Privacy Policy

Effective Date: September 15, 2025

Last Updated: October 10, 2025

Address: Annankatu 25, 00100 Helsinki, Finland
Phone: +358 9 7458 3612
Email: info@insightpro.fi

Introduction & GDPR Compliance

Insight Pro is committed to protecting your personal data and respecting your privacy rights. This Privacy Policy explains how we collect, use, and safeguard your information when you use our business analysis training services and website, in compliance with the General Data Protection Regulation (GDPR) and Finnish data protection laws.

We act as the data controller for the personal information we collect through our training programs, website, and related services. Your privacy is fundamental to our operations, and we implement appropriate technical and organizational measures to ensure data security.

Data Collection Information

Personal Data We Collect

  • Contact Information: Name, email address, phone number, and mailing address when you inquire about our courses
  • Professional Information: Current role, company, industry experience, and career objectives for course customization
  • Training Records: Course enrollment, progress, completion certificates, and assessment results
  • Technical Data: IP address, browser type, device information, and website usage patterns
  • Communication Records: Email exchanges, phone call notes, and customer service interactions

How We Collect Data

  • Direct Collection: Information you provide through contact forms, course registrations, and direct communications
  • Website Analytics: Automated collection through cookies and similar technologies (with your consent)
  • Third-Party Sources: Professional networking platforms when you apply using social login (with explicit permission)
  • Training Platforms: Learning management system interactions and progress tracking

Legal Basis for Processing

  • Contractual Necessity: Processing required to provide training services and support
  • Legitimate Interest: Improving our services, marketing relevant courses, and business development
  • Consent: Marketing communications, cookies, and optional data sharing
  • Legal Obligation: Compliance with Finnish education and business regulations

Data Retention Periods

  • Training Records: 7 years after course completion for certification and regulatory purposes
  • Marketing Data: Until you withdraw consent or 3 years of inactivity
  • Website Analytics: 26 months maximum, as per Google Analytics standards
  • Communication Records: 3 years for customer service and quality assurance

Data Usage & Protection

How We Use Your Personal Data

  • Service Delivery: Providing business analysis training, course materials, and certification
  • Communication: Responding to inquiries, sending course updates, and providing customer support
  • Personalization: Customizing training content based on your professional background and learning goals
  • Quality Assurance: Monitoring training effectiveness and improving course content
  • Legal Compliance: Meeting regulatory requirements for educational services in Finland

Data Sharing Practices

  • Training Partners: Certified instructors and guest speakers involved in course delivery (under strict confidentiality)
  • Technology Providers: Learning management systems, email services, and analytics platforms (with data processing agreements)
  • Certification Bodies: International Institute of Business Analysis for ECBA certification processing
  • Legal Requirements: Finnish authorities when required by law or court order
  • No Commercial Sales: We never sell your personal data to third parties for marketing purposes

Data Protection Measures

  • Encryption: All personal data is encrypted both in transit and at rest using industry-standard protocols
  • Access Controls: Strict role-based access to personal data with regular access reviews
  • Regular Backups: Secure, encrypted backups with tested recovery procedures
  • Staff Training: Regular privacy and security training for all team members handling personal data
  • Incident Response: Established procedures for data breach detection, containment, and notification

Your Rights & Data Management

Your GDPR Rights

Data Access Rights

  • Request copies of your personal data
  • Understand how your data is processed
  • Verify the lawfulness of processing

Data Control Rights

  • Rectify inaccurate personal data
  • Request deletion of your data
  • Restrict or object to processing

Data Portability

  • Receive your data in structured format
  • Transfer data to another service provider
  • Automated processing data export

Consent Management

  • Withdraw consent at any time
  • Opt-out of marketing communications
  • Manage cookie preferences

How to Exercise Your Rights

To exercise any of your rights, please contact us using the information provided at the end of this policy. We will respond to your request within one month and provide clear information about any actions taken.

Important: You also have the right to lodge a complaint with the Finnish Data Protection Authority (Tietosuojavaltuutettu) if you believe we have not handled your personal data appropriately.

Your Rights and Opt-Out Instructions

You are not required to provide any personal information when using this website. If you prefer not to share your data, you may:

  • Avoid filling out contact forms, account registrations, or any data-submitting features
  • Disable cookies through your browser settings (see our Cookie Policy for more details)
  • Contact us directly to request the deletion of any previously shared personal data

We respect your privacy choices. If you would like us to delete your data, please reach out to us at the contact details provided on our Contact page. We will process your request promptly and in accordance with applicable data protection laws.

International Data Transfers

Some of our service providers may be located outside the European Economic Area (EEA). When we transfer your personal data internationally, we ensure appropriate safeguards are in place:

  • Adequacy Decisions: Transfers to countries with adequate data protection as determined by the European Commission
  • Standard Contractual Clauses: EU-approved contracts ensuring GDPR-level protection
  • Certification Schemes: Providers certified under recognized privacy frameworks
  • Binding Corporate Rules: Internal privacy rules for multinational organizations

Contact Information for Privacy Matters

Data Protection Contact

Email: privacy@insightpro.fi

Phone: +358 9 7458 3612

Address: Annankatu 25, 00100 Helsinki, Finland

Response Times

  • • Data requests: Within 30 days
  • • Privacy inquiries: Within 5 business days
  • • Urgent matters: Within 24 hours

Policy Updates

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. When we make significant changes, we will:

  • Update the "Last Updated" date at the top of this policy
  • Notify you via email if you have provided your email address
  • Post a prominent notice on our website
  • Obtain your consent where required by law

We encourage you to review this Privacy Policy regularly to stay informed about how we protect your personal data.