Privacy Policy

Privacy Notice under the General Data Protection Regulation (EU) 2016/679

Last updated: September 23, 2025

1. Controller

Monad Oy (Business ID: 2850261-9)
Hatanpään valtatie 24, Dynamo Business Park
33100 Tampere, Finland

2. Contact for Register Matters

[email protected]

3. Name of the Register

Monad Oy’s customer, marketing, and job applicant register.

4. Purpose of Processing and Legal Bases

Personal data is processed for the following purposes:

  • Customer relationship management, customer service, and communication
  • Development, marketing, and sales of services and products
  • Implementation of events and newsletters
  • Recruitment processes and handling of job applications
  • Invoicing and fulfillment of contractual obligations
  • Analytics and targeting related to websites and marketing channels

The legal bases for processing may include:

  • Data subject’s consent (e.g., newsletter subscription, form submission)
  • Performance of a contract and related measures
  • Legal obligations of the controller
  • Controller’s legitimate interest, where a relevant relationship exists between the data subject and the controller (e.g., customer relationship or justified interest in services).

The data subject has the right to withdraw consent at any time by contacting the address listed in section 2.

5. Data Content of the Register

We may process, as necessary, the following information:

Customers and partners

  • Name and contact details (email, phone number, organization, position)
  • Company details
  • Possible feedback, event participation, newsletter subscriptions
  • Voluntary additional information
  • IP address and technical identifiers

Job applicants

  • Name and contact details
  • Work history, education, skills
  • Attachments (CV, portfolio, application)
  • Possible referees provided
  • Voluntary additional information
  • IP address and technical identifiers

Other contacts (e.g., through contact forms)

  • Name and contact details
  • Organization and position
  • Voluntary additional information
  • IP address and technical identifiers

6. Regular Sources of Data

  • Information provided by the data subject (e.g., forms, customer relationship, job application)
  • Public sources (such as websites and trade register)
  • Employer of the data subject or other cooperation partners

7. Disclosure, Transfer, and Protection of Data

Only those employees of Monad who need the information in their work and only to the extent required by their duties will process the data. Data is not disclosed without a legal obligation unless necessary for the provision of a service.

We use reliable service providers for data processing (e.g., IT and marketing services). Agreements ensure that they process data in compliance with data protection legislation.

8. Transfer of Data Outside the EU or EEA

Through certain service providers (e.g., cloud and marketing services), personal data may be transferred outside the EU or EEA. In such cases, data protection is ensured using the European Commission’s Standard Contractual Clauses or other lawful safeguards.

9. Data Retention

Personal data is retained only as long as necessary:

  • To maintain customer and partner relationships
  • To carry out recruitment processes (a maximum of two years)
  • To comply with legal obligations

Data is regularly reviewed and deleted when no longer needed.

10. Use of Cookies and Web Analytics

We use cookies and similar technologies on our website to improve user experience, analyze traffic, and target marketing.

Cookie use is managed through Cookiebot’s Consent Mode solution, which displays an up-to-date list of cookies in use and allows users to manage their consent. Cookies are activated only based on user selection.

Cookies, tracking, and advertising platforms in use:

  • Google Tag Manager
  • Google Analytics
  • Google Search Console
  • Google Ads
  • HubSpot (forms, chat, job applications, marketing automation)
  • Leadfeeder
  • Meta (Facebook/Instagram) – Meta Pixel for ad optimization and targeting
  • Reddit – Reddit Ads Pixel for conversion tracking and ad targeting

Users may block cookies in their browser settings, though this may affect the functionality of the website.

11. Rights of the Data Subject

The data subject has the right to:

  • Access their own data and request to review it
  • Request rectification, deletion, or restriction of processing
  • Object to processing in certain situations
  • Withdraw consent at any time
  • Lodge a complaint with the supervisory authority (in Finland: Office of the Data Protection Ombudsman).