Controller
Dreija Oy · Business ID 3021688-1 · Sunantie 19 H 23, 02760 Espoo, Finland. For privacy-related questions, contact info@dreija.com.
Privacy
Privacy policy
This privacy policy explains how Dreija Oy processes the personal data of website visitors and people who contact us. We handle personal data in accordance with the EU General Data Protection Regulation (GDPR) and Finnish Data Protection Act.
Last updated: 21 April 2026
What data we collect
Via the contact form we collect: name, email address, company name (optional) and message content. For spam prevention we also store the submission IP address and user agent. The website does not use analytics or marketing cookies – only strictly necessary session cookies to remember your language preference.
Purpose and legal basis
Data is processed to respond to contact requests, establish and maintain customer relationships, and provide proposals. The legal basis is the legitimate interest of the controller (GDPR 6(1)(f)) and, once a customer relationship is formed, the performance of a contract (GDPR 6(1)(b)).
Retention
Contact requests are retained for 24 months after contact, unless a customer relationship is established. If a customer relationship is established, data is retained for the duration of the relationship and the statutory accounting retention period thereafter. Anti-spam log entries are retained for a maximum of 7 days.
Your rights
You have the right to access the data we hold about you, request correction of inaccurate data, request deletion, restrict or object to processing, and to data portability. To exercise your rights, send a request to info@dreija.com. You also have the right to lodge a complaint with the Finnish Data Protection Ombudsman (tietosuoja.fi).