Privacy Policy

Last updated: January 2025

1. Introduction

Welcome to Digel AS ("we," "our," or "us"). We are committed to protecting your privacy and ensuring transparency in how we collect, use, and protect your personal data. This Privacy Policy explains our practices in accordance with the General Data Protection Regulation (GDPR) and Norwegian data protection laws.

2. Data Controller

The data controller responsible for your personal data is:

Digel AS

Email: hello@digel.io

Website: https://digel.io

3. What Data We Collect

We collect the following types of information when you visit our website:

  • Analytics Data: Pageviews, page navigation, clicks, time spent on pages, referring website
  • Device Information: Browser type, operating system, device type, screen resolution
  • Location Data: Approximate geographic location based on IP address (country/city level)
  • Session Information: Session duration, interaction patterns

We do not collect names, email addresses, or other personal identifiers unless you explicitly provide them (e.g., through contact forms).

4. How We Collect Data

We collect data through:

  • Cookies: We use analytics cookies (PostHog) to track website usage and user behavior, but only after you provide explicit consent
  • Automatic Collection: Some technical information is collected automatically when you visit our website

5. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: For analytics cookies, we obtain your explicit consent through our cookie banner
  • Legitimate Interest: For improving our products and services, analyzing website performance, and understanding user needs

6. Cookies

We use the following cookies on our website:

Analytics Cookies

Cookie Name: ph_{project_token}_posthog

Purpose: Track user behavior and website analytics

Provider: PostHog

Duration: 365 days

Type: Third-party analytics cookie

Data Stored: User ID (distinct ID), session ID, pageview events, interaction events

You can manage your cookie preferences at any time by clearing your browser cookies or using our cookie consent banner to opt-out.

7. Third-Party Services

We use the following third-party service:

PostHog

Purpose: Website analytics and user behavior tracking

Data Shared: Pageviews, clicks, device information, session data

Location: PostHog offers both US and EU hosting options. Data may be transferred to the United States.

Privacy Policy: https://posthog.com/privacy

8. Your Rights (GDPR)

Under GDPR, you have the following rights regarding your personal data:

  • Right to Access: You can request a copy of the personal data we hold about you
  • Right to Rectification: You can request that we correct inaccurate or incomplete data
  • Right to Erasure: You can request that we delete your personal data ("right to be forgotten")
  • Right to Restrict Processing: You can request that we limit how we use your data
  • Right to Data Portability: You can request a copy of your data in a machine-readable format
  • Right to Object: You can object to our processing of your data based on legitimate interests
  • Right to Withdraw Consent: You can withdraw your consent for analytics cookies at any time by declining cookies in your browser or through our cookie banner

To exercise any of these rights, please contact us at hello@digel.io. We will respond to your request within 30 days.

9. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined in this Privacy Policy:

  • Analytics Data: Retained for up to 2 years for analytics and product improvement purposes
  • Cookie Consent Records: Retained for as long as legally required (minimum 5 years under GDPR)

After the retention period, data is securely deleted or anonymized.

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, destruction, or alteration. This includes:

  • Encryption of data in transit (HTTPS/TLS)
  • Access controls and authentication
  • Regular security assessments
  • Secure hosting infrastructure

11. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA), specifically the United States, through our use of PostHog. We ensure that appropriate safeguards are in place for such transfers, including:

  • Standard Contractual Clauses (SCCs)
  • Third-party compliance with recognized data protection frameworks

12. Children's Privacy

Our website is not intended for children under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us immediately.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. When we make significant changes, we will notify you by:

  • Updating the "Last updated" date at the top
  • Displaying a notice on our website

We encourage you to review this Privacy Policy periodically.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: hello@digel.io

You also have the right to lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet) if you believe we have not complied with applicable data protection laws.

Datatilsynet:
Website: www.datatilsynet.no