Privacy Policy

Last updated: September 5, 2025

 

1. Introduction

Agate Sensors Oy (“Agate Sensors”, “we”, “our”, “us”) is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard personal data when you visit our website or interact with us.

We comply with the EU General Data Protection Regulation (GDPR), the Finnish Data Protection Act, and other applicable laws.

2. Data Controller

Agate Sensors Oy
Business ID: 3440101-3
Address: Tietäjäntie 2
02130 Espoo
Finland
Email: contact@agatesensors.com

We do not appoint a Data Protection Officer, as this is not legally required for our activities. You may contact us at the above email with any questions or rights requests.

3. What Data We Collect

We may process the following personal data:

  • Identification and contact details: name, email address, phone number.

  • Company information: company name, role, business address.

  • Communication content: messages, demo requests, inquiries.

  • Technical data: IP address, browser type, operating system, device identifiers, website activity (via cookies and analytics tools).

  • Marketing preferences and consent records.

  • Any additional information you voluntarily provide via our website forms.

4. Purposes and Legal Bases

We process personal data for the following purposes:

  • Responding to contact requests and demo inquiries

    • Legal basis: performance of a contract or steps prior to contract (GDPR Art. 6(1)(b)).

  • Sending newsletters and marketing communications

    • Legal basis: consent (GDPR Art. 6(1)(a)). You may withdraw consent at any time.

  • Managing customer relationships (CRM)

    • Legal basis: our legitimate interest in managing business relations (GDPR Art. 6(1)(f)).

  • Website operation, analytics, and improvement

    • Legal basis: legitimate interest in ensuring security and usability (GDPR Art. 6(1)(f)). Analytics cookies require consent (Art. 6(1)(a)).

  • Legal compliance (e.g., bookkeeping, responding to authorities)

    • Legal basis: compliance with legal obligations (GDPR Art. 6(1)(c)).

5. Use of Service Providers (HubSpot and Others)

We use HubSpot, Inc. as a data processor for website forms, CRM, email distribution, and analytics.

HubSpot may store or process data outside the EU/EEA. Such transfers are safeguarded by:

  • The EU–U.S. Data Privacy Framework, or

  • Standard Contractual Clauses approved by the European Commission.

Other IT or communications service providers may also process data on our behalf, always under contracts ensuring GDPR compliance.

6. International Data Transfers

If your personal data is transferred outside the European Economic Area, we ensure appropriate safeguards under GDPR Chapter V, such as Standard Contractual Clauses or adequacy decisions.

7. Data Retention

We retain personal data only as long as necessary for the purposes stated above:

  • Contact inquiries and demo requests: up to 12 months after last interaction, unless a business relationship continues.

  • Newsletter subscribers: until you withdraw consent/unsubscribe.

  • Customer relationship data: for the duration of the relationship and up to 6 years thereafter, in line with statutory retention periods.

  • Technical and analytics data: according to cookie expiry settings, or anonymized for statistical purposes.

8. Your Rights

Under GDPR, you have the right to:

  • Access your personal data.

  • Request correction of inaccurate or incomplete data.

  • Request erasure of your data, where legally permitted.

  • Restrict processing in certain situations.

  • Object to processing based on legitimate interests or direct marketing.

  • Data portability, where applicable.

  • Withdraw consent at any time, without affecting prior lawful processing.

You also have the right to lodge a complaint with the Finnish Data Protection Ombudsman:
www.tietosuoja.fi

Requests may be submitted to: [Insert privacy/contact email].

9. Cookies and Tracking

Our website uses cookies and similar technologies to ensure functionality, analyze usage, and support marketing.

  • Strictly necessary cookies are used without consent.

  • Analytics and marketing cookies are used only with your consent, collected through our cookie banner (Cookiebot/HubSpot).

  • You can manage or withdraw your consent at any time.

See our Cookie Policy for details.

10. Google reCAPTCHA

We use Google reCAPTCHA on our forms to protect against spam and abuse. reCAPTCHA analyzes website visitor behavior (such as IP address, browser details, and interaction patterns) to determine whether a user is human. This processing is based on our legitimate interest in ensuring website security and preventing fraudulent activity (GDPR Art. 6(1)(f)).

The provider is Google Ireland Ltd. (Gordon House, Barrow Street, Dublin 4, Ireland). Data may also be processed by Google LLC in the United States. In such cases, transfers are safeguarded under the EU–U.S. Data Privacy Framework or Standard Contractual Clauses.

For more information, see Google’s Privacy Policy: https://policies.google.com/privacy

11. Data Security

We apply appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. These include access restrictions, encryption, and secure hosting.

12. Changes to This Policy

We may update this Privacy Policy to reflect legal requirements or changes in our practices. Updates will be posted on this page with the latest revision date.