Privacy policy

Last updated: February 2025

Scope. This policy covers both (1) this website (the marketing site you are on) and (2) the SaaS Tracker product (the analytics platform we offer to customers). We use separate sections where the rules differ.

1. Who we are

SaaS Tracker is a product analytics platform offered by Secora Systems Oy. We are the data controller for the personal data we collect when you use this website or get in touch with us. For the SaaS Tracker product service, our customers are the data controllers for the data they send to the platform; we act as a data processor under their instructions.

You can contact us at info@secora.fi for any privacy-related questions.

2. Data we collect on this website

When you use this marketing website, we may collect:

  • Usage data — e.g. pages visited, approximate location (country), device type, and referral source — via Google Analytics (see Cookies below).
  • Contact data — if you email us (e.g. via a mailto link or contact form), we process your email address and the content of your message to respond and, where relevant, to follow up on demo or sales enquiries.

We do not sell your personal data. We use it only for the purposes described here and to improve our website and services.

3. Legal basis

We process your data on the following bases under the GDPR:

  • Consent — for non-essential cookies (e.g. analytics), where we ask for your consent before activating them.
  • Legitimate interest — to operate and secure the website, and to respond to your enquiries and manage our business relationship.
  • Contract (or pre-contract) — where you request a demo or enter into a contract with us, we process contact and related data to perform that contract.

4. Cookies and similar technologies

This site uses cookies and similar technologies where necessary:

  • Google Analytics (GA4) — we use Google Analytics to understand how visitors use the site (e.g. page views, traffic sources). This may involve cookies and data sent to Google. We configure analytics in a way that supports privacy (e.g. IP anonymisation where offered). You can control or opt out via your browser settings or Google’s opt-out tool.

You can change your cookie preferences in your browser. Blocking or deleting cookies may affect how the site works (e.g. preferences or analytics).

5. Data retention

We keep your data only as long as needed for the purposes above or as required by law:

  • Website analytics — aggregated or pseudonymised data may be retained for analysis; identifiers are retained only as long as the analytics provider’s settings allow (typically up to a few months unless we set a shorter period).
  • Contact and sales — we keep contact and correspondence for the duration of our relationship and for a reasonable period afterwards for legal and business purposes (e.g. contract, claims, enquiries).

6. Your rights (GDPR)

If you are in the European Economic Area (or your jurisdiction gives you similar rights), you have the right to:

  • Access — receive a copy of the personal data we hold about you.
  • Rectification — have inaccurate data corrected.
  • Erasure — request deletion of your data in certain situations.
  • Restriction — limit how we use your data in certain cases.
  • Object — object to processing based on legitimate interest (including analytics).
  • Data portability — receive your data in a structured, machine-readable format where applicable.

To exercise these rights, contact us at info@secora.fi. You also have the right to lodge a complaint with a supervisory authority (e.g. in your country of residence or in Finland: tietosuoja.fi).

7. SaaS Tracker product (B2B service)

When you use SaaS Tracker as a customer, your company is the data controller for the data you send into the platform. We process that data as a processor under a data processing agreement (DPA). Our product is designed so that we do not need to store personal data (e.g. names or direct email addresses) in the analytics pipeline; identifiers are pseudonymised. Details of processing, sub-processors, and security are set out in our DPA and related documentation, which we provide to customers.

8. International transfers

We aim to keep data within the European Economic Area. Where we use service providers (e.g. hosting or analytics) that may process data outside the EEA, we rely on appropriate safeguards such as the EU Standard Contractual Clauses or adequacy decisions, in line with applicable law.

9. Changes to this policy

We may update this privacy policy from time to time. We will post the current version on this page and, for material changes, we may notify you (e.g. by email or a notice on the site). The “Last updated” date at the top indicates when the policy was last revised.

10. Contact

For privacy questions, requests, or to exercise your rights:

Email: info@secora.fi

We will respond within a reasonable time, and in any event within the period required by applicable law (e.g. one month under the GDPR where it applies).