Alteremis Logo

Privacy Policy

Last updated: August 2, 2025



1. Data Controller

Name: Alteremis Ltd
Business ID: FI35157681
Address: Heikkiläntie 7 A, 00210 Helsinki
Email: info@alteremis.com
Website: https://www.alteremis.com


2. Contact Person for Data Protection Matters

Name / role: Markus Laaksonen, CEO
Email: info@alteremis.com


3. Name of the Register

Alteremis Ltd. Email Register (newsletters and/or contact requests).


4. Purpose of Processing

  • Sending newsletters and announcements.
  • Responding to contact requests if an email address is provided via a contact form.
  • Technical management of email addresses and ensuring the functionality of the mailing system.

5. Data Processed

Required information: email address.


6. Source of Data

Data is collected directly from the individual when they enter their email address on the website.


7. Legal Basis for Processing

  • Consent (GDPR Art. 6(1)(a)) for sending newsletters and marketing communications.
  • Legitimate interest or contract (GDPR Art. 6(1)(f) / 6(1)(b)) for responding to contact requests.

The data subject can withdraw their consent at any time via the unsubscribe link in every email or by contacting the data controller (see section 2).


8. Retention Period

We retain the email address:

  • as long as consent is valid, or
  • until the subscriber unsubscribes or requests deletion, or
  • for a maximum of 24 months after the last activity.

Data will be deleted within a reasonable time after an unsubscribe or deletion request (no later than 30 days).


9. Recipients and Processors

We may use trusted service providers (e.g., newsletter platform, web hosting) to process data on our behalf. We enter into GDPR-compliant data processing agreements with these providers.

Processors:

  • Cloudflare Inc, EU / US, web hosting

We do not sell or disclose data to third parties for marketing purposes.


10. Transfers Outside the EU/EEA

Data is not transferred outside the EU/EEA unless required by a service provider we use. In such cases, we ensure lawful safeguards for the transfer (e.g., EU Commission Standard Contractual Clauses).


11. Data Security

Access to the data is limited to individuals and services who need it for their work. We use appropriate technical and organizational safeguards (including access control, encrypted connections, and backups).


12. Rights of the Data Subject

The data subject has the right to:

  • access their personal data and request a copy,
  • rectify inaccurate data,
  • request deletion (“right to be forgotten”),
  • restrict processing,
  • object to processing based on legitimate interest,
  • withdraw consent at any time,
  • lodge a complaint with a supervisory authority (www.tietosuoja.fi).
Requests can be submitted to the contact details in section 2. We may request additional information to verify identity.

13. Cookies

This website only uses essential cookies necessary for the site’s functionality.

14. Automated Decision-Making and Profiling

We do not carry out automated decision-making or profiling.

15. Changes to This Policy

We may update this policy if our operations or the law changes. We will post any material changes on our website. The latest update date is shown at the top of this document.

16. Contact

For all privacy-related requests and questions, see section 2.
Back