PRIVACY POLICY

Nordsnipe AB ("NRDSNIPE”, "we", "us", "our")


1. INTRODUCTION

We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how NRDSNIPE collects, uses, shares, stores, and otherwise processes personal data as a data controller when you use NRDSNIPE’s website, software, customer portal, and related services (collectively, the "Services").

This Privacy Policy should be read together with other terms and forms provided to you that may apply to a specific interaction or Service. Capitalized terms used herein and not otherwise defined shall have the meanings set out the End User License Agreement, as applicable.


2. INFORMATION WE COLLECT

NRDSNIPE collects different types of personal data to provide, administer, secure, support, and improve the Services. NRDSNIPE generally collects personal data directly from you, from your use of the Services, from your communications with us, and from payment or licensing flows connected to your subscription. 

A. Account & Billing Information (Personal Data)

When you purchase subscription(s), you are granted access to NRDSNIPE's customer portal, or communicate with us, NRDSNIPE collects:

  • Account Credentials: username and encrypted password for logging into the Customer Portal and validating your software license.

  • Contact Information: name, email address, and company name.

  • VAT/Tax information: VAT number, tax identification number, and related information where required for business customers, to comply with tax regulations.

  • Support information: the contents of your communications with NRDSNIPE, support requests, and troubleshooting information that you choose to share with NRDSNIPE.

B. Telemetry & Usage Data (Technical Data)

NRDSNIPE’s Software collects and uses telemetry and usage data to operate, maintain, secure, support, and improve the Software (including performance monitoring, debugging, reliability analysis, abuse prevention, and licensing). This data is pseudonymized where reasonably possible.

  • License Validation: To ensure your copy of the Software is legitimate and active, the Software communicates with NRDSNIPE’s servers (hosted on Google Cloud). Licensing data covers entitlement details, device/installation identifiers (e.g., machine/host ID), and licensing check signals (IP address, coarse region), along with license status and timestamps.

  • System Information: System information describes the environment the Software runs in (app version/build, deployment type), the platform/runtime (OS and architecture), and basic health signals.

  • Usage Statistics: Usage data reflects how the Software is operated (feature invocations and workflows), where users of the Software navigate (e.g., navigation events), how they interact at a high level, summary measures (durations and aggregate action counts), and error logs.

  • Telemetry: Operational telemetry captures behavior of the Software and performance (timestamps and correlation IDs, model/provider identifiers and non-content configuration flags), workload measures (token counts and payload size), and reliability indicators (latency, status/error codes, retries/fallbacks, dependency health, cache hit/miss).

  • Crash Reports: Crash and diagnostic data helps reproduce failures (crash ID and time, app version/build, platform/runtime context), the type/location of the fault (exceptions and stack-traces), and pre-crash context (e.g., last action/view).

Note: NRDSNIPE does not collect the contents of your source code, environment variables, or other sensitive proprietary data encountered by the Software unless you explicitly share it with NRDSNIPE for support purposes.

3. HOW WE USE YOUR DATA

NRDSNIPE uses your personal data for the following purposes based on the legal bases indicated:

A. To provide the services

  • Purpose: Authenticating users, giving access to the Customer Portal, collecting telemetry and usage data for the Services, and validating licenses.

  • Legal Basis (GDPR): Legitimate Interest, namely NRDSNIPE's interest in operating and providing the Services as agreed and outlined in the End User License Agreement or other agreed upon terms, as applicable.

B. To improve the software

  • Purpose: Analyzing telemetry to identify slow commands, bugs, or unpopular features.

  • Legal Basis (GDPR): Legitimate Interest, namely our interest in operating secure, reliable, and effective Services, preventing misuse, investigating faults, and improving our Services.

C. To process payments

  • Purpose: Handling subscriptions and process payments.

  • Legal Basis (GDPR): Legitimate Interest, namely in our interest in collecting fees for provided Service and manage customer subscriptions.

D. To communicate

  • Purpose: Sending onboarding emails, invoices, or important updates via our CRM.

  • Legal Basis (GDPR): Legitimate Interest, namely our interest in administrating customer relationships, communicating efficiently with users and customer contacts, and providing support concerning the Services.

D. To comply with laws

  • Purpose: Bookkeeping, invoicing and tax reporting.

  • Legal Basis (GDPR): Legal Obligation.

4. SHARING OF DATA

NRDSNIPE does not sell your personal data. NRDSNIPE may share personal data with third-party service providers ("Processors") essential to providing our Service and running our business for the purposes described in this Privacy Policy:

  • Google Cloud Platform (GCP): For hosting of the customer portal, database, and backend infrastructure.

  • HubSpot: For Customer Relationship Management (CRM) and communicating with you (e.g., onboarding emails and support).

  • Fortnox: For accounting, bookkeeping, and invoicing compliance in Sweden.

NRDSNIPE ensures that all Processors are bound by data processing agreements (DPAs) to protect your data which ensure that appropriate technical, organisational, and security measures are in place.

5. INTERNATIONAL DATA TRANSFERS

NRDSNIPE is based in Sweden (EU).

Some Processors (e.g., Google Cloud, HubSpot) are based in or may transfer data to the United States. When personal data is transferred outside of the EU/EEA, NRDSNIPE ensures that such transfers are protected by appropriate safeguards, such as the EU-US Data Privacy Framework, where applicable, or the European Commission’s Standard Contractual Clauses (SCCs).

6. DATA RETENTION

NRDSNIPE retains your personal data only as long as necessary for the purposes of which the personal data was collected:

  • Account Data: Kept for as long as you have an active account.

  • Billing Data: Kept for seven (7) years as required by the Swedish Bookkeeping Act (Sw. Bokföringslagen).

  • Telemetry: Kept for twelve (12) months in an aggregated form, then deleted or anonymized.

7. YOUR RIGHTS (GDPR)

When NRDSNIPE acts as a controller of your personal data, you have the following rights:

  • Right to access: You have the right to request a copy of the personal data NRDSNIPE holds about you, including information on, among other things, what categories of personal data are processed and what the personal data is used for.

  • Right to rectification: You have the right to correct inaccurate information (e.g., update your profile in the Customer Portal).

  • Right to erasure: You have the right to request deletion of your personal data (subject to NRDSNIPE’s legal obligations, e.g., keeping invoices).

  • Right to Object: You have the right to object to the processing of your personal data (e.g., for direct marketing).

  • Right to restriction of processing: Under certain circumstances, you have the right to request that NRDSNIPE restricts its processing of your personal data. NRDSNIPE may not be able to provide you with its Services if it restricts the processing of your personal data.

  • Right to withdraw consent: Should NRDSNIPE base processing on your consent, you have to right to withdraw that consent any time.

  • Right to Data Portability: You have the right to request that NRDSNIPE transfers your personal data that it has collected to another organization under certain conditions.

  • Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority. In Sweden, the relevant authority is the Swedish Authority for Privacy Protection (Sw. Integritetsskyddsmyndigheten (IMY)).

To exercise these rights, contact NRDSNIPE at privacy@nordsnipe.com.

8. COOKIES AND TRACKING TECHNOLOGIES

NRDSNIPE uses cookies and similar tracking technologies to track the activity on our website and hold certain information. Cookies are files with small amounts of data which may include an anonymous unique identifier. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of the Services.

For more information, please see our Cookie Policy.

9. TELEMETRY OPT-OUT

NRDSNIPE understands that some users prefer not to share usage data.

  • License Checks: Cannot be disabled as they are required to validate your subscription and access the software.

  • Usage Analytics: You may opt-out of sharing non-essential telemetry data through settings in the Software.

10. SECURITY

NRDSNIPE uses technical and organisational measures to protect your personal data. Such measures include access controls, encryption, and other security safeguards. 

In addition, NRDSNIPE encourages you to keep your customer portal login credentials confidential.

11. CHANGES TO THIS POLICY

NRDSNIPE may update this Privacy Policy from time to time. The latest version will be made available on our website. NRDSNIPE will notify you of significant changes via email or a prominent notice in the Software or through the customer portal. 

12. CONTACT US

If you have questions about this Privacy Policy, want to exercise your rights, or want more information about how we process personal data, please contact NRDSNIPE at:

Nordsnipe AB 
Org. nr: 559534-8821
Postal address: Box 24016, 104 50 Stockholm, Sweden.
Email: privacy@nordsnipe.com

Nordsnipe AB, 
Stockholm, Sweden