Privacy Policy

Last updated: May 2026

This policy explains how Airmodus Ltd ("Airmodus", "we") processes personal data on the Airmodus website (airmodus.com) and the Airmodus dashboard (dashboard.airmodus.com), in line with the EU General Data Protection Regulation (GDPR) and the Finnish Data Protection Act.

1. Data controller

Airmodus Ltd
Erik Palmenin aukio 1, FI-00560 Helsinki, Finland
Privacy contact: info.aerosols@envea.global

2. What we collect and why

2.1 Marketing site (airmodus.com)

• Quote / contact form: name, email, organisation, message content. Used to respond to your enquiry. Legal basis: Art. 6(1)(b) - steps prior to entering a contract; or 6(1)(f) - legitimate interest in answering enquiries.
• Server logs: our edge server records request paths, status codes, user agent, and timestamps. Client IP addresses are stripped before logs are written. Legal basis: Art. 6(1)(f) - legitimate interest in operating and securing the site.

2.2 Dashboard (dashboard.airmodus.com)

• Account data: email, name, role, organisation, hashed password, last-login timestamp, and an optional Signal/Matrix ID for chat notifications. Legal basis: Art. 6(1)(b) - performance of the contract under which we provide the dashboard.
• Authentication artefacts: session cookie, refresh tokens, OAuth authorisation codes. Strictly necessary for the service.
• Operational data: instrument measurements, device logs, workflows you author, action history, and service-job records. These describe the instruments your organisation owns and operates; they typically contain no personal data, but where they record an operator (for example, who acknowledged an alarm) they are linked to your user ID. Legal basis: Art. 6(1)(b).
• Assistant chat content: when you use the in-product assistant, your messages and the model's responses are stored to support the conversation, generate audit trails, and improve the knowledge base. Legal basis: Art. 6(1)(b) for service-delivery; 6(1)(f) for service improvement.

2.3 Embedded chat widget (on airmodus.com)

• Conversation text and a per-session identifier. No login is required and we do not link conversations to identified individuals. IP addresses are used in memory for rate-limiting only and are not written to disk. Please do not share personal information in the widget. Legal basis: Art. 6(1)(f) - legitimate interest in providing pre-sales support.

2.4 Email and Signal/Matrix support channels

• If you email a registered support address or message us via Signal/Matrix, the message body and metadata are processed to answer you. The same retention as assistant chat applies.

3. Cookies and similar technologies

The dashboard uses one strictly necessary cookie, access_token, to keep you signed in. It is HTTP-only, Secure (in production), SameSite=Lax. The OAuth flow may set a short-lived consent cookie. The marketing site and the embedded chat widget set no cookies. We do not use analytics cookies, advertising cookies, or third-party trackers.

4. Recipients and processors

We share personal data only with the processors we need to operate the service. All act on our instructions under a data-processing agreement (Art. 28 GDPR).

• Hetzner Online GmbH (Germany / Finland) - hosting of the dashboard, database, and edge proxy.
• Cloudflare, Inc. - DNS and tunnelling for our administrative access. EU Standard Contractual Clauses in place.
• Google LLC / Google Workspace - inbound and outbound email delivery for support correspondence. EU SCCs in place.
• Tinfoil, Inc. (United States) - confidential-compute LLM inference for the assistant. Conversations are processed inside an attested secure enclave; Tinfoil's terms prohibit retention beyond the request. EU SCCs in place.
• Fallback inference provider - if Tinfoil is unavailable we may route a request to an OpenAI-compatible fallback endpoint operated by us or by NEAR AI (TEE-based). Disclosed to you here so you can opt out by not using the assistant.
• Self-hosted Matrix homeserver and mautrix-signal bridge - operated by us for the Signal/Matrix support channel. No third party.

We do not sell or rent personal data and we do not transfer it to other recipients for their own purposes.

5. International transfers

Where a processor is established outside the EEA (currently Tinfoil, Cloudflare, Google), the transfer is covered by the European Commission's Standard Contractual Clauses, supplemented by the technical safeguards described above (TLS in transit, confidential-compute enclaves for assistant content).

6. Retention

• Dashboard accounts: kept while your account is active. Inactive members of an organisation (no login for 12 months) are automatically removed.
• Instrument measurements and device logs: 2 years.
• Assistant / widget / email chat content: 90 days.
• Reviewed account-request submissions: 180 days after the decision; pending requests are kept until reviewed.
• OAuth authorisation codes: deleted on use or after 10 minutes, whichever is sooner.
• Server access logs: rotated by our hosting environment; do not contain client IPs.

7. Your rights

Under GDPR Articles 15-22 you have the right to:

• Access the personal data we hold about you (Art. 15).
• Request correction of inaccurate data (Art. 16).
• Request erasure of your data (Art. 17). Logged-in dashboard users can delete their own account from Settings → Delete account; otherwise contact us.
• Restrict or object to processing (Art. 18, 21).
• Receive a portable copy of the data you provided (Art. 20). Email us and we will send you a machine-readable export within 30 days.
• Withdraw consent where processing is based on consent (Art. 7).

To exercise any of these rights, email info.aerosols@envea.global. We respond within 30 days.

8. Automated decision-making

The assistant uses a large language model to answer your questions. It does not make decisions that have legal or similarly significant effects on you. Any change it proposes to your data (knowledge base edits, instrument commands) requires explicit human approval before it is applied.

9. Security

Passwords are stored as bcrypt hashes. Session cookies are HTTP-only and transmitted over HTTPS. Production traffic is terminated by our edge proxy with modern TLS. Database backups are encrypted at rest. We follow the principle of least privilege for staff access and review privileged access on a regular basis.

10. Complaints

If you believe we have processed your data unlawfully, you may lodge a complaint with the Finnish Office of the Data Protection Ombudsman (Tietosuojavaltuutettu): tietosuoja.fi. You may also contact the supervisory authority in your country of residence.

11. Changes to this policy

If we change how we process personal data we will update this page and adjust the "Last updated" date at the top. Material changes affecting registered users will additionally be notified by email.