Privacy Policy
The protection of your personal data is important to us. We take confidentiality and security of your personal data seriously and will ensure that your information is processed according to the General Data Protection Regulation (“GDPR”).
Please read this privacy notice carefully if you are a customer or partner of Cognite. It provides important information about how we use your personal data and your legal rights under the GDPR.
Defined terms in this policy have the same meaning as the corresponding terms in the GDPR.
Customer and partner data
In order to provide you with our services, we will need to process personal data about you from time to time. The sections below highlight the different scenarios where we might process your personal data.
Cognite Data Fusion
When we process personal data as part of our onboarding process, we act as a Data Controller and Data Processor. We act as a Data Controller when we provide customers and partners with technical support, billing, product development and account management services.
When we process personal data as part of delivering CDF, we act as a Data Processor. For the purposes of product delivery, we will process information that we receive from you, including full name, job title, position, IP address, email address and telephone number. This information is obtained from the identity provider (IdP) used to authenticate users of CDF by creating a personal profile. We automatically collect information about how you are using the Cognite applications. Data collected may include information about your account (such as User ID or
Internet Protocol (IP) address), or information about your computer or device (such as browser type). Profile information collected and processed from the IdP is stored in the European Union. We offer the Data Controller the option to determine the collection and use of the personal information, and we will respect the choice you make. Please note that if the Data Controller decides not to provide Cognite with users’ personal information, you may not be able to access certain features of CDF and its applications.
The collection and use of personal data as described above takes place pursuant to art. 6 (1) (b) of the GDPR and our obligations under our Data Processing Agreement with you.
Customer Relationship Management (CRM) system and operations
We may use the information we have on you in our CRM system in order to provide you with consultancy, data analytics, notification of any changes that may affect the services we provide to you and compliance with contractual obligations.
For the purposes of CRM, service level and general operations, we will process information that we already have about you, including name, position, IP address, email address and telephone number.
The collection and use of personal data as described above takes place under our Data Processing Agreement with you.
Robotics
Cognite Robotics uses programmable video API for relaying video streams from robots to InRobot users. For the purposes of Robotics, we will process the video stream captured by the Robots. The video is streamed live between the robot and customer. The video is never stored by Cognite or a third-party provider.
The collection and use of personal data as described above takes place under our Data Processing Agreement with you.
Newsletter and Cognite Conferences
We may use your information in order to send you our newsletters, tell you about our products and services, and invite you to our events. For the purposes of newsletters and invitations to Cognite conferences, we will process information that we already have about you, including name, position, email address and telephone number.
If you no longer wish to receive our newsletters, information about our products or invitation to our conferences, you can use the opt-out link provided in the communication. Alternatively, you can also contact us on [email protected].
The collection and use of personal data as described above takes place pursuant to art. 6 (1) (a) of the GDPR.
Cognite Hub
Cognite Hub is an information sharing platform and community for customers, partners and any external party interested in this subject matter. Cognite Hub allows builders and users of Cognite products to share knowledge, learn, collaborate, and connect with peers. Cognite Hub is a public and open community, where one can see each other's personal data and contributions shared with the community, except content shared in private groups. It is important to note that content shared within private groups remains accessible only to the members of those specific groups.
For the purposes of giving access to Cognite Hub, we may process the following information about you: name, position and email address. The collection and use of personal data as described above takes place pursuant to art. 6 (1) (a) of the GDPR.
Cognite Academy
Cognite Academy is Cognite's e-learning portal where Cognite's on-demand and instructor-led training offerings are available to gain CDF skills and upskill on industrial digitalization. Cognite Academy is available to everyone. When we process personal data as part of Cognite Academy, we act as a Data Controller and Data Processor.
For the purposes of providing you with e-learning we act as a Data Controller and we process the following information about you: name, email address, activities and courses taken on Cognite Academy. The collection and use of personal data as described above takes place pursuant to art. 6 (1) (a) of the GDPR.
We act as a Data Processor if we share data with customers and partners about their employees’ course trajectory on Cognite Academy. In such instances, our obligations are regulated by the Data Processing Agreement (DPA).
Customer Survey
We may use your personal data in order to survey you for feedback. The information collected will be used to improve our services and processes.
For the purposes of the customer survey, we will process information that we already have about you, including name, position and email address. The collection and use of personal data as described above takes place pursuant to art. 6 (1) (f) of the GDPR.
Export of data from the EU/EEA to other countries
The personal information we obtain from you is typically kept in a country that is a member of the European Union or the European Economic Area ("EU/EEA") but may occasionally be accessed or processed in a country outside of the EU/EEA to support our international business. Any such transfer of your personal information will take place in accordance with existing legislation and without impairing your legal rights.
Sharing your data with Third Parties
We will not share your personal data with third parties except when necessary for our business routine operations or to fulfill our obligations in providing you with our services and support to you.
In order to provide you with a better user experience, we may share your data with our partners and sub-processors. Complete list of Sub-processors can be found here.
The disclosure of personal data to third parties as described above takes place pursuant to the obligations set out in our Data Processing Agreement with third parties.
Retention
We only store your personal data for as long as is necessary for the purposes described above. Information related to our service will be stored for 3 years after the customer relationship ends. Newsletters, marketing and Cognite conference invitations will be sent out until you opt-out or end your customer relationship with Cognite.
Your rights under the GDPR
You have the right to request additional information from us about how we process your personal information. You may request for us to correct your data if you locate any errors, access all the personal data we have stored about you, and delete your personal data. We will
delete your personal data if we no longer have a legal and legitimate processing purpose. You also have the right to ask us to provide you with your personal data in a structured, commonly used, machine-readable format. Please note that while we will endeavor to accommodate all reasonable requests, technical limitations may prevent us from directly transferring your data to another system.
Furthermore, you have the right to restrict our processing, object to our processing and to export personal data elsewhere. To exercise your rights, please contact us at [email protected]. We will respond to your inquiry as soon as possible, and at the latest within 30 days. If you wish to exercise your rights, we will require that you confirm your identity by providing additional information, such as a copy of your driving license or passport.
Complaint
If you believe that our collection, storage and use of personal data does not comply with our privacy notice or does not comply with privacy law, you may complain to the local data protection authority here: https://www.datatilsynet.no/
Changes to our Privacy Policy
We may change this statement from time to time in the future. Any such changes will be posted here and, where appropriate, notified to you in writing. We advise you to check back frequently to see any updates or changes.
Definitions
"CDF'' means Cognite Data Fusion, a software system made and implemented by or on behalf of Cognite, the core functionality of which is to collect, process, and store data and to make such data available for consumption. The term "CDF'' shall include CDF API and Extractors. A further description of CDF shall be maintained at https://docs.cognite.com/cdf/.
"Cognite" means Cognite AS and all existing subsidiaries.