Arvoan Logo

PRIVACY POLICY

Last Updated: March 2, 2026

Arvoan Ltd ("we", "us", or "our") respects your privacy. This Privacy Policy explains how we collect, use, and protect your Personal Data when you visit our website, book a call, or interact with our marketing and sales channels.

Important Note for Clients: This policy applies strictly to our website visitors and prospective clients (where we act as the Data Controller). If you are an active client and we are analyzing your product telemetry or CRM data, that data is handled under our strict, zero-trust Data Processing Agreement (DPA), where we act as your Data Processor.

1. Data Controller

Arvoan Ltd (officially registered in Finland as Arvoan Oy, Business ID: 3286668-5), Alingsåsinkatu 12 A 1, 10300 KARJAA, Raasepori, Finland

Email: toni@arvoan.com

Business ID: 3286668-5 VAT ID: FI32866685

2. What Personal Data We Collect

We collect minimal personal data necessary to run a B2B consulting business:

  • Contact Information: Name, email address, company name, and job title when you fill out a contact form, book a call, or subscribe to our content.
  • Communication Data: Content of emails, LinkedIn messages, or calendar meeting notes you share with us.
  • Technical Data: Basic, anonymized website analytics (e.g., pages visited, referring source) to understand how visitors interact with our site.

3. How We Use Your Data

We process your data for the following lawful purposes (GDPR Art. 6):

  • Contractual Necessity: To schedule Alignment Calls, send proposals, execute contracts (MSAs/DPAs), and issue invoices.
  • Legitimate Interest: To respond to your inquiries, send you requested architecture briefs, and conduct B2B outreach to relevant corporate professionals.
  • Consent: To send you our newsletter or marketing updates (which you can opt out of at any time).

4. How We Protect Your Data

We treat our own business data with the same rigorous security as we treat our clients' data.

  • Personal Data is stored in secure, encrypted cloud environments (Google Workspace) and industry-standard CRM/contracting platforms.
  • Access to our systems is protected by strong passwords, 2FA, and hardware keys where applicable.

5. Sharing Your Data (Sub-processors)

We do not sell, rent, or trade your Personal Data. We only share data with trusted third-party service providers necessary to operate our business, including:

  • Google Workspace (Google LLC): For email hosting, document storage, calendar scheduling, and secure file sharing.
  • Contracting & Invoicing Tools: (PandaDoc, Stripe) for processing agreements and payments.

6. Data Retention

We retain your Personal Data only for as long as necessary to fulfill the purposes for which it was collected, including satisfying any legal, accounting, or reporting requirements (e.g., Finnish accounting laws require holding invoice data for several years).

7. Your GDPR Rights

Under the GDPR, you have the right to:

  • Access the personal data we hold about you.
  • Rectify inaccurate or incomplete data.
  • Erase your personal data ("Right to be forgotten").
  • Restrict or Object to our processing of your data.
  • Data Portability: Receive your data in a structured, machine-readable format.

To exercise any of these rights, please email us at toni@arvoan.com. We will respond within 30 days.

8. Changes to this Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last Updated" date.