Data and Privacy Policies

At Future Objects AI, we are committed to building a better future through responsible and ethical artificial intelligence and blockchain solutions. This commitment extends to ensuring the highest standards of legal compliance and data protection for our users, particularly those within the European Union.

This page outlines our approach to data privacy, AI governance, and adherence to relevant EU legislation, including the General Data Protection Regulation (GDPR), the ePrivacy Directive, and the Artificial Intelligence Act (EU AI Act).

1. Our Commitment to Data Privacy (GDPR Compliance)

Future Objects AI respects your right to privacy and is dedicated to protecting your personal data. We comply with the General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) regarding the collection, use, and retention of personal information from individuals in the European Economic Area (EEA).

Key Principles and Practices:

  • Lawfulness, Fairness, and Transparency: We process your personal data lawfully, fairly, and in a transparent manner. We will always inform you about how your data is being used.
  • Purpose Limitation: We collect and process personal data only for specified, explicit, and legitimate purposes, and do not further process it in a manner that is incompatible with those purposes.
  • Data Minimisation: We collect only the personal data that is necessary for the stated purpose. We avoid collecting excessive data.
  • Accuracy: We take all reasonable steps to ensure that personal data is accurate and, where necessary, kept up to date.
  • Storage Limitation: We retain personal data for no longer than is necessary for the purposes for which it is processed.
  • Integrity and Confidentiality (Security): We implement appropriate technical and organisational measures to ensure the security of your personal data, protecting it against unauthorised or unlawful processing and against accidental loss, destruction, or damage.
  • Accountability: We are responsible for, and able to demonstrate compliance with, the GDPR.

Your Rights Under GDPR:

As a data subject in the EU, you have the following rights concerning your personal data:

  • Right to Information/Access: You have the right to know what personal data we hold about you and to request access to it.
  • Right to Rectification: You have the right to request that inaccurate or incomplete personal data about you is corrected.
  • Right to Erasure (“Right to be Forgotten”): In certain circumstances, you have the right to request the deletion of your personal data. Please note that data written to a blockchain is immutable and cannot be deleted or altered. We structure our solutions to avoid storing personal identifiable information (PII) directly on the blockchain. If your personal data is hash-linked to a blockchain transaction, while the off-chain data can be deleted upon request, the on-chain hash/record may remain permanently as part of the immutable ledger.
  • Right to Restriction of Processing: You have the right to request that we limit the way we use your personal data.
  • Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.
  • Right to Object: You have the right to object to the processing of your personal data in certain situations, including for direct marketing.
  • Rights in relation to automated decision-making and profiling: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you, unless certain conditions are met.

How We Handle Your Data:

  • Website Usage Data: We may collect anonymous analytical data to understand website traffic and improve user experience. Where this involves cookies, we adhere to the ePrivacy Directive (see Section 2).
  • Contact Forms/Inquiries: If you contact us through our website, we will collect the personal data you provide (e.g., name, email, company) to respond to your inquiry. This data will be used solely for that purpose.
  • Service-Specific Data: If you use our AI or blockchain solutions, the specific data collected and processed will be detailed in the terms of service or a dedicated data processing addendum relevant to that service. We design our systems with “privacy by design” and “privacy by default” principles.

International Data Transfers We are based in Finland. However, we may transfer your personal data to service providers or partners located outside the European Economic Area (EEA) for processing. When we do so, we ensure appropriate safeguards are in place in accordance with GDPR requirements, such as:

Adequacy Decisions: Transferring to countries recognized by the EU Commission as providing adequate protection.
Standard Contractual Clauses (SCCs): Using EU-approved contracts that guarantee the same level of protection as in the EEA.

For any GDPR-related inquiries or to exercise your rights, please contact us at support@futureobjects.io.

2. Cookie Policy (ePrivacy Directive Compliance)

Our website uses cookies and similar technologies to enhance your Browse experience, analyze site usage, and for marketing purposes. We comply with the ePrivacy Directive (Directive 2002/58/EC as amended), often referred to as the “Cookie Law.”

What are Cookies?
Cookies are small text files placed on your device by websites that you visit. They are widely used to make websites work more efficiently, as well as to provide information to the site owners.

Your Consent:
We will obtain your explicit consent before placing non-essential cookies on your device. When you first visit our website, you will be presented with a clear cookie banner that informs you about our use of cookies and allows you to:

  • Accept All Cookies: Agree to the use of all cookies.
  • Reject All Non-Essential Cookies: Only allow strictly necessary cookies.
  • Manage Preferences: Select which categories of cookies you wish to allow.

Types of Cookies We May Use:

  • Strictly Necessary Cookies: These are essential for the website to function correctly (e.g., remembering login details, shopping cart contents). They do not require your consent.
  • Analytical/Performance Cookies: These help us understand how visitors interact with our website by collecting information anonymously. This enables us to improve our website’s performance.
  • Functionality Cookies: These allow the website to remember choices you make (e.g., your username, language, or region) and provide enhanced, more personal features.
  • Targeting/Advertising Cookies: These are used to deliver advertisements more relevant to you and your interests. They may also be used to limit the number of times you see an advertisement and measure the effectiveness of advertising campaigns.

You can change your cookie preferences at any time by clicking on the “Cookie Settings” link typically found in our website footer.

3. Artificial Intelligence Act (EU AI Act) Compliance

Future Objects AI is committed to developing and deploying AI systems that are safe, transparent, non-discriminatory, and respectful of fundamental rights, in line with the ambitious objectives of the EU AI Act (Regulation (EU) 2024/1689).

The EU AI Act takes a risk-based approach, categorizing AI systems into different risk levels. Our obligations vary depending on the risk classification of our AI systems.

Our Approach to AI Governance:

  • Risk Assessment and Mitigation: We conduct thorough risk assessments for all our AI systems, particularly identifying and mitigating potential risks to health, safety, and fundamental rights. We implement robust risk management systems throughout the AI system’s lifecycle.
  • Transparency and Explainability: We strive for transparency in our AI systems. For AI systems that interact with users, we will inform users that they are interacting with an AI system. For generative AI, we will implement mechanisms to clearly label AI-generated content (e.g., text, images, audio, video).
  • Data Governance and Quality: We implement rigorous data governance practices to ensure that the data used for training, validation, and testing our AI models is of high quality, relevant, representative, and free from biases where technically feasible. We ensure compliance with EU copyright law for training data.
  • Human Oversight: We design our AI systems to allow for appropriate human oversight, ensuring that human operators can monitor, intervene in, and override automated decisions where necessary, particularly for high-risk applications.
  • Robustness and Accuracy: We implement technical measures to ensure our AI systems achieve an appropriate level of accuracy, robustness, and cybersecurity, minimizing errors and ensuring resilience against attacks.
  • Documentation and Record-Keeping: We maintain comprehensive technical documentation of our AI systems, including system design specifications, capabilities, limitations, and details of our risk management and data governance processes. We keep logs of AI system activity to ensure traceability.

Specific Considerations for Future Objects AI Services:
Depending on the nature of the AI solutions we provide, we may fall into categories such as:

  • Providers of General-Purpose AI (GPAI) Models: If we offer GPAI models (like large language models), we will comply with specific transparency requirements, including providing summaries of the copyrighted data used for training and ensuring the model is designed to prevent the generation of illegal content.
  • Providers of High-Risk AI Systems: If any of our solutions are classified as “high-risk” under the AI Act (e.g., certain applications in critical infrastructure, employment, or justice), we will adhere to stringent pre-market conformity assessments, quality management systems, post-market monitoring, and other rigorous compliance obligations. We will ensure appropriate human oversight and clear information for deployers.
  • Limited Risk AI Systems: For AI systems with limited risks (e.g., chatbots not classified as high-risk), we will ensure specific transparency obligations are met, such as informing users they are interacting with an AI.
  • Prohibited AI Practices: We strictly avoid the development or deployment of AI systems that are explicitly prohibited by the EU AI Act, such as those involving manipulative techniques that materially distort human behaviour or social scoring.
  • User Responsibilities & Content Ownership: While we adhere to the EU AI Act, users are responsible for the data they input into our AI systems. You confirm that you have the legal right to use any data submitted for processing. Future Objects AI is not liable for copyright infringements or privacy violations resulting from user-provided datasets or prompts.

We continuously monitor the evolving regulatory landscape of the EU AI Act and will update our policies and practices as new guidelines and implementing acts come into effect.

Our goal is to ensure our innovative AI solutions are developed and deployed responsibly, contributing positively to society. Governing Law and Jurisdiction This policy and any disputes arising out of it shall be governed by and construed in accordance with the laws of Finland, without regard to its conflict of law principles.

4. Contact Us

For any questions regarding our legal policies, data privacy practices, or EU compliance, please do not hesitate to contact us:

Future Objects Oy.
Taavi Kuisma.
Vellamonkatu 17, 55100 Imatra.
support@futureobjects.io

Version 1.1 | 2026
Updated 12.1.2026