Our address is: Peak Sunnfjord, Hafstadvegen 23-25, 6800 Førde.
Our organisation number is: 921 192 622
The address of our website is: www.norsefeedback.no
Our organization Norse Feedback is responsible for processing personal data.This policy contains information you are entitled to when we are collecting information from our website (section 19 of the Norwegian Personal Data Act, Chapter 3, Article 13 – Part 1) and general information on how we process personal information (Norwegian Personal Data Act §18, Chapter 3, Article 13 – part 2).
What personal information we collect, and why we do it
Cookies are small text files being placed on your computer when you visit a website. The object is to make the user-experience better for you by allowing the website to remember your settings, what pages you have visited, login and username, and other information that you have posted and want the website to remember so you do not have to reenter it when you revisit the website.
When you visit our website, we collect unidentifiable information about the visit through Google Analytics. The sole purpose of this is to compile statistics that we use to improve and further develop the information provided on the website.
Examples of information provided to us through statistics, are the numbers of visits on different pages on our website, how long a visit lasts, what websites users come from, and what browser is being used.
This information is being processed in a unidentified and aggregated form. With unidentified we mean that we can not trace any information gathered back to a individual user. We collect the entire IP-address, but the IP-address will be unidentified so that merely the first 3 groups of the address is being used to generate statistics. This means that if the IP-address consists of the numbers 188.8.131.52, that only the numbers 195.159.103.xx will be used. In addition, the IP-addresses will be processed on a aggregated level, meaning that all data will be combined into one group and not processed individually.
Examples of cookies being used for Google Analytics are:
_ga: Deleted automatically after 2 years. Being used to separate users from one other.
_gid: Deleted automatically after 24 hours. Being used to separate users from one other.
_gat: Deleted automatically after 1 minute. Being used to distribute traffic/queries. When Google Analytics is being distributed through Google Tag Manager, this information is being called _dc_gtm_.
- Mediebruket: Slik kan du sjå kva informasjonskapslar som vert brukt på ei nettside
- Nettvett.no: Slik administrerer du korleis ei nettside nyttar informasjonskapslar
Built-in content from other websites
Pages and articles on this website can contain content (i.e.videos, pictures, articles, sharing in social medias etc.) from other websites. Such built-in content from other websites functions just like when you visits the websites directly.
Email and phone
Norse Feedback uses email, online project tools, the CRM system Monday.com and telephones as a part of our daily work. The employee responsible for the dialogue with those who contact us, also has the daily responsible for processing any personal data received in this context.
In Monday.com, the following is being stored:
- Phone number
- E-mail address
- Phone number
- Number of employees
Every employee is responsible for deleting messages and information that is no longer applicable, and at least once a year go through and delete unnecessary content in the email inbox or on the telephone. The project manager in Norse Feedback will send out a reminder to all employees in the first quarter of every new calendar year. If an employee leaves the company, this employees email account will be deleted, however, some emails may be transferred to colleagues.
Please note that regular email is non-crypted. We will therefore encourage you not to send any confidential or sensitive information through emails. This also includes usernames and passwords.
Information regarding employees in Norse Feedback
We process personal information regarding our employees in order to manage salaries and other personnel responsibility. Legal basis follows from Article 6 (1) (b) in the GDPR. It is the CEO of Norse Feedback and our accountancy firm Vest Rekneskap AS who has the daily responsibility for this. Necessary information that is needed to pay out wages, i.e. basic data, wage level, time registration, tax rate, tax municipality, union membership and other statutory registrations. Other information about the employee is related to his/her work instruction and facilitation of work.
Procedures of deleting information about personnel follows the Norwegian Act of Accounting and Norwegian Act of Filing. Information such as name, position and occupation, along with email address and telephone number that belongs to the organization, are considered public information and will be published at our website.
Any applications for positions available at Norse Feedback sent to us by email will be stored at the CEOs email archive. Relevant information will be stored in a database where only the CEO has access. This information will not be deleted unless the applicant specific asks for it. Unless the applicant has asked us to store his or hers application and CV for future available positions at the company, it will be deleted after 1 year.
Personnel files will be sorted after an employee leaves the company and personal information will be deleted/destroyed.
Who do we share your information with
Norse Feedback is the controller for any data collected through this website: www.norsefeedback.no
Information will only be shared within the company if necessary. Information will no be shared outside Norse Feedback without the consent of the person the information is regarding.
Employees of Norse Feedback that receives health information through support service, shall process these in seperate systems with strict access restriction. The access to health information is controlled by a need to provide service and/or support. Our terms of regulations regulates specifically who has access to health information.
Processing such information builds mainly on consent from the person the information is regarding (Article 6 (2) (a)), but could also in some specific cases be processed in pursuant of Article 6 (2) (f).
Health information will not be shared or extradited, and the main rule for such information is to delete/destroy it immediately after contact, unless otherwise has been agreed upon.
Administrative information such as name, phone number, email etc. will be stored in a personal and password protected telephone/computer, and all email accounts and programs used by employees in Norse Feedback are also protected by usernames and passwords. The infrastructure of Norse Feedback is protected by a code lock from Intin AS, who also administers backoffice and keeps a log of all logins or attempted logins.
If an employee leaves Norse Feedback, this information could be transferred to another employee within the company. Any information not transferred will be deleted.
The legal basis for processing personal data of employees is in pursuant with Article 6 (1), letter (a), or letter b), that processing is necessary to fulfill the employment contract or agreement with the employee. In addition to Article 6 (1) (f).
The basis for processing sensitive information, such as health information is in pursuant with Article 9 (2) (a) where the subject has given her/his explicit consent, or Article 9 (2) (b) where the information is necessary for Norse Feedback to be able to fulfill obligations or execute rights that follows the Norwegian Labour Law.
The overall legal basis to process personal information is that the processing is necessary to provide the service Norse Feedback is obliged to provide to our customers or collaborators.
Your rights and contact information
You have a number of statutory privacy rights. You can use these by either contacting us, or the Data Protection Authority.
- Access: Information we have stored about you
- Correction: Correct and add information about you
- Delete: Ask us to delete any information we no longer have any need to keep
- Limitation: Ask that we limit your information
- The right to receive information regarding breaches of personal information security
- The right to complaint to the Data Protection Authority
If you have any questions on how we store personal information about you when you are using our services, and i.e. wants us to delete or edit any information we store about you, send us an email at email@example.com or contact any of us directly through our website: www.norsefeedback.no