B2C Tenant Privacy Statement

This Privacy Statement applies to the Kongsberg Digital AS B2C Tenant (hereinafter collectively referred to as the "KDIB2C Tenant").

1. Introduction

Kongsberg Digital AS ("KDI" or "we") will act in the capacity of controller in relation to the KDI AD Tenant (cf. section 2 below).

KDI is part of a group (the “Kongsberg Group”), of which Kongsberg Gruppen ASA (“KONGSBERG”) is the ultimate owner. KONGSBERG’s general privacy statement also applies to the KDI AD Tenant and may supplement this Privacy Statement.

Each individual who signs up for a valid single sign-on authentication or a local account in the KDI B2C Tenant is hereinafter referred to as an “Authorised User”. "You" and “Your” refers Authorised Users.

In this Privacy Statement, we explain how we collect, use, and disclose your personal data, as well as informing you about your rights.

2. Roles and responsibilities of controller

KDI use your personal data for the following purposes:
  • To create, manage, and allow access to your account in the KDI B2C Tenant
  • To reach out to you regarding the management of your account
  • To facilitate your access and use of the KDI services and applications (where separate Privacy terms shall apply)
  • To prevent abuse and misuse of the account you have created in the KDI B2C Tenant
  • To detect, prevent, and mitigate security threats and perform maintenance and debugging
  • To improve the quality and functionality of the KDI B2C Tenant and associated services
Personal data will only be processed in connection with these activities to the extent necessary and proportionate to fulfil the stated purposes and to comply with relevant data protection laws and regulations. For sharing and transfer of personal data within the Kongsberg Group, please see section 5 below.

3. Categories of personal data processed

When You sign up for an account in the KDI B2C Tenant, KDI may process the following data about You:
  • Basic contact details such as name and email
  • Business information such as job title, function, KDI product(s) in use by You, company, industry
  • • Unique user information such as login ID, username, password (including time-based one-time password)
  • Web traffic information as provided by browser such as browser type, device, language and the address of the website from which You arrived and other traffic information such as IP address

5.  Storage, sharing and transfer of personal data

Your personal data is stored in KDI's private tenants which are owned by Microsoft Azure. Your personal data will be stored in Europe.

KDI may share Your personal data with other companies in the Kongsberg Group if this is necessary to fulfil a request from You.

KDI does not share Your personal data with third parties except where such sharing is necessary to deliver and improve the services offered through the KDI AD Tenant, for example with third-party services providers for platform hosting or customer identity access management (CIAM).

KDI may further share Your personal data with public authorities or governments, if required by mandatory law.

The KONGSBERG Binding Corporate Rules (“BCR”) provide a legal basis for transfer of personal data from group companies within the EEA to group companies outside the EEA. For more information about KONGSBERG's BCR and group companies bound by the BCR, please see the public version of the KONGSBERG BCR.

KONGSBERG will not transfer personal data to a third country outside of the EEA that does not provide adequate protection of personal data unless appropriate safeguards are adduced, or the transfer otherwise takes place in accordance with applicable data protection legislation. Examples of such safeguards are Binding Corporate Rules, EU Standard Contractual Clauses or based on derogations for specific situations pursuant to GDPR Article 49.

6. Security of processing

KDI undertakes to process Your personal data securely and will apply and maintain appropriate technical and organizational measures to protect Your personal data against accidental or unlawful destruction or accidental loss, alteration, unauthorized disclosure or access, in particular where the processing involves the transmission of data over a network, and against all other unlawful forms of processing.

For more information about security please visit our Trust Centre.

7. Cookies

We use cookies in the manner described by Microsoft.

8. Your rights

You may contact KDI for further information about the processing of personal data relating to the KDI AD Tenant.

You will as a main rule have a right to access Your personal data processed by KDI and/or to obtain a copy of the personal data. You also have a right to contact KDI to have inaccurate or incomplete personal data concerning You rectified, completed and under some circumstances deleted or restricted.

Please note that upon Your request to delete Your personal data, KDI will store Your personal data for a period of two (2) years for logging purposes in order to comply with our SOC 2 and ISO 27001 compliance requirements.

If You believe that KDI's processing is not legitimate, You may also object to the relevant processing activities.

In some instances, You may have a right to receive the personal data concerning You in a machine readable format and to have it transmitted to another controller (data portability).

To exercise Your rights as a data subject or if You have questions regarding this Privacy Statement, please contact our Corporate Privacy Officer by using the below email address:

If You are not satisfied with this Privacy Statement or the way KDI treats Your personal data, You may file a complaint to the Norwegian Data Protection Authority.

9. Amendments

KDI reserves the right to partly or fully amend this Privacy Statement, or simply update its content, e.g. as a result of changes in applicable law. KDI will inform You of any significant changes as soon as they are introduced by sending You an email (if we have registered your email address). You will always find the latest updated version of the Privacy Statement on this website.  

Last updated 20 October 2023

Trust Center

This Trust Center outlines how Kongsberg Digital ensures the secure provision of its digital services, handles personal data and maintains compliance with laws and regulations. Here you can also access legal terms applicable to Kongsberg Digital’s cloud-based SaaS solutions.

Legal  →

Explore terms and conditions applicable to Kongsberg Digital’s different cloud-based SaaS solutions.

Compliance  →

To ensure the highest quality, Kongsberg Digital follows industry best practices and certify our processes diligently.

Security  →

Explore how Kongsberg Digital develops, delivers, and manages mission critical solutions.

Privacy  →

Explore how Kongsberg Digital protects your data and private information.

Sign up to our latest news and updates

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
© 2024 Kongsberg Digital