Appfarm AS (hereafter "Appfarm", "we" or "us") is a Norwegian software company that offers a no-code application development platform.
Appfarm acts as a data processor for personal data that we process (which typically means collecting, storing, and using personal data) on our customers' behalf. We have entered into specific software service agreements with separate data processing agreements with our customers, which regulates our processing of personal data in accordance with the EU regulation 2016/679 ("GDPR") article 28. By utilizing our platform, Appfarm's customers may process personal data on behalf of third parties. Appfarm's customers act as data controllers for such processing. If you have any questions regarding Appfarm's customers' processing of your personal data through their use of the Appfarm platform, please contact the relevant Appfarm customer directly.
This privacy policy concerns any processing of personal data we do in the capacity of a data controller, which is usually the case when we provide you with our services.
As data controllers, we are responsible for ensuring that we use the personal data we have about you in accordance with applicable data protection legislation. This privacy policy will help you understand what information we collect, how we protect and use your data, as well as information about your rights in this respect. We value your privacy and will not use or share your information with third parties except as described in this policy.
In short, we typically collect and process your data when you use our websites and other digital services, when you sign up for our services, subscribe to our newsletter, and when you fill out voluntary forms issued by us. Below, we have listed all the specific ways we collect data from you, the categories of data we typically process, and the legal basis for such processing.
Please note that we only process your personal data to the extent necessary to fulfill the below-mentioned purposes.
When you register for a user account for our Appfarm Platform, or when your employer or principal assigns a user account to you, and you log in to this account, we process information such as:
We process this information to be able to provide the contractual service (GDPR art. 6.1 b).
We collect information from your computer or internet connection when you visit our website and use our digital services (see also section 2.1 above), such as:
We collect this information to uphold our legitimate interest in being able to display our website to you (including for log-in identification purposes), as well as our legitimate interest in measuring and improving the performance of our digital channels, as well as the marketing of our products and services (GDPR art. 6.1 f).
You may, from time to time, contact us with questions or requests. When you do so, you may fill out forms with information about you or your company. Upon doing so, we collect the information provided through the use of the form, such as your
We collect this information to carry out our contract with you (GDPR art. 6.1 b) or to uphold the legitimate interest in replying to your requests or questions (GDPR art. 6.1 f).
If you subscribe to our newsletter and information on our service updates, we collect your name and email address. If you are an existing customer or user, we may send you such communication even though you do not expressly subscribe.
The basis for sending such emails to contact persons with our existing customers is to uphold our legitimate interest in following up our customers by providing relevant news and relevant information about our services (GDPR art. 6.1 f), see also the Norwegian Marketing Act art. 15(3)). If you are not an existing customer or user, the basis for sending such an email would be your express consent (GDPR art. 6.1 a).
Anyone receiving the information items above can easily opt-out using the link included in our emails.
You are welcome to apply for a position with us. If you decide to do so, we will ask you to provide a set of personal data:
You provide us with such personal information, as well as any other information that you might choose to share with us in this respect, on a voluntary basis. We will collect and process this information to respond to your application and consider whether to enter into an employment contract with you (GDPR art. 6.1 b). We will delete the information related to your application as soon as it is no longer relevant for this purpose.
Suppose you decide to sign up for a course in our Appcademy program. In that case, it is necessary to provide us with personal data about you and information about your company, including
We will also track your progress and collect and store information about what courses you attend or complete.
We collect and process this information to provide you with a contractual service (GDPR art. 6.1 b) and to uphold our legitimate interest in providing you with the best experience possible with our Appcademy courses (GDPR art. 6.1 f).
When you visit our social media pages, such as our Facebook and LinkedIn pages, the social media providers will collect and process your personal data and use cookies. For information about how these providers use your personal data, we recommend reading their privacy policies.
When you submit a support ticket to us, we will collect and process your name and contact details, as well as your description of the problem you are experiencing.
We collect and process this information to provide you with a service according to the contract (GDPR art. 6.1 b) and to uphold our legitimate interest in improving our service to you (GDPR art. 6.1 f).
When you register as a customer or user, you provide us with certain information that we collect and process in our customer relationship management systems. This information includes your
We collect and process this information to provide you with a contractual service (GDPR art. 6.1 b) and to uphold our legitimate interest in improving our relations to our customers and to provide you with good customer care and service (GDPR art. 6.1 f). In some cases, we are also compelled to process your information for compliance with a legal obligation, such as compliance with the Norwegian Bookkeeping Act, or when required by law, court orders, or legal processes (GDPR art. 6.1 c).
We will not share your personal data with others unless you either give us your consent to do so (GDRP art. 6.1 a) or if we have another legal basis to share your data, e.g., if it is necessary to provide you with a contractual service (GDPR art. 6.1 b) if we are required by law, court orders or legal processes to disclose your personal data (GDPR art. 6.1 c), or it can be justified on the basis of our legitimate interest in doing so (GDPR art. 6.1 f).
When we use third-party subcontractors or service providers in order to provide our services, we will take appropriate legal precautions and corresponding technical and organizational measures in order to ensure that your personal data are protected in accordance with applicable data protection law. Our service providers may be based in locations all over the world. This means that your personal data may be transferred outside the EU/EEA. If that is the case, we will implement appropriate security measures to protect your data, such as agreements with EU standard contractual clauses.
The list of the third-party providers we are currently using is available here
Our data processors and we have implemented appropriate technical and organizational measures to ensure a sufficient level of security when processing your personal data and to prevent loss or unlawful processing. Such measures are, for example, internal routines, data processing agreements, and IT security procedures to verify access rights. We will also carry out data protection impact assessments when it is likely that the processing of your data may result in high risk to your rights and freedoms concerning your personal data.
Cookies are small text files that are saved on your hard drive and associated with your browser and which provide us with information. They serve to make our web services and digital services more user-friendly and efficient. We use cookies and similar technology to store your website preferences, combat fraud and illegal activity, analyze our services, improve our website, and fulfill other legitimate purposes, cf. section 2.2.
For these purposes, we use both necessary cookies and functional cookies. We also use Google Analytics for statistical purposes. These statistics use information about your visit and usage patterns on our website (such as how often you visit our website and what specific pages you visit, the length of your visit, your geographical location when visiting us, and more). Google Analytics collects the IP address you use on the date you visited our website and anonymizes your data before sharing it with us. Google Analytics does not collect your name or other personal data. We do not combine information collected by Google Analytics with additional personally identifiable information.
We use necessary, functional, and analytical cookies (via Google Analytics) on our website and digital services. Some of those cookies are persistent, which means that they will be stored on your electronic device when you leave our website for a limited period. Session cookies are deleted as soon as you leave our website.
You may opt-out of collection and analysis of data collected through Google Analytics by downloading Google Analytics' opt-out browser add-on here.
If you have a Google Account, you may alter your personal advertisement settings here. You may find more information on Google's advertisement services here. You can also configure your browser settings for other types of cookies, for instance, by refusing to accept cookies.
You have several rights under the applicable data protection regulations. Below is a list of the rights you can exercise in your relationship with us as a data controller. If you wish to exercise your rights, please contact us, and we will respond to your inquiry as soon as possible – no later than a month after the receipt of your inquiry.
Your personal data will not be stored for longer than needed for the purposes mentioned in this privacy policy. This means that when our customer relationship with you is terminated, we will erase your personal data as soon as our purpose with processing such data is no longer relevant unless we are compelled by law to store this data any longer.
Yes. We may amend this privacy policy from time to time. We will notify you if we make any significant changes. The most up-to-date version of our privacy policy is available on our website.
Please get in touch with us if you have any questions or comments or wish to exercise your rights. Our contact details are:
Appfarm AS, Universitetsgata 2, 0164 Oslo, Norway
privacy@appfarm.io
View Appfarm's Responsible Disclosure Policy
Change your preferences: https://www.appfarm.io/privacy#
