Privacy Policy

1. Data Controller

ANGON AS is the data controller responsible for your personal data.

Contact Information:

• Address: Klingenberggt. 7b, Oslo, Norway
• Phone: (+47) 22 70 00 60
• Email: Available through our Contact Form

2. Information We Collect

We collect and process the following categories of personal data:

• Contact Information: Name, email address, phone number, and company name when you submit forms on our website or contact us
• Account Information: Username, password (encrypted), and account preferences when you create an account to use our Service
• Usage Data: Information about how you interact with our website and Service, including pages visited, features used, and time spent
• Technical Data: IP address, browser type, device information, and operating system (collected automatically for security and functionality purposes)
• Content Data: Forms, workflows, and data you create or submit through our Service ("Your Content")

3. How We Use Your Personal Data

We use your personal data for the following purposes:

• Service Provision: To provide, maintain, and improve our forms and workflow automation services
• Account Management: To create and manage your account, authenticate your identity, and provide customer support
• Communication: To respond to your inquiries, send service-related notifications, and provide customer support
• Legal Compliance: To comply with legal obligations, enforce our Terms of Service, and protect our rights and the rights of our users
• Security: To detect, prevent, and address security issues, fraud, and technical problems
• Service Improvement: To analyze usage patterns and improve our Service functionality and user experience

4. Legal Basis for Processing

We process your personal data based on the following legal grounds under General Data Protection Regulation:

• Contract Performance: Processing necessary to perform our contract with you (providing the Service)
• Legitimate Interests: Processing necessary for our legitimate interests, such as security, fraud prevention, and service improvement
• Legal Obligation: Processing necessary to comply with legal obligations
• Consent: Where you have given explicit consent for specific processing activities

5. Cookies and Tracking Technologies

We do not use cookies or similar tracking technologies on our website. Our website operates without cookies, meaning we do not place any tracking files on your device or track your browsing behavior across other websites.

We may collect technical information (such as IP address and browser type) automatically through server logs for security and functionality purposes, but this does not involve cookies or persistent tracking.

6. Data Sharing and Disclosure

We do not sell, rent, or share your personal data with third parties for their marketing purposes.

We may share your personal data only in the following limited circumstances:

• Service Providers: With trusted service providers who assist us in operating our Service (e.g., hosting providers, payment processors) under strict confidentiality agreements
• Legal Requirements: When required by law, court order, or government regulation, or to protect our rights, property, or safety
• Business Transfers: In connection with a merger, acquisition, or sale of assets, with notice to affected users
• With Your Consent: When you have explicitly consented to such sharing

All third parties with whom we share data are contractually obligated to protect your personal data and use it only for the purposes we specify.

7. International Data Transfers

Your personal data is primarily processed and stored within the European Economic Area (EEA). If we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions by the European Commission
• Other legally recognized transfer mechanisms

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

• Account Data: Retained for the duration of your account and for a reasonable period after account closure for legal and business purposes
• Your Content: Retained according to your account settings and our Terms of Service
• Contact Information: Retained until you request deletion or withdraw consent
• Legal Records: Retained as required by applicable laws and regulations

Upon request, we will delete your personal data unless we are required to retain it for legal reasons.

9. Your Rights Under General Data Protection Regulation

As a data subject, you have the following rights regarding your personal data:

• Right of Access: You can request a copy of the personal data we hold about you
• Right to Rectification: You can request correction of inaccurate or incomplete personal data
• Right to Erasure: You can request deletion of your personal data ("right to be forgotten")
• Right to Restrict Processing: You can request that we limit how we use your personal data
• Right to Data Portability: You can request a copy of your data in a structured, machine-readable format
• Right to Object: You can object to processing based on legitimate interests
• Right to Withdraw Consent: Where processing is based on consent, you can withdraw it at any time
• Right to Lodge a Complaint: You can file a complaint with the Norwegian Data Protection Authority (Datatilsynet) or your local supervisory authority

To exercise any of these rights, please contact us using our Contact Form. We will respond to your request within one month.

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction, including:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and authentication mechanisms
• Secure hosting infrastructure
• Employee training on data protection

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

11. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately, and we will delete such information.

12. Your Content and Customer Data

When you use our Service to create forms and collect data from others ("Your Content"), you are the data controller for that data. You are responsible for:

• Obtaining necessary consents from data subjects
• Providing appropriate privacy notices
• Complying with applicable data protection laws (including General Data Protection Regulation)
• Responding to data subject requests

We act as a data processor for Your Content and process it only according to your instructions and our Terms of Service. Our processing of Your Content is governed by our Data Processing Addendum, which forms part of our Terms of Service.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by:

• Posting the updated policy on this page
• Updating the "Version" date at the top
• Sending an email notification for significant changes (if you have an account)

Your continued use of our Service after changes become effective constitutes acceptance of the updated Privacy Policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Through our Contact Form
• By phone: (+47) 22 70 00 60
• By mail: ANGON AS, P.O. box 1208 Vika, N-0110 Oslo, Norway

For complaints about our data processing, you may also contact the Norwegian Data Protection Authority:

• Datatilsynet
• Website: www.datatilsynet.no

15. Governing Law

This Privacy Policy is governed by Norwegian law and the General Data Protection Regulation. Any disputes arising from this Privacy Policy will be subject to the jurisdiction of the courts of Oslo, Norway.