USER AGREEMENT

for use of the web services provided by Skolplus AB, org. no. 556912-4760.

DEFINITIONS

We, Our, Us refers to Skolplus AB, Sweden.
The service refers to the web services skolplus.se and skolepluss.no and their content.
Licensee refers to the school, natural person or legal entity that has entered into an agreement with Skolplus AB regarding the Service.

1. PROVISION OF THE SERVICE

We provide the Service so that Licensees who have a valid license can access it via the Internet. We assign the Licensee account details for activation of the license. The licensee is then responsible for all management and possible creation of teacher and student accounts.

Private license may only be acquired by natural persons and only gives the right to use the Service for private use within the own household. Other use, e.g. in a school activity, is not permitted.

School license and class license only give the right to use the Service for the internal operations of students and staff belonging to the licensed school, class, organization or company. A school license gives the right to an unlimited number of students and teachers. Class license entitles a limited number of students and teachers, according to information when ordering.

The right to use the Service ends at the end of the license period. Licensee undertakes to immediately delete all downloaded printing material, fonts, computer programs and other downloadable material after the termination of the license. Licensee also undertakes to immediately destroy all remaining unused printed material.

2. USE

The service and its content are protected by Swedish copyright and may not be copied or further distributed in any form to third parties that are not part of the Licensee's license. The copyright belongs to Skolplus AB and the respective author.

Licensee must observe confidentiality regarding passwords and is not entitled to provide passwords to third parties that are not included in the Licensee's license or display passwords on the Internet or other places so that third parties can gain access to them. If this happens, we have the right to change the Licensee's password without notice.

Licensee may not attempt to circumvent the security system or attempt to test the security of the Service.

Licensee may not use the Product in a manner that could damage, disable, overburden, or impair or interfere with other Licensees' use of the Product.

The licensee is obliged to pay agreed fees for use of the Service. If this does not happen, we have the right to close the Licensee's access to the Service, permanently or temporarily.

3. LIMITATION OF LIABILITY

During the contract period, we have the right to modify the Service and to make additions to the Service or remove material and functions from the Service.

Temporary interruptions in the Service will occur due to upgrades, updates, technical errors and the like. We give no guarantees for the Service's availability.

If the service interruption lasts longer than 7 days, the fee can be reduced proportionally for that time. However, this does not apply if the operational interruption is due to the Licensee's own internal operational problems.

We are not responsible for any damages or losses, direct or indirect, due to use of the Service, content of the Service, lack of accessibility to or functioning of the Service.

4. OTHER

We use so-called cookies to facilitate visitors' use of the Service. The licensee consents to the use of cookies. The licensee can turn off cookies in their browser, but the Service will then not function correctly.

We reserve the right to change or adjust the terms of this user agreement by written notice to the Licensee with effect no earlier than 30 days from the Licensee receiving such notice.

The user agreement is governed by Swedish law. Any dispute regarding the agreement which cannot be resolved by negotiation between the parties shall be settled by a Swedish court.

PERSONAL DATA CONTRIBUTION AGREEMENT

1. PARTIES

Mellan Skolplus AB, Sweden, organization no. 556912-4760, ("Personal data controller") and the customer who subscribed to our services ("Personal data controller") enter into a personal data controller agreement as below.

2. PURPOSE

The purpose of this personal data processor agreement is to ensure that the Personal Data Processor's processing of personal data on behalf of the Personal Data Controller only takes place in accordance with the Personal Data Controller's instructions, in accordance with this processor agreement.

3. DEFINITIONS

This assistance agreement shall be interpreted in accordance with and have the definitions set out in the GDPR.

4. RESPONSIBILITY OF THE PERSONAL DATA CONTROLLER

The personal data assistant undertakes to only undertake personal data processing regarding agreed personal data in accordance with documented instructions from the Personal Data Controller and in accordance with this assistance agreement and instructions according to Appendix

1. The personal data assistant undertakes to comply with the law and the Data Protection Regulation in force at all times when processing personal data. In addition, the Personal Data Assistant undertakes to comply with regulations, positions and recommendations regarding permitted personal data handling, announced by the Privacy Protection Authority or relevant EU body.

2. The personal data assistant must take the necessary technical and organizational protection measures regarding the personal data, so that the processing meets the requirements of the Data Protection Regulation and protects the rights of the data subjects.

3. The personal data assistant must, according to the instructions of the Personal Data Controller, correct, delete or hand over incorrect, incomplete or out-of-date personal data without unreasonable delay.

5. SECURITY MEASURES

1. The personal data assistant must take and maintain appropriate technical and organizational security measures to protect the personal data, without being entitled to special compensation for this.

2. The personal data assistant's security measures must achieve the level of protection that follows from the applicable law and the Data Protection Ordinance and that is otherwise appropriate taking into account technical possibilities, cost of implementation, special risks with the processing and the extent to which the processed personal data is, or can likely be perceived as, sensitive .

3. The Personal Data Controller must ensure that employees, consultants and others for whom the Personal Data Controller is responsible and who process or have access to the personal data are bound by an appropriate confidentiality commitment and are informed about how personal data processing may take place in accordance with instructions from the Personal Data Controller.

The personal data assistant's technical and organizational security measures must be taken with consideration of the latest developments, implementation costs, the nature, scope, context and purpose of the personal data processing, including risks to natural persons' rights and freedoms of varying severity and degree of probability, in order to ensure an appropriate level of security in relation to the risk.

6. INCIDENTS

In the event of a confirmed or suspected security incident, such as unauthorized access, destruction, alteration or other unauthorized influence regarding the personal data, the Personal Data Officer must immediately investigate the incident, take appropriate measures to remedy the same and to prevent recurrence, and inform the Personal Data Controller by providing an Incident Report.

An Incident Report must at least contain a description of the nature of the incident, categories of and the approximate number of data subjects affected as well as the categories of and the approximate number of personal data items affected, description of likely consequences as a result of the incident and an action plan, if appropriate including measures to mitigate potential negative effects.

7. TRANSFER TO THIRD PARTIES

The personal data assistant may not transfer personal data to third parties and may also not disclose information about the personal data processing to third parties, without obtaining prior written approval from the Personal Data Controller.

8. SUBCONTRACTORS

For hiring or replacing a subcontractor for the performance of a task that includes personal data processing ("Subcontractor"), the Personal Data Subcontractor must first inform the Personal Data Controller.

9. VISIBILITY

In order to ensure the maintenance of an appropriate level of security and compliance with this assistance agreement, the Personal Data Controller has the right to the required transparency in the parts of the Personal Data Assistant's organization and systems that relate to the processing of personal data.

10. ASSIGNMENT OF AGREEMENT

Transfer of this assistance agreement may only take place in connection with the transfer of the Main Agreement and then in accordance with the same.

11. CONTRACT TERM

This Agreement applies between the parties as long as the Assistant processes Personal Data for which the Responsible Party is the Personal Data Controller. Upon termination of the assistance agreement, the Personal Data Assistant shall, in accordance with the instructions of the Personal Data Controller, delete or return all data containing personal data, on all media on which personal data has been fixed, and then delete any copies.

Appendix 1. INSTRUCTIONS FOR THE PROCESSING OF PERSONAL DATA

The purpose of the processing is for the personal data assistant to be able to provide teaching materials and teaching materials services.

The following personal data will be processed: Name, school location, contact details and other business-related information such as a student's results on exercises.

For school licenses: Students, school employees
For private licenses: Private individuals

Order processing Registration of invoices Administer user accounts Record results of exercises performed Support cases

Personal data is processed by Skolplus AB, Eskilstuna, Sweden
Personal data is stored on servers managed by Miss Hosting AB in Helsingborg, Sweden.