Privacy Policy
Updated: 01 October 2025
Who we are
This is the privacy policy regarding the website www.ensuredly.com.
Ensuredly is currently operated under:
Limited liability company Quarto Legal Oy
Helsinki
Registered in Finland under 33889408
To contact us for any reason, please send an email to helsinki @ ensuredly . com
This privacy policy explains what personal data we collect, process, and your data subject rights.
What we collect
We collect limited personal information, such as:
Contact information: if you contact us directly, via email or via our contact form on the website. We process the data, such as your name, email and affiliated business, and any other information you share with us. This information is collected based on your consent to engage with us.
Service data: we process your employees’ names, emails, and on what moment they have completed a course. We also process when they clicked on a course to start following it, how long it takes them, and from where they have taken the course, which area in the world. We do not process any mistakes made. This information is collected based on a contract with the employer.
Marketing information: We use publicly available business contact details (e.g. via LinkedIn outreach) for direct B2B communication to offer you our product because we believe you may benefit from our solution. This information is collected based on our legitimate interest, and, if you are further engaging with us for marketing prospecting, you consent to be engaged for marketing purposes.
Sharing your data
We share your data with the following subprocessors:
| Hostinger | Processing and storing ay personal data related to trainings and dashboard | Hostinger is located in Cyprus. The data center of this data is in Germany, EU |
| Brevo | Processing employee data related to names, emails, and tags if emails and courses are opened and followed | Brevo is based in France and processes and stores our data in the Google Cloud in Belgium and OVH in Germany. |
Retaining your data
We delete employee logs and records, and related accounts immediately after the service is terminated.
We retain customer sign-up data for maximum of 7 years after the services has terminated for bookkeeping-related reasons.
Securing your data
We provide GDPR and IT Security trainings, so we feel we are quite strong in our protection of the data. Therefore, we made a list, which gives you some direction. However, note that this list is not cumulative, and subject to change, based on the day to day operations.
- We are very clear in our data collection points and do not want to collect or process more data than we need. We do this by looking carefully to each feature of our service and understand which tool is used, what data is being collected by that tool, and where it is stored and how it is protected.
- We use our trainings effectively also in our own business and go through our weekly checklists for IT security, look monthly at our laptop and device security settings, and to our service platform security checks.
- We have implemented market-standard forms of virus protections, malware protectors, and other relevant firewalls.
- We look at where data is stored and kept by us, as well as by our subprocessors to minimise risks of illegitimate transfers. If there is a transfer necessary we will only do so based on European Standard Contractual Clauses, and update this policy concerning such transfers. At this moment our subprocessors are processing data in Europe.
Your data rights
At any time, you have the right to withdraw consent where you have provided this, object to the processing, restrict to processing, and you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us.
You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes. We will at any time respond as soon as possible, but latest within 30 business days. We will also respond if we cannot answer to your rights and explain why this is the case, for example, because your data is made anonymous, or your employer holds the data about you instead of us.
Cookies
If you visit our login page to access the dashboard, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
No other cookies are collected containing personal data, except for the necessary cookie to display the website to you, which is necessary and for which no consent is needed.
Media
Media on this Site, as well as in our training content, is based on the Canva Content License Agreement, as well as creative commons license. The media does not include any tracking or logs interaction.
Claims & Queries
At any time, if you find we have not responded or informed you properly about your data protection rights, you may file a claim at the Finnish Data Protection Authorities. You may contact us at helsinki@ensuredly.com for any data subject right requests, or other inquiries or questions.