1. About the policy
2. Information We Collect
We collect personal information about you when you use our Website or if you take contact with us by phone, e-mail or social media.
The types of personal information we collect includes:
1) When you are online and use our Website
· IP address and cookie data
2) When you take contact with us
· Personal details which you enclose, for instance your name, address, date of birth, email address, phone number and other personal information
3. How we use your information
We only process your data when you have given consent to it or when we defined that we have a legitimate interest or a legal obligation for the processing.
The law on data protection sets out a number of different reasons for which a company may collect and process your personal data. These are set out below.
3.1. Where you have provided consent
We use your personal data to take contact with you if we need to provide or obtain additional information regarding the conversation which you initiated by contacting us.
For use of personal data and Cookies, see Cookies Policy
3.2. Where there is a Legitimate Interest
As a Company we are often required to process your personal data in order to carry out certain tasks relating to our business activities. In such cases, processing of personal data can be justified on grounds of legitimate interest.
Situations where we process personal information based on legitimate interest are:
· To comply with a request from you in connection with the exercise of your rights
· To protect against, identify and prevent claims, other liabilities or criminal activity.
· For network and information security in order for us to take steps to protect your information against loss or damage, theft or unauthorised access.
3.3. When we’re required to comply with our Legal Obligation
We’ll use your personal information to comply with our legal obligations including:
· To identify you when you contact us.
· To verify the accuracy of data that we hold about you.
· To assist the Police and/or other regulatory bodies in relation to an investigation by a public authority.
4. Who we share your personal information with
In addition, we may transfer your personal information to other organizations in certain scenarios. For example:
- If required to by law, under any code of practice by which we are bound or we’re asked to do so by a public or regulatory authority such as the Police.
- Information may also be shared with fraud prevention agencies to prevent fraudulent claims.
- If we need to do so in order to exercise or protect our legal rights, users, systems and services.
- In response to requests from individuals (or their representatives) seeking to protect their legal rights or the rights of others
5. International transfers of your personal information
If we do transfer information to our agents or advisers outside of the EEA, we will make sure that it is protected in the same way as if it was being used in the EEA. We’ll use one of these safeguards:
- We’ll transfer it to a non-EEA country with privacy laws that give the same protection as the EEA.
- We’ll put in place a contract with the recipient that means they must protect it to the same standards as the EEA.
6. How long we keep your personal information
We will keep your personal information up to 3 months after you interacted with us.
We may keep your data for longer than 3 months if we cannot delete it for legal, regulatory or technical reasons in order to respond to any questions or complaints, to show that we treated you fairly, to maintain records according to rules that applies to us or to establish, bring or defend legal claims. If we keep your data longer, we will make sure that your privacy is protected and only use it for those purposes.
We do not retain personal information in an identifiable format for longer than is necessary.
7. Your Rights
7.1. Access to Information held about you
You have the right to request what personal information we hold about you. If we agree that we are obliged to provide personal information to you (or someone else on your behalf), we’ll provide it to you free of charge. Before providing personal information to you or another person on your behalf, we may ask for proof of identity and sufficient information about your interactions with us that we can locate your personal information. Except in rare cases, we’ll respond to you within 30 days after we’ve received this information or, where no such information is required, after we’ve received your request.
If any of the personal information we hold about you is inaccurate or out of date, you may ask us to correct it.
In certain circumstances you have the right to request a copy of your personal information from us or to have that information passed to an organization of your choice in a format that can be easily re-used.
7.2. Right to stop or limit our processing of your data
You have the right to object to us processing your personal information if we’re not entitled to use it any more, to have your information deleted if we are keeping it too long or have its processing restricted in certain circumstances.
Where we rely on our legitimate interests, as set out under ‘How we use your personal information’, you may object to us using it for these purposes. If we agree that your objection is justified in accordance with your rights under data protection laws, we’ll permanently stop using your data for those purposes. Otherwise we’ll provide you with our justification as to why we need to continue using your data.
You can ask us to restrict the use of your personal information if:
· It isn’t accurate.
· It has been used unlawfully but you don’t want us to delete it.
· It’s not relevant any more, but you want us to keep it for use in legal claims.
· You’ve already asked us to stop using your data but you’re waiting for us to tell you if we’re allowed to keep on using it.
Please note that we may be required by law to retain certain information. Before we are able to provide you with any information or correct any inaccuracies, we may ask you provide other details to help us respond to your request.
If you would like to exercise these rights, please contact us.
8. Website Cookies
The purpose of our Cookies Policy is to help explain what they are, why you are collecting them, and what information cookies store.
Please refer to our Cookies Policy.
9. Security Measures
All companies within Elkjøp Nordic use technical and organisational security measures to protect the personal information supplied by you against loss, destruction, and any unauthorised access by third parties.
10. Links to other websites
11. Social Plugins
We use so-called social plugins (buttons) of social networks such as Facebook, You Tube, Instagram and LinkedIn.
After activation of a button, the social network can retrieve data, independently of whether you interact with the button or not. If you are logged on to a social network, the network can assign your visit to the website to your user account. A social network cannot assign a visit to websites operated by our other group companies unless you activate the respective button there as well.
If you’re a member of a social network and don’t want that network to combine data retrieved from your visit to our websites with data they hold on you, you must log out from the social network concerned before activating the buttons.
12. Contact us
If you have a question or a complaint about this policy or the way your personal information is handled, please contact us (contact details below).
Elkjøp Nordic AS
Nydalsveien 18 A
0484 Oslo, Norway
13. Complaining to the Data Protection Regulator
You have the right to complain to a Data Protection Regulator (Datatilsynet in Norway) if you are concerned about the way we have processed your personal information. Please visit Datatilsynet’s website for further details at: https://www.datatilsynet.no/
14. Changes to this Policy
We may review this policy from time to time and any changes will be notified to you by posting an updated version on our website.
Last update: October 2020