CXweb attaches great importance to cyber security, and data protection is a high priority. That is why we are constantly working on our security procedures so that they are always in line with the development of the industry. You can read more about data security and management on this page.
Securing your project
In order to avoid lost data, access for unauthorized or inappropriate user behavior, CXweb has implemented a number of security measures so that your project is in safe hands.
CXweb is SSL (Security Socket Layer) protected, which means that all data traffic between client and server is encrypted. In addition, we have our own SSL certificate, which ensures that you as a customer will always know that you are on the right website / server.
To prevent unauthorized access to private users, CXweb sets password security requirements. Passwords must be at least 8 characters long and consist of a mixture of upper and lower case letters and numbers. In addition, the user’s passwords are encrypted so that no one will be able to acquire access to them.
Project licenses on CXweb have full version of the users’ activities on the projects they are affiliated with. This means that it is possible to see who has done what for a given project, and CXweb has the opportunity to restore changed or deleted data.
Each user on a project is assigned a user privilege by the invitee. It is therefore possible to set the rights of the individual user in relation to viewing, creating and editing new or existing data.
On all CXweb’s web applications, there is project access restriction which provides impenetrable shutters between projects and unauthorized persons. If you are not logged in, you will not have access to project data or CXweb’s features.
You are always welcome to contact us for clarifying questions.
About CXweb and Personal Data
CXweb stores data for various purposes, including Customer / User Information and Project Data. Customer and User Information contains personal information and is therefore covered by the GDPR. The following describes what is stored by personal data, why and how we process your information. CXweb does not store any sensitive information.
Customer information contains the data provided when ordering a CXweb product through the order form on our website. When ordering, please request the following personal information:
- Your full name
- Your company
- Your e-mail address
- Your phone number
The legal basis for processing your information is our legitimate interest in processing your order. Subsequent processing is intended to fulfill the contract we have entered into with the company that you represent, including being able to contact you and deliver the products / services that we have agreed to. In addition, the contact information is used for invoicing and any. support.
We can provide customer information. interact with information about other customers, website visitors, etc., to create different kinds of statistics and statements. This treatment is in our legitimate interest to optimize current services or to develop new services.
After a contract is signed, the customer or the customer’s representative will be able to create a user on the commissioned project. When creating a user, the following personal information is requested:
- Full name of user
- The user’s business
- The user’s email address
- The user’s phone number
The user information is used on the user’s associated projects and will be available to view for other people associated with the same project as you.
The legal basis for the processing of your information is our legitimate interest in ensuring the correct and documented use of the purchased product. The user information is used for versioning and documenting the user’s behavior on the individual project. This is done, among other things, to help the client (and other users of the project) see who has done what and when.
The contractual duration of a project license may last longer than the individual user’s affiliation for the given project. If access for a user is removed from a project by the customer or a representative of the customer, the user’s name and company will remain on the project until the end of the license. Therefore, processing will continue even if the user’s access to the project is removed.
The legal basis for the continued processing of information is our legitimate interest in ensuring a proven use of the product. CXweb’s product builds on documentation of work done, and was just chosen by the customer to see all previous users’ activities. The processing of user information will therefore continue until the termination of a project according to the subscription license for the project. Upon acceptance by the customer or the customer’s representative, a user’s information can be completely removed by contacting CXweb.
Personal information in another context inquiries
If you contact us via contact forms on our website or in connection with other inquiries, your inquiry will sometimes contain personal information, for example. contact information, your association with a particular company or any other personal information you may provide to us. Among other things, we process this information in order to process and respond to your inquiry.
If, in an inquiry, you show interest in one of our products, or if you apply on behalf of a company, we may also register you and the information you provide us in our IT system as a potential lead or representative of a company , so we can contact you with information and offers on our products. Our legitimate interests are the potential sales of our products that we may obtain by using the information to contact you at a later date and / or our interest in contacting you as a contact person for the company you represent.
If an error message occurs when using CXweb’s products, such as error pages such as error 404 or 500, a registration will automatically be sent to CXweb. This registration contains the following login information: user ID (email), time of error message, as well as user IP and browser used. The legal basis for processing your information is our legitimate interest in ensuring a usable record of errors, and easier to follow up and correct the error messages.
As part of data protection law, you have some rights in our processing of your personal data. You have the right to:
- Request to gain insight into what information about you we process
- Request that we correct the personal information we process about you
- Request that we delete the personal information we process about you
- Request that we limit our processing of your personal data
- Request data portability as appropriate
- Object to our processing of your personal data
If you apply for a request to have your personal data corrected or deleted, we will investigate whether the conditions are met and, if so, make changes or deletions as soon as possible.
CXweb og Projektdata
CXweb stores anonymized project data. Data is anonymized to such an extent that no lines can be drawn between the project and its customer and user data. The treatment will include various types of statistics and inventories. The legal basis for processing project data is our legitimate interest in optimizing our current services or developing new services.
The following anonymized data is stored, if available:
- Type of project
- Project budget
- The size of the project
- Project cost / benefit data
- The project’s created register data
- including subject areas, plants and installations, verification methods and phases
Please note that personal data is not stored.
Knowledge sharing on CXweb’s platform
CXweb offers the ability to store specific documents and templates for internal business use on CXweb’s software. If this is chosen, the documents and templates mentioned will be stored and all users belonging to the given company will have access to use them.
CXweb offers the ability to store specific documents and templates for open use on CXweb’s software. If selected, the documents and templates mentioned will be stored and all users will be able to use them as long as CXweb wants to maintain this service.
Data processing agreement
Data processing agreement
When your company, like the data controller, uses a data processor (here CXweb), you must, according to the Personal Data Regulation, enter into an agreement with the data processor in the form of a data processor agreement. CXweb has drawn up a data processing agreement based on the Danish Data Protection Agency’s template, which can be adapted to the individual customer’s business. The agreement ensures that both the customer and CXweb operate on a common agreement basis that supports GDPR.
We encourage all existing customers who have an agreement with CXweb to enter into a data processing agreement by contacting us.
New customers will be sent CXweb’s template to the data processor agreement upon the purchase of the company’s first product.