Data Privacy Policy
Last updated: 2024-09-25
Version 1.0
This Data Privacy Policy outlines how Princh A/S and its subsidiaries (hereinafter referred to as “Princh,” “we,” “us,” or “our”) collect, process, disclose, and safeguard personal data in connection with the services provided. Whether you are utilizing our products, browsing our website, or conducting transactions with us, we are committed to protecting your privacy and ensuring your data is handled with the utmost care and in full compliance with applicable legal requirements.
1. Contact information
If you have any questions regarding this Privacy Policy or how we process your data, please contact us at:
- Email: privacy@princh.com
For UK Users:
Pursuant to Article 27 of the UK GDPR, Princh has appointed a UK Data Representative:
- Representative: GDPR Rep
- Address: 3rd Floor, 86-90 Paul Street, London EC2A 4NE
- Email: info@gdprep.org
For Swiss Users:
In accordance with Articles 14 and 15 of the Swiss nFADP, Princh has appointed a Swiss Data Representative:
- Representative: GDPR Rep
- Address: Andreaspark, Hagenholzstrasse 56, 7th Floor, Zurich 8050
- Email: info@gdprep.org
2. Data Collection Practices and Methods
2.1. We collect personal data through various channels, including:
- 2.1.1. Princh Services: When engaging with Princh’s services, such as printing, scanning, or copying across platforms (web, mobile, or public computers), we collect document-related data and payment details.
- 2.1.2. Website Visitors: We gather information regarding your browsing activity (e.g., pages visited, cookies) and voluntary submissions (e.g., contact forms, newsletter sign-ups).
2.2. All payment data is securely processed by third-party payment providers, and documents uploaded for printing are stored for a limited period (24 hours) to fulfill the requested service.
2.3. In the course of operating our services, Princh collects ingress logs for all traffic to our systems. These logs include source IP addresses and are collected directly from our load balancer. The purpose of collecting these logs is to facilitate IP-based traffic filtering for Distributed Denial of Service (DDOS) protection and to enable enhanced analysis in the event of network-related errors.
Ingress logs are securely stored in our logging system for a period of 90 days, after which they are automatically deleted in accordance with our data retention policies. This data is processed solely for network security and diagnostic purposes, and access is restricted to authorized personnel.
3. Categories of Personal Data Processed
The personal data we collect is dependent on your usage of our services and includes the following categories:
- Contact Information: Name, email address, company, job title, country, and language (collected through voluntary forms or interactions).
- Payment Information: Payment card details (limited to the last 4 digits and transaction date) stored for compliance with accounting regulations.
- Document: Files uploaded for printing, scanning, or copying are encrypted, and stored for 24 hours before automatic deletion.
- Browsing Data: IP addresses, browser types, device details, and usage patterns collected through cookies and other web tracking technologies.