Privacy Policy
This Privacy Policy (“Privacy Policy”) is meant to help you understand what information we collect, why we collect it, and how you can update, manage, export, and delete your information.
1. Data Controller
This document describes the Privacy Policy of MOICON DIGITAL TWIN AS, headquartered in Gjøvik, Storgata 9, registered in the Legal Entity Register (Brønnøysundregisteret) with organisation number 932950545.
Its purpose is to define the rules on how we process and use personal data and information from identified or identifiable users of any websites or services administered by Moicon, including company or organization representatives. It also describes the rights of natural persons with regard to the personal data they have provided.
Moicon’s primary principle:
- Under no circumstances will Moicon sell or disclose personal or address data of users/clients to any third parties other than processors and sub-processors necessary to provide our services.
- Please read this Privacy Policy carefully. By accessing our website and sending us personal data, you accept its terms. When leaving our pages (e.g., navigating to another domain), this Privacy Policy does not apply. Moicon is not responsible for privacy rules applicable on websites operated by other entities.
2. Definitions
In these Terms, the terms starting with a capital letter shall have the following meaning:
- Controller – Moicon Digital Twin AS, Storgata 9, 2815 Gjøvik, Norway.
- Data Subject – identified or identifiable natural person visiting the Website, ordering Services, or using the Moicon Software.
- Website – any website maintained by Moicon.
- Personal Data – any information relating to the Data Subject.
- Agreement – service agreement for Moicon Software Services or Website Services.
- Services – services provided by Moicon to Data Subjects.
- Account – registered client profile with access to Moicon Software Services.
- Payment Operator – authorized payment institutions cooperating with Moicon.
- GDPR – Regulation (EU) 2016/679 (General Data Protection Regulation).
3. Processing and Protection of Personal Data
3.1 Collection and Processing
We collect personal data necessary to provide services and to ensure proper functionality of our Website.
Personal data may be obtained:
- Through forms (contact, demo requests, applications).
- By direct contact (email, phone, fax).
- Through telephone conversations with our representatives (with prior notice if recorded).
- Automatically via traffic data (IP addresses, visited URLs, session statistics).
- Through cookies and similar technologies (see Section 4).
3.2 Purpose and Legal Grounds
We process data for the following purposes:
- Providing Services / Agreements (Art. 6(1)(b) GDPR).
- Legal compliance (e.g., tax/accounting obligations, Art. 6(1)(c) GDPR).
- Communication with clients and prospects (legitimate interest, Art. 6(1)(f) GDPR).
- Analytics & statistics to improve our services (legitimate interest, Art. 6(1)(f) GDPR).
- Automatically via traffic data (IP addresses, visited URLs, session statistics).
- Marketing purposes (based on consent, Art. 6(1)(a) GDPR, or legitimate interest for direct marketing, Art. 6(1)(f) GDPR)
3.3 Keeping Your Data Secure
At Moicon, we value your privacy and take strong precautions:
- Uploaded files are deleted automatically after 30 days.
- Files are encrypted at rest and in transit.
- Data is hosted in Europe (Stockholm).
- We use AES 256-bit encryption, HTTPS, Cloudflare WAF/DDoS protection, firewalls, and isolated environments for testing/production.
- Backups are encrypted and tested regularly.
- Payment data is handled by PCI DSS Level 1 compliant providers – Moicon never stores your credit card details.
3.4 Recipients of Data
Personal data may be processed by trusted service providers in the areas of IT, finance, consulting, legal, and cloud infrastructure, always under proper data processing agreements.
3.5 Data Retention
- Website Services – as long as provided.
- Moicon Software Services – as long as provided.
- Paid Services – until payment is settled + 5 years for accounting.
- Communication data – until resolved.
- Analytical/statistical logs – 30 days.
- Marketing – until consent is withdrawn or objection raised.
After these periods, data is deleted or anonymised.
4. Cookies and Tracking Technologies
Moicon uses cookies and tracking technologies only where they are strictly necessary for core site function (e.g., session management, security). The sole exception is for embedded video content from YouTube, which requires prior explicit consent.
5. Marketing Communication
If you register for a webinar, download materials, or subscribe to our newsletter, we will process your personal data (such as name, email address, company, and role) to send you information about Moicon products, services, and events.
You may unsubscribe at any time via the link in our emails.
6. Data Subject Rights
You have the right to:
- Access, rectify, or erase your personal data.
- Restrict or object to processing.
- Withdraw consent at any time (without affecting past processing).
- Request portability of your data.
- Lodge a complaint with a supervisory authority.
Requests can be made with our website's contact form or by mail to our company address.
7. Changes to this Policy
This Privacy Policy may be updated to reflect changes in laws or Moicon’s practices. Updates will be published on our Website and apply immediately upon posting.