Have a question you want an answer for? Let us show you how it works.
Book a demo

Privacy Policy

This data protection statement was last updated on October 30, 2020.

Who are we? / Register controller

Name: SecurAI OY
Address: Firdonkatu 2 T 63, 00520 Helsinki
Business ID: 3118689-9
Our website address: http://drai.ai.

SecurAI OY is the registered controller of personal data.
Our contact person is: Samuli Tiilikainen, samuli.tiilikainen@drai.fi

Whose personal data we collect

We handle the personal data of the contact persons of our corporate clients in order to realize the contract relationship, as well as the personal data of the contact persons of potential clients to whom we market our services and the personal data of users who visit our website.

What personal data we handle

1. The data of the contact persons of our client companies

We collect personal data pertaining to our clients in principle from the contact person of the client in association with quotations, contracts, orders and other contact with the client. We may handle the following data:

  • basic information, such as the name, the title in the client company and the name of the company;
  • contact details, such as the work email address and work phone number;
  • contacts and client communication;
  • information required for a contract and invoicing; and
  • marketing communications and direct marketing permissions and prohibitions.

2. The data of the contact persons of potential clients

We collect personal data pertaining to our potential clients from the contact person of the potential client in association with invitations for tenders, contacts or events. We may handle the following data:

  • basic information, such as the name, the title in the client company and the name of the company;
  • contact details, such as the work email address and work phone number;
  • offers and contacts; and
  • marketing communications and direct marketing permissions and prohibitions.

3. The data of users visiting our website

We automatically handle certain technical data of users visiting our webpages. We may handle the following data:

  • the IP address; 
  • the type of device and its identifier; 
  • the browser’s type and version; 
  • the time of the visit, information relating to the pages viewed and the amount of time spent on the site; and
  • white papers downloaded from the website and booked demos and the information submitted in association with these, such as the name, email address, phone number, title and the name of the company.

For users who register on our website we also save the personal data they give in their user profile. Users can see, edit and remove their personal data at any time. The following data is handled for a user who is logged in:

  • basis information, such as the name, the position/role in the company and the name of the company;
  • contact details, such as the work email address and work phone number; 
  • the user ID

For what purposes and on what grounds we handle personal data

1. Providing the service and taking care of the client relationship

We handle personal data of our clients primarily in order to be able to provide the services that they have ordered to our clients. Personal data is also handled for invoicing and client communication related to the service. The basis for the handling of personal data is the contract between us and the client.

2. Marketing

We also handle the personal data of the contact persons of our clients and potential clients for marketing purposes. We may send marketing communications to the contact persons that contain current information about our services and company and in order to request feedback.

We also handle personal data collected on our webpages, in conjunction with booking a demo and downloading a white paper, for marketing purposes. 

The aforementioned handling of personal data is based on our legitimate interest to offer current information about our company to our clients and potential clients and to market our services. Contact persons have the right to refuse marketing communications at any time [by clicking the "cancel order" link in conjunction with the email or by contacting our contact person, stated in this data protection policy].

3. Providing our website

We handle the personal data of users visiting our website on the basis of our legitimate interest to ensure the functionality and data security of our site and provide pertinent information to visitors about our services and company. 

The use of cookies and corresponding technologies, as far as they are concerned, is based on the consent of the user visiting the website.

4. Legal obligations

We can also handle personal data in order to comply with our legal obligations, such as to respond to legal demands. 

With whom we share your data

We can share personal data with third parties in the following cases:

  • When legislation so requires and within limits, for example in order to respond to a request from a competent official or when legislation requires that data is handed over;
  • If we are involved in a merger, a corporate acquisition or another reorganization of the business;
  • When, in the provision of our website and service, we use personal data handlers, i.e. our cooperative partners, who handle personal data on our behalf and in accordance with our guidelines. We have cooperative partners who assist us in the selling and production of our service. These parties only have access to the data that is essential for them to carry out the tasks assigned to them; and
  • In order to respond to legal demands, as well as dealing with them and defending against them.

Embedded content from other websites 

The articles on our website may include embedded content (e.g. videos, images, articles etc.). The embedded content from other websites works in exactly the same way as if the visitor had gone to another website and the providers of these contents handle the user’s personal data as independent register controllers in accordance with their own data protection statements. 

These sites may collect information about you, use cookies, embed the additional monitoring of a third party and observe your interaction with the embedded content in question, including monitoring interaction with embedded content if you have an account and are logged into the site in question.


We use cookies and other corresponding technologies on our website. A cookie is a small amount of data which is stored on your device when you use our website. Cookies facilitate the use of many functions on our webpages and a better user experience. They also facilitate examining the use of a webpage for us so that we can better understand how users use our webpage. Our site has the following kinds of cookies in use:

  • With essential cookies, we can ensure the normal functioning and security of the site.
  • Functional cookies are important so that you can move around on the site and use its functions. Functional cookies are used, for example, for remembering log-in details, language settings and the layout of our website. 
  • Analytics cookies collect statistical data about how users use our website. They help us to understand how users browse or use our site and what parts of the site are used the most.
  • Advertising cookies collect data about the user’s browsing habits and through them, advertising is targeted on the basis of the things you show an interest in, just for you.
  • On our website, there may also be social media cookies

We use the following third-party cookies on our site: Google Analytics, LinkedIn. 

You can prevent the setting of cookies, restrict the use of cookies or remove cookies from your browser. However, these measures may have an effect on the usability of the webpages.

Transferals of your personal data to outside the EU or EEA

We only transfer personal data outside the EU and EEA in accordance with the General Data Protection Regulation and in compliance with the protective measures required by the Regulation, such as, for example, by using model contract clauses approved by the European Commission.

How long we store your data

We store your personal data only as long as it is needed for the purposes described in the data protection policy, for which they have been collected, after which this data is deleted. We keep some personal data for longer if applicable legislation demands it.

We store the personal data of clients for at least the duration of the client relationship and after this in accordance with applicable legislation, for example for the amount of time required by Accounting Act legislation.

Data relating to logging into the website is stored until the user deletes their user account. In addition, the data of passive users is deleted from our service within two years of the last time that they logged in. 

We store the personal data of the contact persons of potential clients for a maximum of a year after the last contact. If there is no client relationship in effect with the potential client, the personal data is deleted after the deadline has expired.

What rights you have to your data

You can request information regarding all of your personal data that we handle. You can also request that we delete all the personal data we have relating to you. We will delete your data upon request, unless applicable legislation requires or entitles us to keep it. 

In addition, in accordance with applicable data protection legislation and its scope, you have the right to:

  • correct incorrect information relating to you,
  • withdraw the consent you gave for the handling of personal data,
  • request that handling is limited and object to the handling of personal data,
  • receive the personal data for yourself as a file or have it transferred to another register controller.

If you want to exercise these rights, you can send a written request by email to: samuli.tiilikainen@drai.fi.

You also have the right to make a complaint to the Office of the Data Protection Ombudsman of Finland or the data protection official of another EU country if you consider that your personal data has been handled in contravention of the current legislation.

How we protect your data

Personal data is only handled digitally, and it is protected through appropriate technical methods. Only those people have access to personal data who need the data in question to carry out their work tasks. The persons in question have personal user IDs and passwords at their disposal.

All parties who handle personal data are bound by professional confidentiality with regard to matters to do with the handling of registered personal data.

Making contact

If you have any questions regarding the data protection statement or want to exercise the rights mentioned above, you can contact our contact person Valtteri Kaartemo by email at samuli.tiilikainen@drai.fi.

Changes to the data protection statement

If we change the data protection statement, we will publish the updated data protection policy on our website. If we make fundamental changes to our data protection policy, we will tell about this on our webpages or notify about it using our established contact channels, such as by email.

Get the answers to your strategic questions in just one day.*