Privacy
Last updated: February 11, 2026
1. Introduction
Intoto AS (“we”, “our”, or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website intoto.io and use our water management services.
Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the site.
2. Information We Collect
Information You Provide to Us
We may collect information you provide directly to us, such as:
- Contact Information: Name, email address, phone number, and company name when you fill out our contact form or request a demo
- Account Information: Username, password, and profile information if you create an account
- Communication Data: Any information you provide when you contact us for support or inquiries
- Business Information: Organization name, job title, and industry sector
Information Collected Automatically
When you visit our website, we may automatically collect certain information, including:
- Device Information: Browser type, operating system, device type, and screen resolution
- Log Data: IP address, access times, pages viewed, and referring URL
- Location Data: General geographic location based on IP address
- Cookies and Similar Technologies: See our Cookie Policy section below
3. How We Use Your Information
We use the information we collect for various purposes, including to:
- Provide, maintain, and improve our services
- Respond to your inquiries and provide customer support
- Send you technical notices, updates, and administrative messages
- Communicate with you about products, services, and events
- Monitor and analyze trends, usage, and activities
- Detect, investigate, and prevent fraudulent transactions and abuse
- Personalize and improve your experience
- Comply with legal obligations
4. Legal Basis for Processing (GDPR)
If you are located in the European Economic Area (EEA), we process your personal data based on the following legal grounds:
- Consent: Where you have given us explicit consent to process your data
- Contract: Where processing is necessary for the performance of a contract with you
- Legal Obligation: Where we need to comply with a legal requirement
- Legitimate Interests: Where we have a legitimate business interest that does not override your rights
5. Cookies and Tracking Technologies
Essential Cookies
These cookies are necessary for the website to function and cannot be disabled. They include cookies for:
- Session management
- Security features
- User preferences (such as theme selection)
Analytics Cookies
With your consent, we use analytics cookies to understand how visitors interact with our website. We use:
- Google Analytics: To analyze website traffic and usage patterns
- Vercel Analytics: To monitor website performance
- Microsoft Clarity: To analyze user behavior through session recordings and heatmaps
- Apollo.io: To find and manage potential business customers and support sales outreach
You can manage your cookie preferences through our cookie consent banner or by adjusting your browser settings.
6. Data Sharing and Disclosure
We may share your information in the following circumstances:
- Service Providers: With third-party vendors who perform services on our behalf (hosting, analytics, email delivery)
- Legal Requirements: When required by law or to respond to legal process
- Business Transfers: In connection with a merger, acquisition, or sale of assets
- Protection of Rights: To protect the rights, property, or safety of Intoto, our users, or others
We do not sell your personal information to third parties.
7. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence. When we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as:
- Standard Contractual Clauses approved by the European Commission
- Adequacy decisions by the European Commission
- Other legally approved transfer mechanisms
8. Data Retention
We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. The retention period may vary depending on the context and our legal obligations.
9. Your Rights
Depending on your location, you may have the following rights regarding your personal data:
- Access: Request a copy of your personal data
- Rectification: Request correction of inaccurate data
- Erasure: Request deletion of your data (“right to be forgotten”)
- Restriction: Request limitation of processing
- Portability: Request transfer of your data to another service
- Objection: Object to processing based on legitimate interests
- Withdraw Consent: Withdraw consent at any time where processing is based on consent
To exercise any of these rights, please contact us at hi@intoto.io.
10. Data Security
We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.
11. Children’s Privacy
Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.
12. Changes to This Policy
We may update this privacy policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the “Last updated” date. We encourage you to review this policy periodically.
13. Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us:
Intoto AS
Email: hi@intoto.io
Address: [Your business address]
For data protection inquiries in the EU, you may also contact your local data protection authority.