Picosun Data Security Statement

    Picosun is an ISO 9001:2015 certified high-technology company. Data security and individual privacy are important to us. Whether you’re a visitor to our website or our present or prospect customer, this statement includes important information about our data security as well as our privacy statement.



    What personal information do we collect and why?


    Picosun does not collect or store large amounts of personal information and the information we collect is mostly contact information such as e-mail addresses and telephone numbers. We collect all personal data for a pre-defined purpose and we will not use the data for anything else.

    The collection of personal information at Picosun is based on either a written consent, a contract, a legitimate interest (duties related to the client relationship or performance of services) or a legal obligation. In general, all of the information we collect is given to us by individuals directly meaning we do not collect data through means of observation.

    We register information about our customers such as name, e-mail address and phone number of customers’ contact people. This information is used to conduct a successful business relationship and ensure our ALD solutions are delivered on time. At times, we may send News Letters and Customer Satisfaction Surveys to our customers’ contact people to further improve our services, unless you have forbidden it or otherwise opted-out from receiving such messages.

    We register information about our prospect customers which we collect upon contact via e-mail, through our website’s contact sheet or in events such as business meetings and trade fairs. This information consists of names, e-mail addresses and phone numbers and is used to pursue business negotiations.

    We also register information about our suppliers contact people such as name, e-mail and phone number to ensure a timely production of our products.


    How do we protect your information?

    Picosun is committed to respecting individual rights and organizations’ obligations under the Finnish Personal Data Act the EU’s General Data Protection Regulation. We have implemented appropriate processes to secure all data from accidental or malicious manipulation, loss, destruction and unauthorised access. We will monitor the access to our data and report any leaks and misuse within timelines defined by law. We will not store any more information than what is needed. The security and privacy aspects are factored in the design phase of any process where we may collect personal information. Our processes are under constant risk-assessment.

    Picosun only stores personal data as long as it is necessary for the purpose it was collected for or as long as required under applicable laws. When the personal data is no longer necessary, we will automatically delete it.


    How do we disclose or transfer your data?

    In principle Picosun does not transfer or disclose any personal data it collects to third parties. However, we may from time to time disclose, transfer or allow access to personal data within companies belonging to the same group as we do. We also use third parties as our service providers as well as subcontractors, who may sometimes gain access to our data (including personal data). In such cases we always ensure that sufficient security measures are implemented, and that we only use vetted service providers and subcontractors, who are known to have implemented appropriate security measures.

    We do not transfer personal data outside the EU or the EEA, apart from conducting a customer satisfaction questionnaire where the contact information and answers will be located in severs in the United States. In such cases we always ensure that such disclosures or transfers are done following appropriate security measures by e.g. entering into binding data transfer agreements or other legal security measures required under applicable laws. All transfers and disclosures are done only on need-to-know basis and always in accordance with applicable data protection laws.


    What rights do you have?

    You have certain rights concerning your personal data granted under the applicable data protection legislation. Picosun is committed to implementing these rights and realizing requests made under these rights. You may make use of your rights described herein (with the exception of the complaint to a supervisory authority) by contacting Picosun via the contact details given below.

    Upon your request, in a timely manner, we will grant access to the personal data we hold on you by delivering you a copy of the information via electronic or other means. You also have the right to request that any incorrect, outdated or unnecessary personal data on you is corrected, completed or deleted. In some instances, you may also request that instead of deletion of the personal data, we restrict its use. We respect your right to be forgotten and do not store information for any longer than it is needed to conduct a successful business relationship or required by the law. In addition, where any of your personal data is processed based on consent (including marketing), you may at any time withdraw your consent. All e-mail lists, such as our News Letter -mailing list, have the link for unsubscribing from the list.

    In case you consider that we have not followed the applicable data protection legislation or this security statement in processing your personal data, or you are otherwise not content with how we have realized your rights, you have the right to lodge a complaint to the competent data protection authority. List of the contact details of all data protection authorities in the EEA can be found at the European Commission’s website.


    Picosun is committed to protect its business, customers and other stake-holders from physical and cyber-attacks. Security risks are constantly evaluated. We protect ourselves from cyber-attacks and misuse with appropriate anti-virus software, firewalls and analytics for server activity among other means. We have implemented various processes for internal data-protection and our personnel is educated for data security. For continuity of business, we have implemented appropriate mirroring and back-ups. Our servers are located in secure places with restricted access. Picosun’s premises are protected with access control, camera surveillance, and security service, including security guards and an automated alarm system. For security reasons, the details of all systems are left out of this statement. People visiting Picosun’s premises must sign a Visitor NDA or a company level NDA. Picosun requires its partners to be compliant with all necessary standards and laws regarding data protection. A Data Protection Contract is made with all parties who supply Picosun services that might be used for data processing.


    Our website may use cookies and we may use external services like Snoobi to collect information about the visitors to our website based on IP-addresses. A cookie is a small text file that is sent by a website to your computer or mobile device where it is stored by your web browser. A cookie contains limited non-personal data, usually a unique identifier, the name of the website and potentially your IP-address. This enables a website to recognize you as you move around the website and/or each time you revisit.

    The information we collect through the use of cookies is collected solely to analyse the interest towards our products for sales and marketing purposes. For the most part such information cannot be linked to a person and we will not store any personal information as a result. However, please be noted that under certain jurisdiction IP-addresses are considered to be personal data, wherefore collection of your IIP-address could be considered as processing personal data.

    You can easily disable, refuse or delete all cookies via your browser settings. Please note that if you choose to disable cookies, our services and website may not function properly and certain services may not be available anymore. Each browser is different when it comes to managing cookies, so check the “Help” or “Settings” menu of your browser to learn how to change your cookie preferences.

    Necessary cookies

    These are essential cookies that are essential for the website to function and that do not require consent.


    • This cookie is used by the opt-in privacy policy to remember not to ask the visitor to accept cookies again.
    • It expires in 6 months.


    • This cookie is set to prevent the tracking code from sending any information to the platform.
    • It expires in 6 months.


    • This cookie is used to prevent the banner from always displaying when visitors are browsing in strict mode.
    • It expires in seven days.


    • This cookie is used to record the categories a visitor consented to.
    • It expires in 6 months.


    • This cookie is set by platform’s CDN provider because of their rate limiting policies. It expires at the end of the session.


    This cookie is set by platform's CDN provider and is a necessary cookie for bot protection. It expires in 30 minutes.

    Analytics cookies

    These are non-essential cookies controlled by the cookie banner. You can opt out of these cookies by not giving consent.


    • This cookie contains the domain, utk, initial timestamp (first visit), last timestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent session) of the visitor.
    • It expires in 6 months.


    • This cookie keeps track of a visitor's identity. It is passed on form submission and used when deduplicating contacts.
    • It contains an opaque GUID to represent the current visitor.
    • It expires in 6 months.


    • This cookie keeps track of sessions.
    • This is used to determine if the platform should increment the session number and timestamps in the __hstc cookie.
    • It contains the domain, viewCount (increments each pageView in a session), and session start timestamp.
    • It expires in 30 minutes.


    • Whenever the platform changes the session cookie, this cookie is also set to determine if the visitor has restarted their browser.
    • If this cookie does not exist when the platform manages cookies, it is considered a new session.
    • It expires at the end of the session.



    Picosun is the data controller of your personal data. Picosun’s contact details are as follows:

    Picosun Oy (business ID 1105581-6)

    Address: Tietotie 3, FI-02150 Espoo Finland

    Tel. +358 50 321 1955

    Email: info@picosun.com


    We reserve the right to modify this Privacy Statement when necessary. Modified statements will be published on this page and we recommend that you visit this section frequently so that you remain aware of the most recent changes. If you have any questions about Picosun’s privacy or security measures or Picosun’s processing of personal data otherwise, do not hesitate to contact us.




    These terms of use govern the use of the website located at https://www.picosun.com/. The website is provided by Picosun Oy and/or its service providers. By proceeding to use the website, you agree to be bound by these terms, in their current form and as they may be amended by us from time to time. If you do not accept these terms, you must discontinue your use of the website immediately.


    Picosun takes reasonable precautions to ensure that information included in the website is accurate, but does not guarantee its accuracy. You should take appropriate steps to verify information displayed on the website before relying on it. Downloading material from the website is done at your own risk and any materials provided via the website are provided on a “as is” basis.


    While Picosun takes specific interest into ensuring data security in its processes (including this website), we do not fully guarantee that the website will be free from all bugs and viruses. You are responsible for configuring your own security settings, and you should use your own virus and malware protection systems.


    Neither Picosun nor any of its directors, employees or other representatives will be liable for loss or damage arising out of or in connection with the use of this website. This is a comprehensive limitation of liability that applies to all damages of any kind including (without limitation) compensatory, direct, indirect or consequential damages, loss of data, income or profit, loss of or damage to property and claims of third parties.


    Notwithstanding the foregoing, none of the exclusions and limitations in the clause are intended to limit any rights you may have as a consumer under local law or other statutory rights which may not be excluded nor in any way to exclude or limit Picosun’s liability to you for death or personal injury resulting from Picosun’s negligence or that of Picosun’s employees or agents.


    Unless indicated to the contrary, all materials on this website including design, text, graphics and photographs are the copyright of Picosun. Picosun is the owner of the trademarks appearing on this website and all associated trade names, logos and devices unless indicated to the contrary. All other trademarks, logos and names appearing on this website are the property of their respective owners, as indicated. Nothing in these terms is intended to mean or meant to transfer, assign or grant any of those rights to you. No permission is given by their respective owners for the use of any of them and such use may constitute an infringement of the owner’s rights. You must not reproduce or use images, trademarks or names displayed on the website other than for your personal use without written permission of the owner.


    Our website may from time to time contain links to third party website or content linked to such sites. Picosun assumes no responsibility for any such third party content or links. Inclusion of any third party links or linked content to the website should not be interpreted as Picosun’s endorsement of those linked website. Picosun will not be liable for any loss or damage that may arise from your use of such links or linked third party contents.