Legal
Privacy Policy
Version 2.0.0 | Effective date 09/03/2026
1. Data Controller
The data controller for personal data collected through this website is:
- Company: UNOS SOFTWARE AS
- Organization number: 937 279 329
- Address: Brobekkveien 80C, 0582 Oslo, Norway
- Contact: Use the contact form on the contact page
2. Legal Basis and Purpose
We process personal data on the following legal bases under GDPR Article 6:
| Purpose | Legal basis (GDPR Art. 6) | Data categories |
|---|---|---|
| Responding to contact form inquiries | Art. 6 (1) f — legitimate interest (responding to inquiries and maintaining customer dialogue) | Name, email address, message content |
| Ensuring website functionality and security | Art. 6 (1) f — legitimate interest | IP address, browser type, time of visit |
| Storing theme preferences (light/dark mode) | Stored locally in your browser only (not sent to server). See our cookie policy for details on the Electronic Communications Act. | Theme choice in localStorage |
| Complying with legal obligations | Art. 6 (1) c — legal obligation | Depends on the obligation |
3. Personal Data We Collect
3.1 Contact Form
When you submit the contact form, we process:
- Name
- Email address
- Message content
3.2 Technical Data
The website may automatically record:
- IP address (via server logs)
- Browser type and version
- Operating system
- Time of visit
We do not use tracking technology, third-party analytics, or marketing trackers on this website.
4. Data Processors and Sharing
Contact form submissions are delivered via a webhook (Azure Logic App or equivalent). Microsoft acts as a data processor for this delivery, governed by Microsoft's Data Processing Agreement (DPA).
We do not sell, share, or disclose personal data to third parties for marketing purposes.
We may disclose data where required by law or governmental order.
5. Transfers to Third Countries
The services we use (Microsoft Azure) may involve transfer of data to countries outside the EEA. Such transfers are protected by EU Standard Contractual Clauses (SCCs) and/or adequacy decisions, in accordance with GDPR Chapter V.
6. Retention Periods
| Data category | Retention period |
|---|---|
| Contact form content | Deleted once the inquiry has been resolved, maximum 12 months |
| Server logs (technical data) | Maximum 90 days |
| Theme preferences | Stored locally in your browser, controlled by you |
7. Your Rights
Under GDPR Chapter III, you have the following rights:
- Access (Art. 15) — the right to know what data we hold about you
- Rectification (Art. 16) — the right to correct inaccurate data
- Erasure (Art. 17) — the right to request deletion of your data
- Restriction (Art. 18) — the right to request restricted processing
- Data portability (Art. 20) — the right to receive your data in a structured, machine-readable format
- Objection (Art. 21) — the right to object to processing based on legitimate interest
To exercise your rights, contact us via the contact form. We respond to requests within 30 days in accordance with GDPR Art. 12 (3).
8. Right to Lodge a Complaint
If you believe our processing of personal data violates data protection regulations, you have the right to lodge a complaint with:
The Norwegian Data Protection Authority (Datatilsynet) P.O. Box 458 Sentrum, 0105 Oslo, Norway Phone: +47 22 39 69 00 Website: www.datatilsynet.no
9. Security
We employ technical and organizational measures to protect your personal data, including:
- Encrypted transmission (HTTPS/TLS)
- Access control and authentication
- Security headers (CSP, HSTS, X-Frame-Options)
- Input sanitization
10. Cookies
For details on cookies and local storage we use, see our cookie policy.
11. Changes to This Policy
We may update this policy as needed. In the event of material changes, the effective date at the top will be updated. We encourage you to review this policy periodically.