Which services are covered?

This policy covers the following websites are services :

• 10x-tech.com
• IoTools App

How we collect personal data

The data we collect about you depends on which of our webpages you use, as well as the information provided to us upon your purchases, registrations and in other contexts. We collect the data provided by you when you register for our services, subscribe to our news feeds and blogs, complete forms or contact us directly. Information is automatically collected when you use our digital channels, such as our web pages.

Categories of data processed

We may process personal information of the following categories:

• Basic information, such as name, employer, title and contact information that you have submitted to us.
• Information about your customer relationship with us and any contact with our support services.
• Information generated by the use of our webpages, such as page visits and downloaded files. You can read more about this in our marketing and cookie policy.
• Potentially other information processed based on your consent. In such cases, you will receive specific descriptions of what information is processed and what it is used for.

Our web pages and digital channels are not meant for nor targeting children under 13 years of age. We do not deliberately process information about minors. If we, to your knowledge are processing information about children under 13 years of age, you may contact us, and we will delete the information from our systems.

Pupose and basis for personal information processing

We process personal data through our webpages, Customer Relations Management system (CRM), Enterprise Resource Planning system (ERP) and other digital systems. This is done for the following purposes:

• Providing services: We process personal information to provide and deliver services to you. For example, we process your information in relation to identification of customers, invoicing and payments, customer service, technical support and customer complaint handling. Such processing is neccesarry to fulfil our agreements with you, and/or to provide services at your request.
• Development and analysis: We process personal data to improve our services and digital channels. Such processing is based on legitimate interest.
• Sales and marketing: We use both anonymized and personal data for marketing purposes. These activities include direct marketing, such as:
  • defining target groups; based on consent (if required)
  • adapting and targeting the marketing; based on consent (if required)
  • distribution of newsletters and other forms of direct marketing; based on consent or another applicable legal basis; and
  • marketing analysis and customer satisfaction surveys; based on consent and/or legitimate interest.
• Information security: We may process personal information to ensure the security of our systems, and to detect and prevent certain types of misuse of our services. Such processing is based on a legitimate interest.
• Legal compliance: We process personal information to meet legislative requirements, for example in relation to accounting and providing information to authorities when required by law. Such processing is based on compliance with our legal obligations.
• Collection and disputes: If our agreement terminates, or if other bases for processing of your personal data therefore lapses and/or if a dispute has arisen between us, the following applies: We do not need to delete your data if we may need it to process it for the purpose of collection of any outstanding amount and/or for the purpose of dispute handling (see GDPR art. 17 (3) e).
• Other purposes to which you have given consent: We may process your personal information for any other purpose to which you have given us your consent.

Data protection

We value your personal data as we would our own and highly prioritize the protection of your personal data, and continuously work to safeguard it and other confidential information. Our security measures include physical, technical, and organizational measures, use of protective software, IT infrastructure, internal and external networks and technical facilities, as well as internal policies and access control.

Disclosure of personal data to others

We may transfer information in the following situations:

• In statutory cases, for instance by orders of courts of law or public authorities, according to predefined procedures.
• In case of transfer of business, for example as part of a merger, acquisition, sale of our assets or transfer of our services to another company. In this case, you will be notified by email or through our webpages about changes in ownership, use of your personal information, and the choices you may have regarding your personal information.

Disclosure of personal data to others

General

We only store your personal data for as long as necessary and for the purpose the data was collected, unless a legal requirement demands a longer storage period, or if you have given us your consent to extended storage.

Your personal information will be processed for as long as you have an active relationship with us or our digital channels, or until you request us to delete the information in our systems. We consider a relationship with us as:

1. being a customer or customer contact;
2. being registered as a user in any of our web services;
3. having given consent to receive marketing material or other notifications from us;
4. having actively asked to be contacted by us via social media, electronic messages, electronic forms or on exhibitions, seminars, etc.;
5. having requested to follow us on social media or another advertising platform, or
6. been active in our digital channels after giving your consent.

The relationship to us is defined as ‘active’ as long as:

• activity has been recorded in our digital channels within the last 24 months,
• your contact information or user profile is needed to maintain the relationship to you or your company, or
• you have not explicitly withdrawn your consent.

Storage of anonymized information is not subject to such limitations or demands, as anonymized information is not considered personal data. We work to ensure that personal information and other customer information is at all times updated and correct, and that we do not store information that is unrelated to the stated purposes for processing of personal information.

8.2 10x-tech.com

Name	Purpose	Optional?	Storage time	Recipient of data
Logging account (Email address)	Access and security	No	10x-tech deletes as soon as account is deleted.	10x-tech
Customer data (Use of cloud service)	To provide the customer's service, as set by customer	Yes	As decided by customer.	10x-tech Others as decided by customer

IoTools

Name	Purpose	Optional?	Storage time	Recipient of data
Logging account (Email address)	Access and security	No	10x-tech deletes as soon as account is deleted.	10x-tech
Customer data (Use of repository etc.)	Store software code	Yes	As decided by customer.	10x-tech Others as decided by customer