1. Introduction

North Precision VR AS («North Precision VR,» «we,» «us,» or «our«) provides PlanIt VR, a virtual reality platform for planning, designing, and validating technical installations directly inside scanned real-world spaces.

This Privacy Policy explains:

• what personal data and other user data we collect, process, and store,
• how we use that data,
• when we may share it,
• how long we retain it,
• how users may request access to or deletion of their data, and
• how to contact us about privacy matters.

This Privacy Policy applies to the PlanIt VR application, related web services, and associated support and administrative services, unless a separate privacy notice is provided for a specific service.

2. Who we are

Controller / company details
North Precision VR AS
Arne M Holdens vei 7
9700 Lakselv
Norway

Email: privacy@npvr.no
Website: www.npvr.no

If you have questions about this Privacy Policy or our handling of personal data, you can contact us using the details above.

3. What data we collect

Depending on how PlanIt VR is used, we may collect, process, or store the following categories of data:

A. Account and identity data

We may collect information needed to create, manage, and secure user accounts, such as:

• name
• email address
• company or organization name
• user role and permissions
• account identifiers
• login and authentication-related information

B. Project and workspace data

Because PlanIt VR is a professional collaboration and design platform, we may process and store content created or uploaded by users, including:

• project names and project metadata
• saved scenes and workspace configurations
• 3D models and related metadata
• uploaded files
• installation layouts and design data
• IFC exports and similar output files
• collaboration session data related to shared projects

C. Location scan and environment data

If users upload or work with scanned environments, point clouds, or room models, we may process and store:

• 3D scans of physical spaces
• point cloud files
• room or site models
• associated file metadata
• converted or optimized versions of uploaded files

These files may contain information about real-world environments and should only be uploaded by users who are authorized to do so.

D. Device, technical, and log data

To operate, secure, and improve PlanIt VR, we may collect technical information such as:

• device type
• operating system and app version
• crash reports and diagnostics
• IP address or approximate network information
• session timestamps
• server logs
• performance and usage logs
• identifiers needed to maintain sessions and service functionality

E. In-app usage and collaboration data

We may process information about how the service is used, such as:

• actions performed in the app
• feature usage
• session participation
• project activity
• collaboration events
• support-related records tied to account or project use

F. Support and communications data

If you contact us, we may store:

• your name and contact details
• the content of your message
• attached files or screenshots
• records of support requests and our responses

G. Data from platform providers or integrations

If PlanIt VR uses login, platform, storage, or content integrations, we may receive limited data needed to support those features, such as account identifiers, profile-related account data, or files and metadata made available through an authorized integration.

PlanIt VR currently integrates with 3Dfindit from Cadenas GmbH to support access to product-related 3D content and metadata.

4. How we use data

We use the data described above for the following purposes:

A. To provide the service

We use data to:

• create and manage user accounts
• authenticate users
• allow users to access projects and workspaces
• load, save, sync, and export project data
• enable collaborative VR sessions
• process uploaded files and convert them into supported formats
• provide core app and web platform functionality

B. To operate and secure the platform

We use data to:

• monitor uptime, reliability, and performance
• detect, prevent, and investigate misuse, unauthorized access, and security incidents
• troubleshoot bugs, crashes, and technical issues
• maintain backups, logs, and business continuity measures

C. To support customers and users

We use data to:

• respond to support requests
• investigate reported issues
• provide onboarding or technical assistance
• communicate about service-related matters

D. To improve PlanIt VR

We may use usage, diagnostic, and service data to:

• understand how features are used
• improve usability and performance
• prioritize bug fixes and new functionality
• improve file processing, collaboration, and administrative workflows

PlanIt VR does not currently use third-party analytics tools.

E. To meet legal and contractual obligations

We may process data to:

• comply with applicable law
• enforce our agreements and policies
• establish, exercise, or defend legal claims
• document business transactions and security events where necessary

5. Legal bases for processing

Where applicable law requires a legal basis, we generally process personal data on one or more of the following bases:

• performance of a contract: when processing is necessary to provide PlanIt VR and related services,
• legitimate interests: such as securing, operating, supporting, and improving the platform,
• legal obligation: where we must process or retain certain data to comply with law,
• consent: where consent is specifically required.

6. Sharing of data

We do not sell personal data.

We may share data only as necessary in the following situations:

A. With service providers

We may use carefully selected service providers to help us operate PlanIt VR, such as providers for:

• cloud hosting and storage
• authentication
• logging and monitoring
• file processing
• customer support
• infrastructure and security services

These providers may process data on our behalf under appropriate contractual and security obligations.

B. Within customer-controlled workspaces

PlanIt VR is built for collaboration. Data shared within a project or workspace may be visible to authorized users from the same customer organization or to other participants whom the project owner or administrator has granted access.

C. For legal or security reasons

We may disclose data where necessary to:

• comply with applicable law or lawful requests,
• protect our rights, users, customers, or systems,
• investigate fraud, abuse, or security issues.

D. In a corporate transaction

If North Precision VR AS is involved in a merger, acquisition, financing, reorganization, or sale of assets, relevant data may be transferred as part of that process, subject to appropriate safeguards.

7. Data retention

We retain data only for as long as necessary for the purposes described in this Privacy Policy, including to provide the service, maintain security, comply with legal obligations, resolve disputes, and enforce agreements.

Retention periods may vary depending on the type of data:

• account data is generally retained while the account remains active and for a reasonable period afterward,
• project and workspace data is generally retained until deleted by the customer or user, unless retention is required for technical, contractual, backup, or legal reasons,
• support records and logs may be retained for a limited period as needed for troubleshooting, security, and operational purposes,
• backup copies may persist for a limited period before being overwritten or securely deleted.

8. International transfers

We may process or store data in countries other than the country where the user or customer is located. Where required, we use appropriate safeguards for international data transfers, such as contractual protections or other lawful transfer mechanisms.

9. Security

We use reasonable technical and organizational measures designed to protect data against unauthorized access, loss, misuse, alteration, or disclosure. These measures may include access controls, authentication safeguards, encrypted communications, logging, backup routines, and role-based permissions.

However, no system can be guaranteed to be completely secure, and users should also take appropriate steps to protect account credentials and control access to uploaded data.

10. Children

PlanIt VR is intended for professional and organizational use and is not directed to children. We do not knowingly collect personal data from children through PlanIt VR. If you believe a child has provided personal data to us in connection with the service, please contact us so that we can review and, where appropriate, delete the data.

11. Your rights

Depending on your location and applicable law, you may have rights such as:

• the right to request access to personal data,
• the right to request correction of inaccurate data,
• the right to request deletion of personal data,
• the right to object to or restrict certain processing,
• the right to data portability,
• the right to withdraw consent where processing is based on consent.

If you are using PlanIt VR through an organization, some requests may need to be handled through your organization’s administrator, especially where the organization controls the account or workspace.

12. How to request deletion of your data

If you want us to delete personal data or user data that we have collected or stored, you may submit a deletion request by contacting us at:

Email: privacy@npvr.no
Subject line: Data Deletion Request – PlanIt VR

Please include enough information for us to identify your account or the relevant data, such as

• your full name,
• email address,
• company name,
• a description of the data you want deleted.

We may need to verify your identity or confirm that you are authorized to request deletion of the relevant data.

After verification, we will review your request and delete data we are able to delete within a reasonable period, unless we are required or permitted to retain certain data for legal, security, contractual, backup, fraud prevention, or legitimate operational reasons. If we cannot fully delete certain data, we will explain the reason in our response.

Where PlanIt VR is used through an employer or customer organization, some data may be controlled by that organization. In such cases, we may direct the request to the relevant administrator or coordinate with that organization as needed.

13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the “Last updated” date above and may provide additional notice where appropriate.

14. Contact us

North Precision VR AS
Arne M Holdens vei 7
9700 Lakselv
Norway

VAT ID: NO 932 359 448 MVA

Email: privacy@npvr.no
Website: www.npvr.no