1. INTRODUCTION

Ensurge Micropower ASA of Norway ("Ensurge") understands and respects your concerns about the use of your personal information, collected from you that identifies or is able to identify you, or other natural persons in the organization that you represent, as (a) natural person(s) ("Personal Information") through your use of the web site ensurge.com that Ensurge owns (the "Site"). The Site also includes versions designed for browsing on mobile devices and the use of such devices is governed by this Privacy Policy as well.

Except where otherwise expressly indicated herein or on the Site, this Privacy Policy applies only to information collected on the Site and does not apply to information collected outside of the Site. Before using or submitting information to the Site please review this Privacy Policy carefully.

If you are acting on behalf of others, you must ensure any other users of the Site are made aware of this Privacy Policy. You and such other users are collectively referred to as "you".

We believe that you should know which information we collect about you, and how that information is used, maintained, and, in some cases, shared. The following sets forth our privacy practices and policies, applicable to users of the Site. This Privacy Policy is part of the Ensurge Terms of Service

By using the Site, you agree to allow us to collect and process information as described below, even if that includes sensitive data.

This Privacy Policy does not apply to services provided by our business partners or other companies that Ensurge does not own or operate. For information on how other such providers of products or services process Personal Information, please consult their respective privacy policies.

2. ROLES AND PURPOSE

Ensurge is the data controller for your Personal Information.

The purpose of processing your Personal Information is to enable and enhance the use of the Site, including enabling additional services and functionality. What that means in terms of what data we collect and process, how and where we process it, and for how long, is described below.

It is important that you read this, as you by taking the Site into use, gives us and our partners your consent to process your Personal Information.

3. LEGAL BASIS FOR PROCESSING

The legal basis for the processing of Personal Information is your consent and data protection law.

Your Personal Information is processed in accordance with the Norwegian implementation of the General Data Protection Regulation ("GDPR") (EU) 2016/679. This gives you strong rights as a data subject. Hereunder you have the right to:

1. • Have your Personal Information deleted
   • Have any incorrect Personal Information corrected
   • Information from us, as data controller, regarding the data processing

Norwegian law applies. Exclusive legal venue is Oslo, Norway.

Any surrender of data is voluntary, but some basic information is needed to enable the Site to operate.

4. COLLECTED PERSONAL INFORMATION

If you register with Ensurge through the Site, Ensurge collects and processes information including name, company name, job title, physical and email addresses, phone numbers, and product interests.

In addition, Ensurge, through the Site, automatically collects and processes general data from your computer or mobile device, such as your web browser type and version, and operating system of your computer.

Some of the above data may be collected by use of cookies. Please see our Cookie Policy for more information.

We may process this Personal Information for purposes of operating, debugging, maintaining, improving, and optimizing the Site, marketing, and/or to maintain customer relationships. Ensurge performs analysis of the data, for the above purposes and also for the purpose of providing its business partners access to relevant data.

You consent to the above described collection and processing of Personal Information.

5. WHERE WE PROCESS PERSONAL INFORMATION

The Personal Information we collect from you may be transferred to and computer processed on servers placed in the United States and the European Economic Area (EEA), depending on your location, and the Site instance to which you connect.

The data is stored on servers belonging to Amazon.com, Inc., Seattle, Washington, USA and Google Inc., Mountain View, California, USA. These companies are certified under the EU US Privacy Shield framework. The EU Commission deems transfer of data to companies certified under the framework to offer adequate protection of personal data (more info).

The processing is conducted by personnel that may be located in the United States, Norway, India, and Russia.

You consent to the above described transfer and processing of Personal Information.

6. DATA SHARING

Ensurge does not share Personal Information for any commercial or marketing purpose unrelated to the delivery of Ensurge services without asking you first.

The following are the situations where we may share Personal Information:

1. 1. With your explicit consent: We may share Personal Information when we have your consent. One example of this would be if you sign up for additional programs offered by our partners. If you do this, we may share certain information with the partner.
   2. For external processing: We have vendors, service providers, and partners who may help with some of our data processing and storage, including customer support services at our partners. They may also assist with monitoring our servers for technical reasons. These vendors (as well as Ensurge personnel) can access certain information about you and your account in order to carry out their work. Such vendors are not allowed to use this data for non-Ensurge purposes.
   3. As part of business transitions: Upon the sale or transfer of the company and/or all or part of its assets, your Personal Information may be among the items sold or transferred. We will request a purchaser to treat our data under the Privacy Policy in place at the time of its collection.
   4. For legal reasons: We may provide information to a third party if we believe in good faith that we are required to do so for legal reasons. For example, to respond to legal process, or comply with EU law.
   5. We may share non-Personal Information (for example, aggregated or anonymized customer data) publicly and with our partners. For example, we may publish research, or help us generally improve our system. We may also share non-Personal Information with our partners, for instance if they are interested in offering other services on the Site. We take steps to keep this non-Personal Information from being associated with you and we require our partners to do the same.

You consent to the above described sharing of Personal Information.

7. SECURITY OF PERSONAL INFORMATION

Ensurge has implemented various physical, electronic and procedural safeguards to protect the confidentiality and security of Personal Information under our control. For instance, Ensurge limits access to Ensurge systems that store such information to authorized personnel. Ensurge also employs the Transport Layer Security (TLS) protocol to protect your Personal Information.

Ensurge will maintain your Personal Information for as long as a business need exists, or as required by applicable laws, regulations, or government orders. When we dispose of Personal Information, we use commercially reasonable procedures to erase or render it unreadable.

Ensurge restricts its personnel from processing user data without authorization by Ensurge. Ensurge will impose appropriate contractual obligations upon its personnel, including relevant obligations regarding confidentiality, data protection and data security.

Ensurge will not disclose any Personal Information to any government, except as necessary to comply with the law or a valid and binding order of a law enforcement agency.

8. CHANGES TO THIS POLICY

Ensurge may from time to time update this Privacy Policy. We encourage you to periodically review this Privacy Policy to be informed of the latest changes. Whenever a change to this policy is significant, we will place a prominent notice on ensurge.com/privacy, at least 10 days before the effective date.

If you have any questions regarding the terms of this policy, please contact Ensurge by writing to Ensurge Micropower ASA, House of Business, Fridtjof Nansen plass 4, 0160 Oslo, Norway.

Effective as of 1 November 2019