Information about the processing of personal data
When referring to Kiona, this covers Kiona AS, a Norwegian company with the address Leirfossvegen 27, 7038 Trondheim, Norway, and all its group companies. When dealing with one of the Kiona group companies, the controller of your data will be the company that decides how and why your data is processed.
1.1 What personal data do we collect?
We may collect personal data that you provide us through various channels, including websites, social media, events, telephone contacts, email, or otherwise. Such data may include:
- identification information, e g name, and surname;
- contact details, e g postal address, e-mail address, phone number;
- job title, if you are acting in a professional context;
- records of correspondence with the company and responses to our surveys.
- We also collect personal data by automatic means when using our website.
1.2 How do we use your personal data?
We will retain and evaluate information on your recent visits to our website and how you move around different sections of our website for analytics purposes to understand how people use our website so that we can make it more intuitive. We also use data collected via website access for purposes of targeted online advertising.
In order to subscribe to our newsletter, you must provide your name and email address. When you subscribe, you consent to us storing this information in a list on our newsletter platform until you decide to opt-out. We will only use the personal data you have provided to send you newsletters, and we will not share your contact information with any third parties. You always have the option to opt-out of any further newsletters at any time.
Client and other direct relationships
We will process personal data to manage and maintain inquiries, client relationships, and other applicable relationships, e g when communicating with, following up, carrying out deliveries, and otherwise fulfilling our contracts.
We may also process personal data to send out information on offers and marketing materials as well as to conduct customer surveys in relation to clients or persons representing clients.
If you agree, we will share your data with our partner companies so that they may offer you their products and services.
1.3 What is the legal basis for the processing of personal data?
We will process the personal data necessary to fulfill our contractual obligations.
We will, where applicable, process personal data based on a legitimate interest to manage client relationships and other applicable relationships, e g in order to provide appropriate service and information on our products.
We will, in specific cases, process personal data according to consent, e g in relation to certain marketing.
1.4 Do we share personal data with anyone?
We do not share, sell, lease or exchange your information with third parties without your consent, with the following exceptions.
We may pass your data on to our distributors, agents, subcontractors, or other associated organizations to provide services to you on our behalf.
Use of subcontractors as data processors
If the subcontractor processes personal data outside the EU/EEA, we will ensure that such subcontractor is bound by EU Standard Contractual Clauses for transfer to a third country or arrange other safeguards, if applicable, to ensure that the transfer and processing are in compliance with applicable laws. You are, under Data Privacy Laws upon request, entitled to receive a copy of any documentation demonstrating that appropriate safeguards have been taken in order to protect your personal data during a transfer outside the EU/EEA. You can do so by reaching out to our Data Processing Officer via firstname.lastname@example.org.
Requirements under law
We may disclose personal data if required by law or court order or as necessary to safeguard our rights under legal proceedings.
1.5 How long do we store personal data?
1.6 How do we secure the processing of personal data?
We will meet the security requirements set out in applicable privacy laws. The level of security will take into account the nature of the personal data and the risk of a data breach of the data subject.
We have established procedures and measures at various levels to ensure that non-authorized persons cannot access your personal data and that all data processing is performed according to applicable laws. The security measures include regular risk assessments, technical systems, and procedures to ensure information security.
1.7 What information requirements does the data subject have?
As the data subject, you have the right:
- to gain access to the personal data about you that we process;
- to request that incorrect, unnecessary, insufficient, or outdated personal data be rectified or removed;
- to object to the processing from direct marketing as well as to know about any profiling;
- to withdraw any consent to the processing of personal data that you have granted us;
- to download the personal data about yourself that you have given us and transfer it to another data controller (data portability);
- to contact us if you have any input or questions related to our processing of personal data;
- to complain directly to supervisory authorities if you consider that the processing of your personal data violates the applicable laws.
Cookies are text files placed on your computer to collect standard Internet log information and visitor behavior information. When you visit our websites, we may collect information from you automatically through cookies or similar technology. Please find our cookies policy here.
If the Client has any questions or requirements related to our processing of personal data, they can contact our Data Protection Officer via email@example.com.
All inquiries related to personal data where Kiona is the data processor should go directly to the data controller.