Privacy policy

Last updated: November 1st, 2023

While our customers are companies, employees and other individuals related to our customers will interact with the service and thereby submit personal information. In this privacy policy (the "Privacy policy"), we explain which personal information we collect, why we collect it, and how we use the information.

1. Information we collect and how we use it

Information you provide to us

When you register an account, you register your name and your e-mail. Except from such account information, you shall not submit to us, use the service to collect, or otherwise use the service so that we receive, information that directly or indirectly identifies any natural person.

The personal data you submit when registering your account will be used only to administer the customer relationship, such allowing you to place orders, register devices, sending invoices and providing service notices. Unless you notify us that you do not want such information, we will also use your information to send you electronic marketing relating to the Service.

When you sign up to receive our newsletter, you register your e-mail address. We will use the e-mail address to send newsletters as requested. You may withdraw your consent at any time.

We need to process the above information in order to provide the service as requested by you.

Information we register when the service is provided

A list of specific data we collect to provide you a specific product or service, can be found at under that product's "Data collection, security and privacy" section.

This information is necessary for us to be able to provide our services.

The information is also used (i) to better understand how our users access and use the service, (ii) to better respond to users' preferences and wishes, (iii) to improve the service as a whole, and (iv) for statistical and analytical purposes. Our processing of your data for these purposes is based on us having a legitimate interest in the processing. The legitimate interest we pursue is the fact that we need to continuously update and improve the service to stay competitive and to provide the best possible user experience.

Processing of personal data based on your consent

We will not process your personal data for any other purpose unless you have consented to such processing by way of a declaration that you consent to such processing.

2. How we share your personal information

We only share your personal information with others if it is necessary to perform the service or we should be bound to such sharing by law, regulation or legal process.

Any sharing in addition to such sharing as mentioned in this paragraph requires your consent. This does not prevent us from using processors to process personal information on our behalf (subject to a data processing agreement). Some of our processors are located outside the EU/EEA. The processing of personal data by such processors is safeguarded by entry into of the EU's standard contractual clauses for transfer of personal data to third countries. Processors located in the USA may alternatively be EU-US Data Privacy Framework Principles certified.

3. Data retention

Your personal data will not be retained by us for a period which is longer than necessary for the purpose for which the data was collected. This means that we will delete your data when they are no longer required in order for us to provide the service or we otherwise need the data, for example for invoicing or bookkeeping purposes.

4. Access, correction and deletion of personal data

You have the right to access the personal data we have registered about you. The information you have registered is visible on your account. If any of the information we have registered about you is incorrect, we recommend you to make changes to your account. There, you may also delete your personal information unless the information is necessary for us to provide the service. You may also withdraw any consents you have given at any time.

5. Cookies

We use cookies and other web technologies to enhance the user experience and make the most effective use of the service. A cookie is a piece of data sent from a web server when you access the service and stored locally on your browser. The purpose is to use cookies to maintain data related to user preferences and account settings, as well as to evaluate and compile statistics about user activity. Most browsers accept cookies as default. You may decline your use at any time by making changes to the browser settings to not accept cookies. However, note that some parts of the service may not work properly if cookies are removed.

6. Information security

We have implemented organizational and technical procedures and measures that will ensure that your personal information is not compromised, not unintentionally changed, and available when required.

7. Changes to the privacy statement

We will occasionally update this privacy statement to reflect any changes to the service. In such cases, a changed privacy statement will be published on https://northern.tech/

In case of major changes, we will notify you directly in the appropriate manner, either via the service or by email.

8. Controller and contact information

Northern.tech AS, organization number 892 847 282, Gaustadalléen 21, 0349 Oslo, Norway, is the controller.

We can be contacted by mail: legal@northern.tech

You are entitled to lodge a complaint with the Norwegian Data Inspectorate if you believe we violate your privacy rights, but you should always contact us first so that we can try to resolve the issue.

EU-US Data Privacy Framework

Northern.tech complies with the EU-US Data Privacy Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States. Northern.tech has certified to the Department of Commerce that it adheres to the Data Privacy Framework. Northern.tech is subject to the investigatory and enforcement powers of the FTC. If there is any conflict between the terms in this privacy policy and the Data Privacy Framework, the Data Privacy Framework shall govern. To learn more about the Data Privacy Framework program, and to view our certification, please visit https://www.dataprivacyframework.gov/.

Northern.tech has further committed to cooperate with the panel established by the EU data protection authorities (DPAs) with regard to unresolved Data Privacy Framework complaints concerning data transferred from the EU. Finally, as a last resort and in limited situations, EU individuals may seek redress from the Data Privacy Framework Panel, a binding arbitration mechanism.

In cases of onward transfer of personal information to third parties of data of EU individuals received pursuant to the EU-US Data Privacy Framework, Northern.tech remains liable.