Privacy Policy
LAST_UPDATED: 2026-02-23
1. Data Controller
In accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR), the data controller responsible for processing your personal information is Tekopas Oy, located in Oulu, Finland.
2. Data Telemetry Collection
When you initiate contact via our Secure Uplink, we collect the minimum required telemetry to establish communications: your organization name, operator name, email address, and specific mission parameters.
3. Sandbox Data Volatility
Any prompt injections, system architectures, or proprietary data shared during our interactive modules or custom white-label deployments are treated as highly classified. Training sandboxes are air-gapped from our core systems and completely wiped upon module completion. Anonymized metadata regarding successful attack vectors may be retained exclusively for internal security research.
4. Third-Party Intelligence
We do not sell, trade, or otherwise transfer your personally identifiable information (PII) or corporate security vulnerabilities to outside parties. Trusted infrastructure partners who assist in operating our platform are bound by strict non-disclosure and data processing agreements.
5. Data Retention Protocols
We retain your contact and organizational data only for the duration required to fulfill our operational and business objectives, or as mandated by Finnish statutory requirements.
6. Operator Rights (GDPR)
You maintain full sovereignty over your personal data. You possess the right to request access to, rectification of, or complete erasure ("right to be forgotten") of your information from our active databases. Additionally, you may request restrictions on how your data is processed.
7. Communication Channels
To exercise your data privacy rights or for any inquiries regarding our security and privacy protocols, please transmit your request to the HackOulu team via our designated compliance channel: [email protected].