Privacy policy

Privacy Statement

MOCS B.V. and VIKTOR B.V. (hereinafter: "VIKTOR", "we" or "our") offer a platform for its customers to design, build, deploy and manage automation applications (the "VIKTOR Platform"). By means of this privacy statement we wish to inform the persons of whom we collect, store, and use personal data about how we process their personal data. These persons include people who apply for a job at VIKTOR, business contacts, prospects, customers, and their representatives and/or shareholders. VIKTOR qualifies as a data controller for such processing activities.

VIKTOR also processes personal data as a data processor while hosting the applications on behalf of its customers that use the VIKTOR Platform. Please refer to our terms of service for further information.

This privacy statement only applies to the processing activities we carry out as a data controller. In this statement, we use the word “you” to refer to anyone within the scope of this statement.

Personal data – how we collect it

Personal data is any information relating to an identified or identifiable natural person, such as you. We use personal data on a day-to-day basis to run our business, provide our services, enter into contracts, and to protect our interests. We collect information from you when you provide it to us, for instance in the course of your dealings with us or because you use our VIKTOR Platform, because you request a personalized demo or when you apply for a job at VIKTOR. We can also be provided with your data because your information is included in our contracts, business documentation, files or systems.

Depending on the processing activity, the information we process in relation to you may consist of:

  • First and last name;
  • Phone number;
  • E-mail address;
  • Address;
  • Company;
  • Job title;
  • Username;
  • Password;
  • Data related to (IT) incidents;
  • Data regarding your equipment, such as an IP address;
  • Web analytics data; and
  • Other information relevant for the particular service you engage us for, or for the purpose of your contact with us.

It is mandatory to provide certain personal data in order for us to be able to provide you with our services, as applicable. All information you are obliged to provide to us, is marked on our website with an asterisk (*). If you do not provide the personal data which is marked as mandatory we may not be able to provide you with our services.

Please note that any application code, project data or other Intellectual Property generated by you (or your company) and stored on the VIKTOR platform, is not considered Personal Identifiable Information and is therefore not applicable for this privacy statement. Please refer to our Terms of Service for further information.

Purposes and legal grounds for processing

We process your personal data for the purposes described below. Under the applicable data protection laws, we are only allowed to process your personal data for such purposes if we can rely on one or more legal grounds for processing. We generally rely on the following legal grounds: (i) the processing is necessary for the performance of a contract with you, (ii) the processing is necessary for the purpose of our legitimate interests, such as marketing, advertising, research and an analysis of our products and services, (iii) the processing is necessary to comply with our legal obligations, or (iv) your consent.

Purpose
Legal ground
Establishing and maintaining a customer relationship with you.Contract
Legitimate interests
The handling, management, and invoicing of orders.Contract
Legitimate interests
The handling of your (contact) requests.Legitimate interests
Recruitment, handling of job applications received via our website or otherwise.Legitimate interests
Direct marketing via electronic means or otherwise.Consent(where required)
Legitimate interests
Ensuring physical and system and IT security.Legitimate interests
To measure the use and effectiveness of our products and services, including our website, for which we use, for instance, cookies and similar technologies.Consent(where required)
Legitimate interests
Corporate transactions/due diligence – in the course of a potential merger or takeover, your personal data may be provided to a potential buyer or investor.Legitimate interests
Dispute resolution, defense of legal claims, compliance reasons.Legal Obligation
Legitimate interests
Public interest
Day to day business operations including marketing and promoting our services, reporting and workforce planning/business re-organisations.Contract
Legitimate interests
To be able to view the activity data of the customer using the VIKTOR software and related services (such as third-party service integrations).Contract
Legitimate interests
Ensuring physical- and IT security.Legitimate interests

We are not engaged in any automated decision making without human intervention that affects data subjects.

Personal data – who has access to it

Access to personal data relating to you is limited. It is VIKTOR's policy that persons within the organization should only have access to personal data on a need-to-know basis. In some cases we share your personal data with third parties. VIKTOR may share your personal data with:

  1. Third party service providers, such as hosting providers and IT service providers;
  2. External advisors, such as accountants and lawyers;
  3. Supervisory authorities and other governmental bodies, to comply with legal obligations; and
  4. Third parties involved in a transaction (such as a takeover or acquisition) pursuant to which (a part of) our business is sold or transferred.

We will only transfer your personal data to the above mentioned third parties for the purposes stated in this privacy statement, and only to the extent permitted under the applicable data protection law, or if you have consented thereto.

Third parties to whom we transfer your personal data are themselves responsible for compliance with data protection law unless they act as our data processor. We are neither responsible nor liable for the processing of your personal data by third parties if they act as an independent data controller.

International transfers of personal data

In connection with our business and for employment, administrative, management and legal purposes, when processing personal data in line with this statement, we may transfer your personal data outside the European Economic Area (EEA). If we transfer personal data outside the EEA, we will implement appropriate safeguards in accordance with our legal obligations to ensure that your personal data is adequately protected irrespective of the country to which it is transferred. These safeguards may include entering into standard contractual clauses with the recipient to whom the personal data are transferred.

If you would like to know more about the safeguards implemented by us to protect your personal data when it is transferred outside the EEA, please reach out to us at support@viktor.ai.

Retention Period

We will not store your personal data longer than necessary to achieve the purposes set out in this privacy statement unless we are required by law or regulations to do so. Please note that, if you are a paying customer, we are legally required to retain some of the personal data we hold about you (whether directly or indirectly) for a period of 7 years after the information has lost its relevance, for tax and corporate law purposes.

Use of cookies

We use cookies on our website. We therefore have a cookie statement in which we explain on the use of these. Detailed information can be found at www.viktor.ai/cookies.

Your rights

You, as a data subject, have the following rights:

  • Right of access, this means you can make a request to obtain access to the personal data concerning you;
  • The right to rectification or correction of your personal data;
  • The right to erasure of the personal data concerning you;
  • The right to restriction of the processing;
  • The right to data portability, this means that you have the right to receive your personal data in a structured, commonly used, and machine-readable format, and that you have the right to transmit those data to another controller;
  • The right to object to profiling; and
  • The right to withdraw your consent.

The above stated rights can be exercised by submitting a request to us at support@viktor.ai, and only to the extent that you enjoy such rights under applicable law.

In addition to these rights, you also have the right to lodge a complaint with a data protection supervisory authority, such as the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

Security

Being a platform provider, it is of utmost importance to ensure that the platform itself, the applications built on the platform and the cloud operations running the platform meet the highest security standards. VIKTOR makes security a priority at every step, from code development to incident response. VIKTOR has combinations of controls and principles to maintain the confidentiality, integrity and availability of the VIKTOR platform and customer data, including:

  • Strict access controls on sensitive data, including two-factor authentication or certificate-based authentication to perform sensitive operations.
  • Background verification checks on operational personnel involved with customer data.
  • Multiple levels of monitoring, logging, and reporting, including self-service tools embedded within the Viktor Platform.
  • A software development lifecycle which embeds security requirements into systems and software through the planning, design, development, and deployment phases.

Changes to this privacy policy

We reserve the right to unilaterally change or update this privacy statement. You will be notified of any changes if we are obliged to do so.

Contact

If you have any questions or comments about this privacy statement and/or the processing of your personal data, please reach out to us at support@viktor.ai.

Last updated:

Download