Privacy Policy

Last updated: November 4 2025

This Privacy Policy explains how Figurement ApS (“we” “us” “our”) collects uses and shares personal data when you use our website and services.

Who We Are

Figurement ApS is a company registered in Denmark under CVR DK44894777. We are the data controller for your personal data under the General Data Protection Regulation.

What Data We Collect

We may collect the following types of personal data

• Identity data
  Name username company name if applicable

• Contact data
  Email address phone number billing contact details

• Technical data
  Internet protocol address browser type device type operating system and basic diagnostics such as error codes and performance metrics

• Usage data
  Pages viewed feature usage clicks session duration and similar events

• Billing and transaction data
  Billing address tax country plan and transaction records
  We do not store payment card numbers. Payments are processed by Stripe

• Support data
  Messages files screenshots and other information you share with our team

• Consent records
  Date and version of our Terms that you accepted
  For audit and fraud prevention we may also store your internet protocol address and browser user agent at the time of acceptance

How We Collect Data

• Direct interactions such as forms and emails
• Automatic collection through cookies and similar technologies
• Third parties such as Stripe email delivery and hosting providers

Why We Use Your Data

We process personal data to

• Deliver and maintain the service and core features
• Create and manage user accounts and authentication
• Process payments invoices and tax calculations
• Provide support and respond to requests
• Improve safety security and reliability of the service
• Send optional marketing with your consent
• Keep consent records and comply with legal obligations

Legal Basis

We rely on

• Contract
  To provide the service you requested and to manage your account

• Legal obligation
  Tax and accounting records compliance requests and consent documentation where required

• Legitimate interests
  Service improvement security abuse prevention analytics that do not identify individuals and consent audit trails including limited technical data at the time of Terms acceptance

• Consent
  Marketing communications and any optional cookies that are not strictly necessary

Marketing Communications

We send marketing only if you have opted in. You can withdraw consent at any time by using the unsubscribe link in any email or by updating your settings in the product. Withdrawal does not affect the lawfulness of processing before withdrawal.

Sharing Your Data

We share personal data with

• Payment processing
  Stripe for subscriptions and transactions

• Cloud infrastructure and email delivery
  Hosting content delivery logging monitoring and transactional email

• Professional advisers
  Accountants and legal counsel where needed

• Public authorities
  When required by law or valid legal process

All vendors act as processors under written data protection terms.

International Transfers

Data may be transferred outside the EU or EEA for example to the United States. We rely on appropriate safeguards such as Standard Contractual Clauses adequacy decisions or other approved mechanisms.

Cookies

We use cookies and similar technologies to run the site and to understand product usage. Strictly necessary cookies operate without consent. Optional cookies are used only with your consent which you can manage through our cookie banner or your browser settings.

Roadmap voting widget

On pages with the roadmap voting widget we process

• Your votes and optional name
• A pseudonymous visitor id created from your internet protocol address and browser user agent using a secret salt
• A truncated internet protocol address
• Page address and referrer
• Language and time zone
• Window size and screen size

Purpose
Keep the feature reliable and prevent abuse

Legal basis
Legitimate interests

Retention
Up to ninety days

No cookies and no third party analytics are used for this widget.

Data Security

We use technical and organizational measures to protect personal data against accidental or unlawful destruction loss alteration or unauthorized access. Access to production data is limited and logged.

Data Retention

We keep personal data only as long as necessary for the purposes described in this policy

• Account data and content
  For the life of the account and for a short period after deletion to allow recovery if requested

• Billing and transaction records
  For the period required by tax and accounting law

• Consent records for Terms acceptance and marketing
  For the life of the account and for up to five years after account closure unless a longer period is required by law

• Logs and diagnostics
  Typically ninety days unless needed to investigate abuse or security incidents

Your Rights

Under GDPR you can request

• Access to your personal data
• Correction of inaccurate data
• Deletion in applicable cases
• Restriction or objection to certain processing
• Data portability

To exercise these rights contact
gdpr@figurement.com

You also have the right to lodge a complaint with Datatilsynet the Danish Data Protection Agency.

Changes to This Policy

We may update this policy from time to time. We will post the updated version on this page and change the date at the top. If changes are material we will provide a notice in the product or by email.

Contact

For questions or data requests contact

Email
gdpr@figurement.com

Address
Solbjerg Hedevej 87
8355 Solbjerg
Denmark