Privacy Policy

Last updated: July 2026

Adesta helps companies prepare for enterprise security reviews. Handling your information carefully isn't a legal afterthought for us — it's the product. This page explains, in plain language, what we collect, why, and what your rights are.

Who we are

Adesta (working name) is an early-stage company operated by its founders in Turku, Finland. For anything related to your data, contact us at hello@adesta.io — a founder answers, not a mailbox.

What we collect, and why

What we deliberately don't do: this website sets no tracking cookies and runs no advertising or analytics scripts. We don't sell or share your data with anyone, and we don't use your documents for anything except the work you asked for.

Where your data is processed

We are based in Finland and process your information within the EU wherever the choice is ours. Our email and form tooling are standard business services; if you want the current list of the specific services we use, ask us and we'll tell you.

How long we keep it

Contact requests and correspondence are kept as long as needed to work with you, and deleted when no longer relevant. Shared questionnaires and documents are deleted on request at any time — one email is enough.

Your rights

Under the GDPR you can ask us at any time to access, correct, or delete the personal data we hold about you, or to stop processing it. Email hello@adesta.io and we'll handle it promptly. You also have the right to lodge a complaint with your data protection authority (in Finland: the Office of the Data Protection Ombudsman).

Changes

If this policy changes, we'll update this page and the date above. Material changes affecting documents you've shared with us will be communicated to you directly.