google by downloading and installing Google’s browser plugin.
Name and address: Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland
More information: Googleʼs Data Privacy Declaration
We have integrated elements of the social network Facebook on this website. According to Facebook, the collected data may be transferred to the USA and other third-party countries too based on the EU Standard Contractual Clauses.
If you have accepted Marketing Cookies, a direct connection between your device and the Facebook server may be established. As a result, Facebook will receive information confirming your visit to this website with your IP address. If you click on the Facebook Like button while you are logged into your Facebook account, you can link content of this website to your Facebook profile. Consequently, Facebook will be able to allocate your visit to this website to your user account. We have to emphasize that we as the provider of the website do not receive any information on the content of the transferred data and its use by Facebook. You may restrict the processing of your personal data by not allowing Marketing Cookies.
If you have accepted Marketing Cookies, this website also uses the visitor activity pixel of Facebook to measure conversion rates. This tool allows the tracking of page visitors after they have been linked to the website of the provider after clicking on a Facebook ad. This makes it possible to analyze the effectiveness of Facebook ads for statistical and market research purposes and to optimize future advertising campaigns. For us as the operators of this website, the collected data is anonymous. We are not in a position to arrive at any conclusions as to the identity of users. However, Facebook archives the information and processes it, so that it is possible to make a connection to the respective user profile and Facebook is in a position to use the data for its own promotional purposes in compliance with the Facebook Data Usage Policy. This enables Facebook to display ads on Facebook pages as well as in locations outside of Facebook. We as the operator of this website have no control over the use of such data. You may restrict the processing of your personal data by not allowing Marketing Cookies.
You also have the option to deactivate the remarketing function in Facebook’s ad settings section.
Name and address: Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
More information: Meta’s Privacy Policy
We have integrated functions of the social media platform Twitter on this website. According to Twitter, the collected data may be transferred to the USA and other third-party countries too based on the EU Standard Contractual Clauses.
If you have accepted Marketing Cookies, a direct connection between your device and Twitterʼs server may be established. As a result, Twitter will receive information on your visit to this website. While you use Twitter and the retweet function, websites you visit are linked to your Twitter account and disclosed to other users. We must point out, that we as the providers of the website do not know anything about the content of the data transferred and the use of this information by Twitter. You may restrict the processing of your personal data by not allowing Marketing Cookies.
Name and address: Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland
More information: Twitterʼs Data Privacy Declaration
YouTube
Certain pages on this website embed videos from YouTube.
If you visit a page on this website into which a YouTube has been embedded, a connection with YouTubeʼs servers will be established. As a result, the YouTube server will be notified, which of our pages you have visited. Furthermore, YouTube will be able to place various cookies on your device or comparable technologies for recognition (e.g. device fingerprinting). In this way YouTube will be able to obtain information about this websiteʼs visitors. Among other things, this information will be used to generate video statistics with the aim of improving the user friendliness of the site and to prevent attempts to commit fraud. If you are logged into your YouTube account while you visit our site, you enable YouTube to directly allocate your browsing patterns to your personal profile. You have the option to prevent this by logging out of your YouTube account.
Name and address: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
More information: Google’s Data Privacy Policy
Vimeo
Certain pages on this website uses plug-ins of the video portal Vimeo.
If you visit one of the pages on our website into which a Vimeo video has been integrated, a connection to Vimeoʼs servers will be established. As a consequence, the Vimeo server will receive information as to which of our pages you have visited. Moreover, Vimeo will receive your IP address. This will also happen if you are not logged into Vimeo or do not have an account with Vimeo. The information recorded by Vimeo will be transmitted to Vimeoʼs server in the United States based on EU Standard Contractual Clauses. If you are logged into your Vimeo account, you enable Vimeo to directly allocate your browsing patterns to your personal profile. You can prevent this by logging out of your Vimeo account.
Name and address: Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA
More information: Vimeo Data Privacy Policy
OpenStreetMap
We are using the mapping service provided by OpenStreetMap (OSM).
When using the OpenStreetMap maps, a connection is established to the servers of the OpenStreetMap-Foundation in the Netherlands and the United Kingdom. The United Kingdom is considered a secure third country under EU’s data protection law. In the process and among other things, your IP address and other information about your behavior on this website may be forwarded to the OSMF. OpenStreetMap may store cookies in your browser or use similar recognition technologies for this purpose.
Name and address: OpenStreetMap Foundation, St John's Innovation Centre, Cowley Road, Cambridge, CB4 0WS, United Kingdom.
More information: OpenStreetMap Foundation’s Privacy Policy
hCaptcha
We use the hCaptcha security service on certain forms under this website. The purpose of hCaptcha is to determine whether data entered on this website (e.g., information entered into a contact form) is being provided by a human user or by an automated program and, thus, prevent spam or other abusive activities.
To do this, hCaptcha analyzes the behavior of the website visitor based on various characteristics. This analysis starts automatically as soon as the website visitor enters a part of the website with hCaptcha enabled. For the analysis, hCaptcha evaluates various information (e.g. IP address, how long the visitor has been on the website or app, or mouse movements made by the user).
The data collected during the analysis will be forwarded to IMI. hCaptcha analysis in the “invisible mode” may take place completely in the background. Website visitors are not advised that such an analysis is taking place if the user is not shown a challenge. We have a legitimate interest in protecting the service from abusive automated crawling, spam, and other forms of abuse that can harm our service or other users of our service.
Name and address: Intuition Machines, Inc., 350 Alabama St, San Francisco, CA 94110, USA
More information: hCaptcha’s approach to GDPR compliance and hCaptcha Privacy Policy