Privacy Policy

This privacy policy explains how astronexum AS ("we", "our", or "us") collects, uses, and protects your personal information when you visit our website or use our services. We are committed to protecting your privacy and ensuring compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR).

Last Updated: January 2026

Data Controller Information

astronexum AS is the data controller responsible for your personal data. Our contact details are:

Data We Collect

The data we collect depends on how you interact with our website and services. We collect personal information that you provide directly to us, as well as information that is automatically collected when you use our website. The types of data collection include:

Information You Provide

  • Contact Information: Name, email address, phone number, and company details when you submit enquiry forms or contact us
  • Communication Data: Content of messages, feedback, and correspondence when you communicate with us
  • Account Information: Username, password, and profile information if you create an account for our services
  • Business Information: Company details, marketing requirements, and campaign information for service provision

Automatically Collected Information

  • Technical Data: IP address, browser type, device information, operating system, and referring URLs
  • Usage Data: Pages visited, time spent on pages, click-through rates, and website navigation patterns
  • Cookie Data: Information collected through cookies and similar tracking technologies as detailed in our cookie policy

How We Use Your Information

We use your personal data for various purposes based on different legal grounds. How we use your information depends on the services you use and your preferences. Our use of your data includes:

Service Provision

  • Responding to enquiries and providing customer support
  • Delivering our analytics services and platform access
  • Processing transactions and managing client accounts
  • Customising our services to meet your specific requirements

Communication

  • Sending service-related notifications and updates
  • Providing technical support and troubleshooting assistance
  • Sharing relevant industry insights and educational content (with consent)
  • Notifying you about changes to our services or policies

Analytics and Improvement

  • Analysing website usage to improve user experience
  • Conducting research to enhance our services and develop new features
  • Monitoring service performance and identifying technical issues
  • Understanding user preferences and behaviour patterns

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about our use of cookies, please refer to our cookie policy.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Consent: When you have given clear consent for specific processing activities
  • Contract: When processing is necessary to fulfil our contractual obligations to you
  • Legal Obligation: When we must process data to comply with legal requirements
  • Legitimate Interest: When we have legitimate business interests that do not override your privacy rights

Data Sharing and Third Parties

We do not sell, trade, or rent your personal information to third parties. We may share your data in the following circumstances:

  • Service Providers: Trusted third-party providers who assist with website hosting, email services, and analytics
  • Legal Requirements: When required by law, court order, or regulatory authorities
  • Business Transfers: In the event of a merger, acquisition, or sale of business assets
  • Consent: When you have explicitly consented to data sharing for specific purposes

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this privacy policy. Data retention periods vary depending on the type of information and the purpose for which it was collected. Generally, we retain data as follows:

  • Contact Enquiries: 3 years from last contact for business development purposes
  • Client Data: Duration of service contract plus 7 years for legal and accounting requirements
  • Website Analytics: 26 months for Google Analytics data, in accordance with their retention settings
  • Marketing Communications: Until you unsubscribe or withdraw consent

Your Rights

Under GDPR and applicable data protection laws, you have several rights regarding your personal data. Your rights include the ability to request access to your data, correct inaccuracies, and control how your information is used. Specifically, you have the right to:

  • Access: Request a copy of the personal data we hold about you
  • Rectification: Request correction of inaccurate or incomplete personal data
  • Erasure: Request deletion of your personal data in certain circumstances
  • Restriction: Request limitation of processing in specific situations
  • Portability: Request transfer of your data to another service provider
  • Objection: Object to processing based on legitimate interests or direct marketing
  • Withdraw Consent: Withdraw consent for processing activities that require consent

To exercise any of these rights, please contact us using the details provided in the contact section below. We will respond to your request within one month of receipt.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Our security measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and authentication procedures
  • Staff training on data protection and security practices
  • Secure hosting infrastructure with reputable providers

International Data Transfers

As we operate from Denmark within the European Union, your data is primarily processed within the EEA. If we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as adequacy decisions or standard contractual clauses approved by the European Commission.

Children's Privacy

Our services are not directed at children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last Updated" date. We encourage you to review this policy periodically to stay informed about how we protect your privacy.

Contact Information

If you have questions about this privacy policy, wish to exercise your rights, or need to contact us about data protection matters, please get in touch using the following contact information:

You also have the right to lodge a complaint with the Danish Data Protection Agency (Datatilsynet) if you believe your privacy rights have been violated. Contact details for the Danish Data Protection Agency can be found at www.datatilsynet.dk.