Integrity Policy for Protection of Personal Data

We respect your privacy. In this integrity policy for the protection of personal data (hereinafter referred to as the "Policy"), we describe how we process personal data, which personal data we collect, why we collect it, with whom we share the personal data, how we protect it and which choices you can make with respect to our processing of your personal data.

The Policy is applicable on all personal data as defined below collected, stored or processed by or on behalf of InsurAGI AB, reg. no. 559430-3397 (the "Company", "we" or "us") which has a connection to a specific individual in his/her relations with the Company as a customer, consumer or which is available in the public domain. The Company is responsible for the processing of personal data.

The Policy also includes all websites or mobile websites owned by the Company where personal data is processed, such as www.insuragi.com (such website, together with any other website owned by the Company, is hereinafter collectively referred to as the "Website"). The customer (hereinafter referred to as "you") consents through using the Company's services, or accessing the Website and/or conveying personal data (or other information) on the Website, or through the mobile application (the "App"), or through any social media channels, to that we collect and process the customer's personal data as described in this Policy.

The requirements and guidelines stipulated in this Policy are a supplement to applicable laws and regulations on protection of personal data and does not intend to replace any such applicable laws or regulations on protection of personal data. In the event of a conflict between applicable laws and regulations on protection of personal data and the requirements and guidelines in this Policy, the applicable laws or regulations on protection of personal data shall prevail.

The Company can amend this Policy at any time. It is recommended that you read this Policy from time to time via the Website in order to be updated in relation to any amendments to this Policy.

1. DEFINITIONS

In this Policy, a number of definitions are used. They have the following meanings:

• Processing: means any operation or set of operations performed on personal data, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
• EEA: means the European Economic Area (consisting of the countries being members in the EU, plus Iceland, Liechtenstein and Norway).
• Personal Data: means any information relating to an identified or identifiable living individual. An identifiable person is one who can be identified, directly or indirectly, by reference to identifiers such as name, identification number, location data, online identifier, or one or more factors specific to their physical, physiological, genetic, mental, economic, cultural or social identity. A description of which Personal Data that is processed by the Company can be found in Section 3 below.

2. MAIN PRINCIPLES IN THE POLICY

We appreciate to be given the confidence to process Personal Data and we are determined to process them in a correct, transparent and secure manner. We have, inter alia, the following main principles in our Policy:

• Collection of information: We only collect Personal Data in a correct, legal and transparent way.
• Data minimization: We limit the collection of Personal Data to what we deem to be relevant and important based on the purposes described in this Policy.
• Accuracy: We make sure that your Personal Data is kept updated and correct.
• Data security: We take appropriate technical and organizational measures in order to create an adequate level of security in relation to the risks inherent in the handling of the Personal Data to be protected. Such measures shall prevent unlawful disclosure of, or unlawful access to, Personal Data and also prevent accidents, losses, amendments or other unlawful processing.
• Availability and rectifications: We will process your Personal Data with your right to personal integrity taken into account.
• Storage of information: We will store your Personal Data in a way which is in accordance with applicable laws and regulations on protection of Personal Data. We will not store your Personal Data during a longer period of time than what can be deemed necessary based on the purposes described in this Policy.
• Third parties: We will ensure that access to, and transfer of, Personal Data by and to third parties are carried out in accordance with applicable laws and regulations on protection of Personal Data and that appropriate agreed security measures are taken in relation to such transfer.
• Direct marketing and cookies: When we send you advertisements or place cookies on your computer, we will ensure that it is done in accordance with applicable laws and regulations.

3. COLLECTION OF DATA

3.1 PERSONAL DATA THAT YOU GIVE DIRECTLY TO US

We may collect information directly from you when you leave information on the Website or in the App or when you call or e-mail us or leave information directly to us in any other way. We do, however, not knowingly collect data from individuals under 18 years of age.

The Personal Data that you leave directly to us can include:

• name, age, phone number, email-address, nationality, family members, credit card number
• information on insured or uninsured assets, insurance policies held
• information on prospective insurance claims related to damages/sickness, etc.

3.2 PERSONAL DATA WE COLLECT AUTOMATICALLY

When you visit the Website or in any other way communicate with the Company online, the following information can be collected, primarily for the purpose of maintaining site security, prevent fraud and improve user experience:

• IP-addresses, cookies (pursuant to the Company's Cookie Policy) and log-files
• connection times, technical user information
• technical and historical information from your browser such as language settings, previously visited websites and operative system