Legal

Privacy policy

Last updated: 1 May 2026

1. Who we are

This privacy policy describes how Grab Solutions SIA (registration number 44103125349, registered office Riga, Latvia; hereinafter — “NorriWire”, “we”, “us”) processes personal data collected when you visit norriwire.com or norriwire.eu.

We are the data controller within the meaning of the EU General Data Protection Regulation (GDPR, Regulation 2016/679) and the Republic of Latvia’s Personal Data Processing Law.

2. Contact information

Data controller: Grab Solutions SIA
Reg. No.: 44103125349
Address: Riga, Latvia
Email for data enquiries: [email protected]

3. What data we collect

3.1. Technical data (automatic)

When you visit our site, we automatically collect the following technical data, which is necessary to provide the service:

IP address (anonymised — the last octet is dropped before collection)
Browser and OS: type, version, language
Referrer source: the URL you came to us from (if any)
Visited pages and time: which pages you opened and how long you viewed them

This data is kept in server logs for up to 30 days, after which it is automatically deleted.

3.2. Cookies

We use cookies to operate the service and for anonymised analytics. Detailed information is in our cookie policy.

3.3. Data you provide voluntarily

You can voluntarily provide us with the following data:

Email address — when you sign up for our newsletter
Email content — when you write to us at [email protected]
Comments and feedback — if accepted in forms

3.4. Affiliate data

When you click an affiliate link on our site and sign up for a service, the partner (e.g. an exchange) may report whether the conversion took place. We do not receive your name, email, or any other personal information — only a confirmation that someone from our link converted, in pseudonymised form.

4. Why we process data (purposes and legal basis)

Purpose	Legal basis
Operation of the website	Legitimate interest (GDPR 6(1)(f))
Technical security and fraud prevention	Legitimate interest (GDPR 6(1)(f))
Anonymised usage analytics	Legitimate interest; consent for cookies
Email newsletter	Consent (GDPR 6(1)(a))
Replying to your messages	Consent / legitimate interest
Compliance with legal obligations	Legal requirement (GDPR 6(1)(c))

5. How long we retain data

Server logs: 30 days
Anonymised analytics: up to 14 months
Email correspondence: up to 3 years after last contact
Newsletter subscriptions: until you unsubscribe
Affiliate conversion data: up to 24 months (per partner agreements)

6. Who we share data with

We do not sell or rent your data. We share data only with:

Cloud-service providers — Amazon Web Services (Frankfurt, eu-central-1), Cloudflare (CDN, WAF), Google Firebase (eu-north-2 / eu-north-1). All services are located in or comply with an EU adequacy decision.
Email sending and subscription management service — we use Google Reader Revenue Manager (Google LLC, USA) to handle email newsletter subscriptions, which processes your email address in accordance with their privacy guidelines and GDPR compliance (utilizing the EU-US Data Privacy Framework or standard contractual clauses).
Law-enforcement authorities — only if we receive a lawful request (court order, summons).

7. Data security

We apply the following technical and organisational security measures:

HTTPS across the entire site with modern TLS ciphers
Cloudflare WAF against DDoS and application-layer attacks
We follow the “minimum necessary” principle — we collect only what is needed
Access control — administrators access data only on a need-to-know basis
Regular security updates for the server and dependencies

8. Your rights (GDPR Articles 15–22)

You have the right to:

Access — request a copy of the data we process about you
Rectify — request correction of inaccurate data
Erase (“right to be forgotten”) — request deletion when there is no longer a processing purpose
Restrict — request processing restriction in specific cases
Portability — receive your data in a machine-readable format
Object — to processing based on legitimate interest
Withdraw consent at any time (without affecting the lawfulness of prior processing)
Lodge a complaint with the State Data Inspectorate (in Latvia) www.dvi.gov.lv or with the data-protection authority of your country of residence

To exercise these rights, write to [email protected]. We respond within 30 days (or 90 days in more complex cases, with an explanation).

9. Data transfers outside the EU

Our principal service providers are located in the EU (AWS Frankfurt, Firebase eu-north). In some cases, Cloudflare may route data through its global network under standard contractual clauses (SCCs) per GDPR Article 46.

10. Children’s privacy

The NorriWire service is not intended for children under 16. We do not knowingly collect data from children. If we discover that we have collected data from a child, we will delete it without delay.

11. Changes to this policy

We may update this policy to reflect new features or legal requirements. For significant changes we will notify you on the site or by email (newsletter subscribers). The current version date is shown at the top of the page.

12. Related documents

Legal

Privacy policy

Last updated: 1 May 2026

1. Who we are

We are the data controller within the meaning of the EU General Data Protection Regulation (GDPR, Regulation 2016/679) and the Republic of Latvia’s Personal Data Processing Law.

2. Contact information

Data controller: Grab Solutions SIA
Reg. No.: 44103125349
Address: Riga, Latvia
Email for data enquiries: [email protected]

3. What data we collect

3.1. Technical data (automatic)

When you visit our site, we automatically collect the following technical data, which is necessary to provide the service:

IP address (anonymised — the last octet is dropped before collection)
Browser and OS: type, version, language
Referrer source: the URL you came to us from (if any)
Visited pages and time: which pages you opened and how long you viewed them

This data is kept in server logs for up to 30 days, after which it is automatically deleted.

3.2. Cookies

We use cookies to operate the service and for anonymised analytics. Detailed information is in our cookie policy.

3.3. Data you provide voluntarily

You can voluntarily provide us with the following data:

Email address — when you sign up for our newsletter
Email content — when you write to us at [email protected]
Comments and feedback — if accepted in forms

3.4. Affiliate data

4. Why we process data (purposes and legal basis)

Purpose	Legal basis
Operation of the website	Legitimate interest (GDPR 6(1)(f))
Technical security and fraud prevention	Legitimate interest (GDPR 6(1)(f))
Anonymised usage analytics	Legitimate interest; consent for cookies
Email newsletter	Consent (GDPR 6(1)(a))
Replying to your messages	Consent / legitimate interest
Compliance with legal obligations	Legal requirement (GDPR 6(1)(c))

5. How long we retain data

Server logs: 30 days
Anonymised analytics: up to 14 months
Email correspondence: up to 3 years after last contact
Newsletter subscriptions: until you unsubscribe
Affiliate conversion data: up to 24 months (per partner agreements)

6. Who we share data with

We do not sell or rent your data. We share data only with:

Cloud-service providers — Amazon Web Services (Frankfurt, eu-central-1), Cloudflare (CDN, WAF), Google Firebase (eu-north-2 / eu-north-1). All services are located in or comply with an EU adequacy decision.
Email sending and subscription management service — we use Google Reader Revenue Manager (Google LLC, USA) to handle email newsletter subscriptions, which processes your email address in accordance with their privacy guidelines and GDPR compliance (utilizing the EU-US Data Privacy Framework or standard contractual clauses).
Law-enforcement authorities — only if we receive a lawful request (court order, summons).

7. Data security

We apply the following technical and organisational security measures:

HTTPS across the entire site with modern TLS ciphers
Cloudflare WAF against DDoS and application-layer attacks
We follow the “minimum necessary” principle — we collect only what is needed
Access control — administrators access data only on a need-to-know basis
Regular security updates for the server and dependencies

8. Your rights (GDPR Articles 15–22)

You have the right to:

Access — request a copy of the data we process about you
Rectify — request correction of inaccurate data
Erase (“right to be forgotten”) — request deletion when there is no longer a processing purpose
Restrict — request processing restriction in specific cases
Portability — receive your data in a machine-readable format
Object — to processing based on legitimate interest
Withdraw consent at any time (without affecting the lawfulness of prior processing)
Lodge a complaint with the State Data Inspectorate (in Latvia) www.dvi.gov.lv or with the data-protection authority of your country of residence

To exercise these rights, write to [email protected]. We respond within 30 days (or 90 days in more complex cases, with an explanation).

9. Data transfers outside the EU

10. Children’s privacy

The NorriWire service is not intended for children under 16. We do not knowingly collect data from children. If we discover that we have collected data from a child, we will delete it without delay.

Privacy policy

1. Who we are

2. Contact information

3. What data we collect

3.1. Technical data (automatic)

3.2. Cookies

3.3. Data you provide voluntarily

3.4. Affiliate data

4. Why we process data (purposes and legal basis)

5. How long we retain data

6. Who we share data with

7. Data security

8. Your rights (GDPR Articles 15–22)

9. Data transfers outside the EU

10. Children’s privacy

11. Changes to this policy

12. Related documents

Norriwire Briefing

Privacy policy

1. Who we are

2. Contact information

3. What data we collect

3.1. Technical data (automatic)

3.2. Cookies

3.3. Data you provide voluntarily

3.4. Affiliate data

4. Why we process data (purposes and legal basis)

5. How long we retain data

6. Who we share data with

7. Data security

8. Your rights (GDPR Articles 15–22)

9. Data transfers outside the EU

10. Children’s privacy

11. Changes to this policy

12. Related documents