Oppi AI

Privacy Policy

Oppi AI Oy

Last updated: June 6, 2026

This policy explains how Oppi AI Oy (“we”, “us”) collects and processes personal data on oppi.ai. We are a Finnish company, and our processing is governed primarily by the EU General Data Protection Regulation (GDPR).

1. Who we are

Oppi AI Oy (2931658-6), Jokitie, Lahti, Finland. For privacy matters, contact hello [at] oppi.ai.

2. What we collect on oppi.ai

When you use this website we may collect:

  • Information you submit via the contact form — your name, email, company, and message, used solely to respond to your enquiry and follow up if you ask us to.
  • Analytics via PostHog — a privacy-respecting product-analytics tool (EU region). This includes session events (page views, clicks), device and browser metadata, and a randomised session identifier, used to understand and improve how the site is used. Analytics are collected without your name or email, and we do not use them to build advertising profiles.
  • Basic technical data — standard server and security logs generated when any website is served. We do not use third-party advertising cookies on this site.

3. The WorkProbe product

WorkProbe is our hiring-assessment product, operated on a separate domain. Its data handling — including how candidate assessment data is processed — is covered by its own policy at workprobe.com/privacy.

4. Legal basis for processing

Under GDPR Article 6, we rely on:

  • Consent — when you contact us through the form or by email.
  • Legitimate interest — for essential site security and fraud prevention.

5. Retention

Contact enquiries are retained for 12 months unless you request earlier deletion, after which they are removed. Security logs are kept only as long as needed for their purpose.

6. Sub-processors

We use the following sub-processors: Vercel (website hosting), PostHog (product analytics, EU region), and Resend (transactional email for contact-form messages). Each is bound by a data-processing agreement consistent with GDPR Articles 28 and 32.

7. International transfers

Where data is transferred outside the European Economic Area, we rely on the European Commission's Standard Contractual Clauses (SCCs) and apply additional safeguards consistent with the Schrems II ruling.

8. Your rights under GDPR

You have the right to:

  • Access the personal data we hold about you (Article 15)
  • Request correction of inaccurate data (Article 16)
  • Request erasure of your data (Article 17)
  • Restrict or object to processing (Articles 18 and 21)
  • Receive your data in a portable format (Article 20)
  • Lodge a complaint with a supervisory authority — in Finland, the Office of the Data Protection Ombudsman (tietosuoja.fi)

To exercise any of these rights, email hello [at] oppi.ai.

9. Children

Our services are designed for adult professional use only. We do not knowingly collect personal data from anyone under 18. If you believe we have, contact hello [at] oppi.ai and we will delete it.

10. Changes to this policy

When we make material changes, we update the “Last updated” date at the top of this page.

11. Contact

For any privacy-related question or request, email hello [at] oppi.ai.