Privacy and cookie policy

Last update: January 16th 2020

1. Introduction

This is the Privacy and Cookie Policy of Smart Solutions. These Policies are between you as a User (“you”, or “your”);

And the legal entity that acts under the applicable laws and regulations as the Data Processor, and in that capacity is responsible for the processing of (personal) data:

Smart Solutions ehf (Company id 680995-2499) Vsk id 81978, Iceland (“we”, “us”, “our”)

We promise to implement the highest standards of privacy and data protection when we design our products and services, offering them to you. For us, the following three key principles play a central role in our privacy and data protection policies:

  1. 1. You own your personal data;
  2. 2. We keep your data secure, and work only with parties that maintain the same high level of data security;
  3. 3. We are always transparent about the way we treat your personal data.

If you visit our website and use our services, you acknowledge and agree that we store, collect and use your (personal) data in an automated way. We take all appropriate and necessary security measures in order to prevent unauthorized access to, disclosure or modification of all the data we collect and process, and we follow certain organizational procedures to adhere to all privacy and data protection laws that may apply.

If you have any doubts or questions about our privacy and data protection policies, or if you want to exercise your legal rights, please email us at:

2. Your Privacy

This Privacy and Cookie Policy has been prepared based on multiple legislations for which we take full responsibility, including Art. 13/14 of Regulation (EU) 2016/679 (General Data Protection Regulation), the California Consumer Privacy Act of 2018 and the US Children's Online Privacy Protection Act 1998 (COPPA).

All information requested by us is obligatory in order to use our services, and your refusal or failure to provide your (personal) data could hinder your access to our services. We may indicate that some specific (personal) data may not be necessary to provide in order to use our services. If you have questions about which personal data we collect, and is mandatory to provide, please request more information at:

We represent and warrant that we use industry standards to protect your (personal) data. However, you are aware that there is no method of electronic storage that is absolutely safe, and 100% secure on the internet.

As part of our business practice, we may authorize and appoint third-parties, including but not limited to (technical) service and hosting providers, mail carriers, agents and contractors that handle your (personal) data. Upon request, we will provide the most recent list of all the above-mentioned third-parties.

3. Collection and Use

We collect and process different types of information and (personal) data necessary in order to provide and improve our services to you:

Device Brand and MakeContact full name
Contact emailCompany name
Contact phone numberCompany ID number
Company invoice emailCredit card token

Personal Data

We solely collect and process specific information and (personal) data, when:

  1. a. You have given us your consent;
  2. b. It is necessary for the performance of a contractual or pre-contractual duty with you;
  3. c. We have to adhere to a legal obligation to which we are subject;
  4. d. The handling of (personal) data is carried out in the public interest;
  5. e. When the handling of (personal) data is for our legitimate interests or those of third-parties.

Retention Time

Your (personal) data shall be stored for as long as the legitimate purpose requires it, typically for six (6) months. However, there are circumstances under which we retain (personal) data for a longer period of time, for example when you have not withdrawn your consent or in case of a legal obligation or judicial order. Once the retention period expires, we may delete your (personal) data permanently, and as a result your right to access, erase and amend your (personal) data cannot be exercised.

Usage Data and Device Data

Usage data we collect may include the date and time you logged in, app features you used, searches, click path and pages you visited. In addition we may collect Device data, which may include IP and MAC address, type of device and ID, specific apps settings, app crash reports, browser type and version, language settings, and your geolocation based on Bluetooth, Wi-Fi information and GPS.

4. Our Responsibility


We, our employees, agents, and affiliates are fully responsible for your personal information. We may also use the services of third-parties and may share your (personal) data with them.Some of these third-parties may be located outside Iceland, namely in the United States or the European Economic Area. In that case, the transfer of (personal) data to these third-parties will only be done after we have evaluated and fully assessed their privacy policies and they are in accordance with the highest standards of personal data protection and all necessary legal safeguards.

Children’s Protection

Under no circumstances, persons under the age of thirteen (13) may use our Services or visit our Website according to the US Children's Online Privacy Protection Act 1998 (COPPA). Our services are restricted to Users who are eighteen (18) years of age or older, or an adult according to the applicable law. We do not allow Users under the age of eighteen (18) on our website and platform and we do not collect and process personal information from anyone under the age of eighteen (18). If you suspect a User is under the age of thirteen (13) or eighteen (18), please report this immediately to us.

Your Rights

You may exercise certain rights. You have the right to:

  • • Withdraw consent where you have previously given it to the storing and processing of your personal data;
  • • Object to the storing and processing of your (personal) data;
  • • Verify the correctness and accuracy of your (personal) data and ask for updates and corrections;
  • • Demand the full erasure of all of your data from us;
  • • Receive your data in a commonly used and machine-readable format and, have it transmitted to another controller without any hindrance;
  • • Bring a claim before the competent, and national Data Protection Authority (DPA).

5. Why we process your data

Here we explain the exact reasons and purposes why we process your data:

  • • To provide services to you;
  • • To communicate with you by telephone and email;
  • • To provide you with information relating to other services;
  • • To grant you access to our services, and specific features of our services;
  • • To give customer support for technical matters;
  • • To monitor the way you use our service;
  • • To detect and prevent fraud or any other illegal or unauthorized activity;
  • • To evaluate and improve our website, app and services;

6. Third-party controllers and processors

We employ third-party service providers and companies with whom we share personal data. Those service providers will only have access to data to perform tasks on our behalf. The third parties that are mentioned in this Privacy and Cookie policy operate their respective services independently from us. You agree and acknowledge you have read and fully understand their respective privacy and data protection policies. We have no control whatsoever over it, and assume no liability for the privacy policies or related practices of any third-party website.

Third-Party Service Providers

Name + CompanySub-Processing ActivitiesCountry of OperationsLink to Privacy Policy
Google Analytics (Google LLC)Visitor’s/User’s data and analyticsUSA
Apple Pay (In-App Purchase) (Apple Payments Inc)Subscribed User’s data and analyticsUSA
Google Pay (Google LLC)Payment data processingUSA
Valitor hf.Payment data processingIceland
Borgun hfPayment data processingIceland ogfraedi/Borgun%C2%B4s%20Privacy%20Policy.pdf

7. Cookies

We use cookies and other tracking technologies to monitor all activities on our website and in our app. Cookies are small files with data, containing a so-called anonymous identifier. Cookies can be sent to your browser from a website you visit, and subsequently stored on your computer or phone. You can change your browser settings in order to reject all cookies or to request a notification when a cookie is being sent. However, if you do not accept cookies, you may not be able to use our services.

8. Amendments to this Privacy Policy

We may amend our Privacy and Cookie Policy from time to time, which changes are effective when they are posted on this page. We advise you to review our Website and this Privacy Policy from time to time.

9. Legal Information

This privacy statement has been prepared based on provisions of multiple legislations, including Art. 13/14 of Regulation (EU) 2016/679 (General Data Protection Regulation). And the California Consumer Privacy Act of 2018. This Privacy and Cookie Policy relates solely to Smart Solutions Ehf., if not stated otherwise within this Privacy Policy.

Supported by:
Tækniþróunarsjóður logo


Smart Solutions ehf.

Trademark notice:

Apple Wallet is a trademark of Apple Inc.,
registered in the U.S. and other countries and regions.