Nordic Insights Contact Us

Privacy Policy

Last Updated: September 2025

Our Commitment to Your Privacy

Nordic Insights takes data protection seriously. This policy explains how we collect, use, protect, and handle your personal information when you interact with our website and educational services.

We operate in compliance with Finnish and European Union data protection regulations, including the General Data Protection Regulation (GDPR). Your trust matters to us, and we maintain transparent practices regarding your information.

For privacy questions or concerns, please contact us at privacy@domain.com

Information We Collect

1. Contact Information

When you reach out through our contact form or enroll in courses, we collect:

  • Full name
  • Email address
  • Phone number (if provided)
  • Course interest or inquiry details

2. Usage Data

We automatically collect certain information when you visit our website:

  • IP address and general location data
  • Browser type and version
  • Pages visited and time spent on site
  • Referring website or search terms
  • Device type and operating system

3. Communication Data

When you communicate with us, we retain:

  • Messages sent through contact forms
  • Email correspondence content
  • Phone call records (duration and date)
  • Support inquiry history

4. Cookie Data

We use cookies to improve your experience. For detailed information, see our Cookie Policy. Cookie data includes:

  • Session preferences and settings
  • Analytics and site performance data
  • Marketing and advertising tracking

How We Use Your Information

Service Delivery

We use your information to provide course enrollment, respond to inquiries, process registrations, deliver educational materials, and communicate course updates or schedule changes.

Communication

Your contact details allow us to respond to your questions, send course information you've requested, provide customer support, and share relevant updates about our educational programs.

Marketing Communications

With your consent, we may send newsletters about new courses, educational resources, or industry insights. You can unsubscribe at any time through links in our emails.

Website Improvement

Analytics data helps us understand how visitors use our site, identify technical issues, improve navigation and content, and optimize user experience.

Legal Compliance

We maintain records to comply with Finnish tax regulations, educational licensing requirements, and other legal obligations relevant to operating educational services.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

Consent

For marketing communications, cookie placement, and optional data processing. You can withdraw consent at any time.

Contract Performance

To provide requested courses, deliver educational services, and fulfill enrollment agreements.

Legitimate Interest

For business operations, website analytics, fraud prevention, and improving our educational offerings.

Legal Obligation

For tax reporting, regulatory compliance, and responding to lawful requests from authorities.

How We Protect Your Data

Encryption

All data transmitted between your browser and our servers uses SSL/TLS encryption. Sensitive information stored in our systems receives additional encryption at rest.

Access Controls

We limit access to personal data to authorized personnel who need it for legitimate business purposes. Staff members receive training on data protection practices.

Secure Infrastructure

Our systems run on secure servers with regular security updates, firewall protection, intrusion detection, and continuous monitoring for suspicious activity.

Breach Notification

In the unlikely event of a data breach affecting your personal information, we will notify you and relevant authorities within 72 hours as required by Finnish law.

Regular Audits

We conduct periodic security assessments to identify vulnerabilities and ensure our data protection measures remain effective against evolving threats.

Data Retention Periods

We retain your personal data only as long as necessary for the purposes outlined in this policy:

Contact form submissions 3 years
Course enrollment records 5 years
Financial and tax records 7 years (legal requirement)
Marketing consent data Until consent withdrawn
Website analytics data 26 months

After retention periods expire, we securely delete or anonymize your data unless longer retention is required by law.

Your Privacy Rights

Right to Access

You can request a copy of the personal data we hold about you. We'll provide this information in a clear, accessible format within 30 days.

Right to Rectification

If your personal information is inaccurate or incomplete, you have the right to request corrections or updates to your data.

Right to Erasure

You can request deletion of your personal data, subject to legal retention requirements and legitimate business needs.

Right to Data Portability

You can receive your personal data in a structured, machine-readable format and transfer it to another service provider.

Right to Object

You can object to processing of your personal data for direct marketing purposes or when processing is based on legitimate interests.

Right to Withdraw Consent

Where processing is based on consent, you can withdraw it at any time. This won't affect the lawfulness of processing before withdrawal.

How to Exercise Your Rights

To make a data request or exercise any of these rights, please contact us at privacy@domain.com with:

  • Your full name and contact information
  • Description of your request
  • Proof of identity (to protect your privacy)

We respond to requests within 30 days. If you're unsatisfied with our response, you have the right to lodge a complaint with the Finnish Data Protection Ombudsman.

Third-Party Services

We work with trusted third-party service providers who may process your data on our behalf:

Google Analytics

Collects anonymous usage statistics to help us understand visitor behavior and improve our website.

Email Service Provider

Processes contact form submissions and manages course communication on our behalf.

Hosting Provider

Stores website data and course materials on secure servers located within the European Union.

All third-party processors are contractually bound to protect your data and use it only for specified purposes. We ensure they meet GDPR compliance standards.

International Data Transfers

We primarily store and process data within the European Economic Area. If data must be transferred outside the EEA, we ensure appropriate safeguards are in place:

  • Standard contractual clauses approved by the European Commission
  • Adequacy decisions recognizing equivalent data protection
  • Privacy Shield certification (where applicable)
  • Additional security measures to protect your information

Policy Updates

We may update this privacy policy periodically to reflect changes in our practices or legal requirements. When we make significant changes, we'll notify you through:

  • A notice on our website homepage
  • Email notification to registered users
  • Updated "Last Modified" date at the top of this page

We encourage you to review this policy periodically to stay informed about how we protect your information.