Privacy Policy for When in Norway AS, www.wheninnorway.no and www.oslohiking.no
This privacy policy describes what types of personal information When in Norway AS collects, and how those personal data are handled.
What is personal information
Personal information is information about an individual. This could be the person’s name, address, workplace, marital status, phone number, e-mail address etc. Information about your contact, reason for contact, and form of contact with When in Norway AS, can also be seen as personal information.
Sensitive personal information is neither collected, nor used by When in Norway AS. These are personal data such as criminal offences, crimes committed, health related issues, and similar.
Who is responsible for the handling of your personal information at When in Norway AS
When in Norway AS own Managing Director is responsible for the business’ handling of personal information. In the event of delegation in the future, it is solely the delegation of work related tasks that occur. The responsibility for any personal information is always carried by When in Norway AS.
Personal information received by When in Norway AS
When in Norway AS has two (2) sources of personal information, which both have basis in § 8 of the law of personal information.
- The main source of personal information, is information that you yourself provide. This happens primarily through the contact form on When in Norway AS website. The contact form functions as the meeting point between potential/existing customers and When in Norway AS. It is entirely voluntary if you wish to fill out such a form, or to remain a passive visitor on the site. Personal information that is collected via the contact form is phone number, e-mail, and name.
After use of the contact form, additional personal information may be generated through e-mail, phone and similar correspondence between When in Norway AS and you as a potential/existing customer.
- The second source of personal information, is information that When in Norway AS itself collects. This collection happens through the use of Google Analytics. The information that is collected is how long you stay on the site, your IP-address, which links you click, and how many users there are on the site at any given time, to name some.
How does When in Norway AS use the personal information
The purpose of the contact form and following correspondence, is to follow up requests and duties to the customer. When in Norway AS is dependent on an open platform as such between itself and the customer, in order to ensure satisfactory communication and end product.
The purpose of the information from Google Analytics, is to improve the website experience. This could for example be to make the layout more user friendly, understand user trends, improve its effectiveness, and deliver the expected services in a better way, and prevent criminal behaviour such as hacking.
The legal foundation for When in Norway AS handling of personal information, is § 11 of the law of personal information (“personopplysningsloven”).
How to administrate your own personal information
The limited amount of personal information When in Norway AS collects via you, and on their own initiative is, compared to other entities and web services, very marginal. This means that administration on the potential/existing customer’s part in regards to their personal information, such as their use in apps, and settings for personalised ads, is not applicable. The personal information that is collected is, as mentioned, not used for any such purposes.
Regardless, you still always have rights in regards to the personal information, which you can read more about below.
Sharing of personal information with third parties
When in Norway AS does not share any personal information from the contact form, collections or information from others with any third party. If such sharing were still to occur, you will always receive a consent request from us.
Secure archival, deletion and internal control
In league with the law of personal information § 13, all personal information received by When in Norway AS will be archived on either a secure e-mail or server for the duration of the work relationship between you and When in Norway AS. Upon termination of work relationship, all communication and personal information will be deleted within two (2) years.
When in Norway AS maintains internal control for such archival, security and deletion. These procedures are all carried out in compliance with legal standards.
Rights
Due to the law of personal information (“Personopplysningsloven”), you the user or customer of When in Norway AS , have a right to be forgotten, the right to data portability, the right to insight, and the right not to be profiled.
- The right to be forgotten, means that any and all personal information registered with When in Norway AS can be requested to be deleted. If this is not requested, When in Norway AS will still delete most personal information two years after end of contract.
- The right to data portability means that you may receive a digital copy of all personal information When in Norway AS has of you. This right also includes that you can bring this personal information to another business if it is technically possible, and defensible. Personal information that is covered by data portability is personal information given to When in Norway AS, like through the contact form, or automated personal information generated through use of When in Norway AS services.
- The right to insight means that you have the right to see what information When in Norway AS has registered on you.
- The Right against profiling gives you the right to refuse When in Norway AS to map your usage and pattern, and as such tailor our services to you based on this mapping. Typical examples would be personalised ads, service development, marketing surveys etc. This is however for the most part not applicable to When in Norway AS, as When in Norway AS has very little interest in or need for such width and depth mapping.
In order to use one or more of these rights, please contact us. You have a right by law to receive an answer from us within at least one (1) month.
Protection of children’s privacy
When in Norway AS has no wish or need to collect or handle personal information about children under the age of sixteen (16). Personal information of such nature must come through a legal guardian.
Any personal information left behind by children with When in Norway AS will be deleted as soon as it is discovered.
Ombudsman for privacy
When in Norway AS does not have a delegated ombudsman for matters of privacy and personal information, as the company is not a public business, does not handle sensitive personal data, does not carry out systematic mapping of individuals, and does not handle personal information regarding criminal offences.
Contact information
If you have any further questions regarding When in Norway AS privacy policy, or any other requests, you can contact the company.
Telephone: +47 22 20 80 00
E-mail: booking@wheninnorway.no