We collect survey data on our customers’ experience of working with us and our products and services. We use your responses to improve our products, services, and for other collaboration with our customers.
F‑Secure deploys customer surveys to acquire feedback on security services. We use this feedback to increase our customer understanding and consequently to improve our products and services, as well as the way that we operate on the market.
We prepopulate our survey with the data that we have on you. This typically includes your email address, phone number, name, language, country, and other customer relationship data. We may additionally ask for some more information, such as age and gender, to help categorize responses. In the survey we ask about your experience with us.
We collect this data only where you consent to it by responding to our survey. You do not have to respond to us. However, we would very much appreciate that you do so, so that we know what you value to better serve you.
You can choose to no longer receive this type of survey invitation through the opt-out link in each survey invitation email.
In some cases, we also conduct surveys on our operator partners’ end customers. To effectively approach you as an operator partner’s end customer and to get usable results, the operator provides us with baseline data on intended survey recipients. Such data typically includes email addresses, names, phone numbers, contact IDs, number of activated licenses, details on the offer (e.g. fixed or mobile, number of paid licenses). We share your responses with the operator for analysis and as feedback for future improvements. The operator processes and stores such data according to their practices.
You can opt out from receiving future surveys through the opt-out link in the survey invitation emails.
The Operator is the first point of contact for any additional queries from the survey recipient.
We share our customers’ contact data with our affiliates and subcontractors based on the principles set out under "Transfers" in the F‑Secure privacy statement. We do this to enable our affiliates and subcontractors to contact customers for conducting surveys and to provide visibility of survey results to the relevant affiliates.
This text complements the service-specific retention times. The default rule under the law is that personal data should be deleted or anonymized once it is no longer needed for its purpose.
However, some personal data needs to be nonetheless stored for longer periods of varying lengths due to varying reasons.
Typical reasons why we deviate from the primary retention times include the following examples:
The final removal of your account may be delayed to avoid disturbing the other interactions you have with us. This is the case when you have an F-Secure account (e.g. you have subscribed to our consumer services with your email address) and also i) have an F-Secure Community account or ii) you continue to subscribe to our marketing messages. The F-Secure Community account deletion policy is set out in its terms of service. You can opt out from our marketing messages at any time.
If you have purchased our service via one of our operator partners, account deletion is controlled by said operator partner. Upon the partner notifying us that your subscription has been terminated, F-Secure subsequently removes the account. This removal leads to the deletion or anonymization of any personal data related to the account.
If we have received your information when providing you with technical support, the information is stored as long as the respective support case remains unsolved. Once solved, the information is gradually deleted or anonymized within two years from closing the case.
Analytics data collected with the user’s consent is retained for statistical purposes and is not deleted on removal of personal data and the user account. After termination of the account, analytics data cannot be linked to any personally identifiable user.
Data that does not contain personal data (e.g. security data and aggregate analytical data) is retained as long as such data continues to be useful for the purpose it was collected.
The affiliates and subcontractors agree to process personal data solely as instructed by F‑Secure. They are not allowed to use survey data for any other purposes. They are themselves responsible for cookie practices on their sites.
We apply strict security measures to protect the confidentiality, integrity, and availability of your personal data when transferring, storing, or processing it.
We use physical, administrative, and technical security measures to reduce the risk of loss, misuse, or unauthorized access, disclosure, or modification of your personal data.
All personal data is stored on secure servers operated by F-Secure or our partners with access limited to authorized personnel only.
If you are our consumer customer, your survey responses are stored in our customer registry for six (6) months from the response date of the respective survey – unless you request that it be deleted sooner. The purpose for retention is to ensure enough time for conducting a successful survey and analyzing the data. After this, the results will be anonymized and continue to be stored as aggregate results.
If you are our corporate customer or partner, your survey responses are stored in our customer registry in accordance to its retention rules.
You have the right to the data that we have on you. In particular, you have the following rights to the personal data that we hold on you:
You can exercise your rights via our customer care function. The links to contact us are in the "Contact information" section.
Note that there may be situations where our confidentiality obligations, our right of professional secrecy, and/or our obligations to provide our services (e.g. to your employer) may prohibit us from disclosing or deleting your personal data or otherwise prevent you from exercising your rights. Your above rights are also dependent on the legal grounds based on which we process your personal data.
If you have any complaints about how we process your personal data, or would like further information, please contact us at any time. If you feel that we are not enabling your statutory rights, you have the right to lodge a complaint with a supervisory authority. In most cases, this authority is the Finnish Data Protection Ombudsman (www.tietosuoja.fi).
If you have any questions or concerns about the matters discussed in our privacy policies, please contact:
How to contact us:
Information on the security practices that we employ to keep your data secure.
This is what we mean when we make certain references within this policy.
"Client", "you", refers to a private or corporate user or any other data subjects who buy, register for use, or use our services, whose devices and data traffic are protected by our services, and who may have submitted personally identifiable information to us. This information may have been submitted through the use of our services, websites, telephone, email, registration forms, or other similar channels.
"Personal data" refers to any information on private individuals that is identifiable to them or their family or household members. This information may include names, email and mailing addresses, telephone numbers, billing and account information, and other, more technical information that can be linked to you, your device, or the behavior of either, that we process while providing our services.
"Services" refer to any services or products that are manufactured or distributed by F-Secure, including software, web solutions, tools, and related support services.
"Website" refers to the www.f-secure.com website or any other website that F-Secure hosts or controls, including subsites and browser-based service portals.
This version of the policy clarifies, updates, and replaces the previous version. To continue keeping this document up to date, we will make changes and additions to this from time to time also in the future.
We will publish the changed policy document on our website or at another interaction point where it has previously been made available. If the changes are significant, we may also notify you by other means. Any changes will apply starting from the date that we publish the revised policy document.
Information on your statutory rights and how to contact us.
Information on definitions and change management.