mobile logo

Privacy Policy

We are integrated manufacturing company of complex machinery and equipment.
    • This Privacy Policy sets out the terms and purposes of the processing of Personal Data of Users of the TURULA ENGINEERING Website. By using the Website, the User consents to the processing of the Data provided by him/her in accordance with the procedures set out in this Privacy Policy.
    • The provisions contained in this Privacy Policy have been prepared and Personal Data on this Website is processed in accordance with the requirements of the legal acts of the Republic of Finland and the Regulation.
    • The following concepts are used in this Privacy Policy:
  • Personal data or Data means any information relating to an identified or identifiable natural person (data subject); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, a personal identification number, location data and an online identifier, or to one or more factors specific to the natural person’s physical, physiological, genetic, mental, economic, cultural or social identity.
  • Data Processor means other natural or legal persons who, on behalf of TURULA ENGINEERING, process Personal Data held by TURULA ENGINEERING.
  • Data Processing means any operation or sequence of operations which is performed upon personal data or sets of personal data, whether or not by automated means, such as collection, recording, sorting, organisation, storage, adaptation or alteration, retrieval, access, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination with other data, restriction, erasure or destruction.
  • Data Controller is a legal person Turula Engineering Oy, company code ID0722480-8, registered at Kuvernöörinkatu 2, Outokumpu, Finland, which determines the purposes and means of the processing of Data subjects’ Data.
  • TURULA ENGINEERING means the Data Controller.
  • Website means the website operated by the Data Controller, whose address is
  • Privacy Policy means this Privacy Policy, which sets out the Data Controller’s basic rules for the collection, storage, processing and retention of Personal Data applicable to the Users’ use of the Website.
  • Cookies are small text documents with a unique identification number that are transmitted from the Website to the hard drive of the User’s computer to enable the Data Controller to distinguish the User’s computer and to view the User’s online activity.
  • Regulation means Regulation 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, which entered into force in the European Union on 25 May 2018, and repeals Directive 95/46/EC.
  • User is a natural person who has visited the Website of the Data Controller and has provided his or her Personal Data on the Website.
    • The Data Controller collects and processes the following Personal Data:
      • Name
      • Telephone number
      • E-mail address
      • Additional Data: the Data Controller also collects and processes additional Data about the User, which are not specified in this Privacy Policy, but are voluntarily provided by the User
      • Data collected using Cookies: the IP address, type of login device, type of browser, demographic data, visit statistics, number of visits to the Website, time spent on the Website, and other Data recording the User’s behaviour on the Website
    • The Data Controller processes the Personal Data provided by Users for the following purposes:
      • The Data Controller collects Users’ personal data and uses it to provide the services specified on the Website.
      • To enable the Data Controller to contact and respond to any questions or requests the User may have.
    • The Data Controller shall undertake to comply with the following principles for processing of Personal Data:
      • The processing of data is lawful, fair and transparent (principle of lawfulness, fairness and transparency).
      • The data are collected for specified, explicit and legitimate purposes and are not further processed in a way incompatible with those purposes (purpose limitation principle).
      • The data are adequate, relevant and only necessary for the purposes for which they are processed (principle of data minimisation).
      • The data shall be accurate and, where necessary, kept up-to-date; all reasonable steps shall be taken to ensure that Personal Data which are not accurate in relation to the purposes for which they are processed are erased or rectified without undue delay (principle of accuracy).
      • The data shall be kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the Personal Data are processed (principle of limitation of storage period).
      • The Data shall be processed in such a way as to ensure adequate security of the Personal Data, including protection against unauthorised or unlawful processing of the Data and against accidental loss, destruction or damage (integrity and confidentiality principle).
    • The Data Controller may transfer the User’s Personal Data to third parties only:
      • in the cases provided by laws and when necessary to fulfil the purposes of this Privacy Policy;
      • if this transfer of Data is subject to the User’s separate consent;
      • where this is necessary for the Data Controller to perform the contract concluded with the User and to provide the services properly;
      • The transfer of data shall be obligatory upon request to law enforcement authorities in accordance with the procedure established by the legal acts of the Republic of Finland;
      • in other cases provided for in the Regulation and in the legal acts of the Republic of Finland.
    • The Data Controller shall ensure that Users’ Personal Data will not be sold, provided or otherwise transferred to third parties without lawful basis or used for purposes other than those for which it was collected. The Data Controller may only transfer Data in accordance with this Privacy Policy and the legal acts of the Republic of Finland.
    • The Data Controller shall store the Users’ Personal Data for the period of time specified in the applicable laws and regulations of the Republic of Finland and in this Privacy Policy, but no longer than is necessary to achieve the purposes of this Privacy Policy.
    • If the User contacts TURULA ENGINEERING via the Website or the e-mail address indicated by the Data Controller and provides his/her Personal Data, the Data Controller shall store the Data for a maximum period of 3 (three) years from the date of its last submission to the Data Controller. Thereafter, all Data shall be permanently deleted automatically.
    • The Data Controller uses Cookies to collect Data about the User’s use of the Website and the number of visits.
    • The Data Controller uses the Data received from the Cookies used on the Website for the following purposes:
      • to improve and enhance the Website;
      • to ensure the proper functioning of the Website;
      • to see statistics on the use of the Website;
      • to analyse the User’s browsing habits;
      • to understand and improve the advertising you use.
    • The following Cookies are used on the Website:
Cookie name Description Storage time Type
Google Analytics
_ga Google Analytics, designated to distinguish between users. More information here. 2 years Analytical
_gid Google Analytics cookie to distinguish between users. More information here. 24 hours Analytical
_gat Google Analytics cookie, used to monitor the number of requests made to the website. More information here. 1 minute Analytical


    • Users have the following rights on the Website:
      • to know what Personal Data is being processed and for what purpose;
      • to familiarize with your Personal Data and download it in an easy-to-read format to your computer;
      • to request the rectification or completion of Personal Data if it is inaccurate or no longer relevant;
      • to request the erasure of Personal Data (right to be forgotten);
      • to require the Data Controller to restrict the processing of the User’s Personal Data;
      • to request the transfer of the Data to another controller (right of transfer);
      • to lodge a complaint with the State Data Protection Inspectorate regarding unlawful processing of Personal Data or a Data Breach;
      • to object to the processing of Personal Data where such Personal Data is processed or intended to be processed for direct marketing purposes.
    • The User has the right to submit any requests or instructions related to the processing of the User’s Personal Data to the Data Controller in writing at the contact details (e-mail or postal address) specified in this Privacy Policy.
    • The User shall be required to provide proof of his/her identity or to identify himself/herself by any authorized means of electronic communication with the request, except in the case of a direct written request, where it is possible to identify the User at the time of the request.
    • Upon receipt of a request or instruction from the User, the Data Controller shall, no later than 30 (thirty) days from the date of the request, provide a reply and perform the actions specified in the request or refuse to perform them, stating the reasons for the refusal. If necessary, depending on the complexity and number of requests, the time limit may be extended by a further two months. In this case, the Data Controller shall inform the User of such extension within 30 (thirty) days of receipt of the request, together with the reasons for the delay.
    • The Data Controller shall implement the erasure of Data by encrypting the Personal Data of Users in such a way that it cannot be traced and identified to which person it belongs.
    • The Data Controller shall provide a copy of the Personal Data processed free of charge in electronic or paper format at the User’s choice.
    • If the User notices unlawful processing of his/her Data or in case of a dispute with the Data Controller, he/she shall have the right to apply at any time to the out-of-court dispute resolution authority in Finland – the State Data Protection Inspectorate, in the procedure specified on its website, which can be found here.
    • The Data Controller may, at its sole discretion, change this Privacy Policy. Changes to this Privacy Policy shall be effective as of the “last updated” date indicated. Continued use of the Website after any changes have been made shall constitute the User’s acceptance of such changes.
    • The Data Controller recommends that Users regularly visit the Website to find the most up-to-date version of the Privacy Policy.

The User may contact the Data Controller using the following contacts:

By post – Kuvernöörinkatu 2, Outokumpu, Finland.

By sending an e-mail to

Last updated 11/05/2022