Privacy Policy

Effective date: Jan 1, 2026

In the following, we inform you about which data we process when you visit this website as well as when you submit information or inquiries via this online offering. In addition, we provide you with information necessary to ensure fair and transparent processing of personal data.

Our online offering contains links to websites operated by other providers. We have no influence over whether these providers comply with applicable data protection laws.

Controller

The controller responsible for this website: 

Way Data Technologies Oy
PL 1188
00101 Helsinki
Finland
Email: info@way.cloud

For specific questions regarding data protection, please contact the Data Protection Officer:

Oscar Söderlund

Email: dataprotection@way.cloud

Collection and Storage of Personal Data and the Nature and Purpose of Their Processing

  1. When visiting the Website 

Each time content on this website is accessed, data that may allow identification is temporarily stored. The following data is collected in this process:

  • Date and time of access,
  • IP-Adress,
  • Hostname of the accessing service,
  • Website from which this website was accessed,
  • Websites accessed via this website,
  • pages visited on our website,
  • notification as to whether the access was successful,
  • amount of data transferred,
  • information about the browser type and version used, and 
  • operating system of the device used.

The temporary storage of this data is necessary to enable the proper delivery of the website during a visit. Further storage in log files is carried out to ensure the functionality of the website and the security of our information technology systems. These purposes also constitute our legitimate interest in processing the data.

The data is processed based on Article 6(1)(f) GDPR.

  1. Retention Period of Your Data When Visiting the Website

The data is deleted as soon as it is no longer necessary for the purposes for which it was collected. In the context of providing the website, this is the case when the respective session has ended. Log files are stored for a maximum period of up to seven (7) days and are accessible directly and exclusively to administrators.

  1. When Using the Contact Form

When using the contact form, the data you provide is processed exclusively for the purpose of handling your inquiry.

The data is processed on the basis of Article 6(1)(a) GDPR and, insofar as the inquiry relates to a (pre-)contractual relationship, on the basis of Article 6(1)(b) GDPR.

  1. Retention Period When Using the Contact Form

The data is deleted as soon as it is no longer necessary for the purposes for which it was collected. In the case of using the contact form, this is generally the case once your inquiry has been conclusively processed, provided that no statutory retention obligations apply.

  1. Hosting

The website is hosted by Webflow. The hosting provider receives the aforementioned data as a processor acting on our behalf.
Way exclusively uses European servers – no transfer to third countries takes place.
Data transmission is encrypted (TLS 1.3).
A data processing agreement in accordance with Article 28 GDPR has been concluded with the hosting provider.

Data Subject Rights

  1. Right of access

You have the right, pursuant to Article 15 GDPR, to obtain information about the personal data we process concerning you.

  1. Right to object

You have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you which is based on Article 6(1)(e) or (f) GDPR (see Article 21 GDPR)

  1. Right to Rectification

If the information concerning you is inaccurate or incomplete, you may request correction in accordance with Article 16 GDPR. If your data is incomplete, you may request its completion.

  1. Right to Erasure 

You have the right, pursuant to Article 17 GDPR, to request the deletion of your personal data.

  1. Right to Restriction of Processing

You have the right, pursuant to Article 18 GDPR, to request the restriction of processing of your personal data.

  1. Right to Object

If you believe that the processing of your personal data violates data protection law, you have the right, pursuant to Article 77(1) GDPR, to lodge a complaint with a supervisory authority of your choice.

For Finland, the competent authority is:
Office of the Data Protection Ombudsman (Tietosuojavaltuutetun toimisto):
Lintulahdenkuja 4
FI-00530 Helsinki
Finland
Phone: +358 29 566 6700
Email: tietosuoja@om.fi
Website: https://tietosuoja.fi/en/

  1. Right to Data Portability

In cases where the requirements of Article 20(1) GDPR are met, you have the right to receive personal data that we process automatically on the basis of your consent or in performance of a contract, and to transmit such data to yourself or to a third party.

The collection of data for providing the website and the storage of log files are strictly necessary for the operation of the website. Therefore, these processes are not based on consent pursuant to Article 6(1)(a) GDPR or on a contract pursuant to Article 6(1)(b) GDPR, but are justified under Article 6(1)(f) GDPR. Accordingly, the conditions of Article 20(1) GDPR are not met.

Right to Object pursuant to Article 21(1) GDPR

You have the right, for reasons arising from your particular situation, to object at any time to the processing of your personal data that is carried out on the basis of Article 6(1)(f) GDPR.

In the event of such an objection, the controller will no longer process your personal data unless it can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defense of legal claims.

The collection of data for providing the website and the storage of log files is strictly necessary for the operation of the website.

Embedded Content and Third-Party Services

This website may contain external links or embedded content. Personal data is only transmitted to the respective target site when you click on an external link.

Social media links (e.g. LinkedIn) are implemented as simple links. No data is transmitted to these providers when the website is merely accessed.

Security

Way Data Technologies Oy implements technical and organizational measures in accordance with Article 32 GDPR to protect personal data against loss, misuse, and unauthorized access.

Changes

Way Data Technologies Oy reserves the right to amend this Privacy Policy as necessary. The current version can be accessed at any time at: https://way.cloud/legal/privacy-policy/

Contact

For privacy questions, contact info@way.cloud