Privacy Policy

Privacy policy for Kiona

Privacy Policy

Information about the processing of personal data

Kiona Privacy Policy explains how Kiona uses personal information we collect about you when you use our website or engage or communicate with us.

When referring to Kiona, this covers Kiona AS, a Norwegian company with the address Leirfossvegen 27, 7038 Trondheim, Norway, and all its group companies. When dealing with one of the Kiona group companies, the controller of your data will be the company that decides how and why your data is processed.

Where this privacy policy refers to “we,” “our," or “us” below, this shall mean the particular company that is the controller of your data.

1.1 What personal data do we collect?

We may collect personal data that you provide us through various channels, including websites, social media, events, telephone contacts, email, or otherwise. Such data may include:

  • identification information, e g name, and surname;
  • contact details, e g postal address, e-mail address, phone number;
  • job title, if you are acting in a professional context;
  • records of correspondence with the company and responses to our surveys. 
  • We also collect personal data by automatic means when using our website.

1.2 How do we use your personal data?


We will retain and evaluate information on your recent visits to our website and how you move around different sections of our website for analytics purposes to understand how people use our website so that we can make it more intuitive. We also use data collected via website access for purposes of targeted online advertising.


In order to subscribe to our newsletter, you must provide your name and email address. When you subscribe, you consent to us storing this information in a list on our newsletter platform until you decide to opt-out. We will only use the personal data you have provided to send you newsletters, and we will not share your contact information with any third parties. You always have the option to opt-out of any further newsletters at any time.

Client and other direct relationships

We will process personal data to manage and maintain inquiries, client relationships, and other applicable relationships, e g when communicating with, following up, carrying out deliveries, and otherwise fulfilling our contracts.

We may also process personal data to send out information on offers and marketing materials as well as to conduct customer surveys in relation to clients or persons representing clients.

If you agree, we will share your data with our partner companies so that they may offer you their products and services.

We will process the personal data necessary to fulfill our contractual obligations.

We will, where applicable, process personal data based on a legitimate interest to manage client relationships and other applicable relationships, e g in order to provide appropriate service and information on our products.

We will, in specific cases, process personal data according to consent, e g in relation to certain marketing.

1.4 Do we share personal data with anyone?

We do not share, sell, lease or exchange your information with third parties without your consent, with the following exceptions.

Third-party service providers working on our behalf

We may pass your data on to our distributors, agents, subcontractors, or other associated organizations to provide services to you on our behalf.

We work with third-party product supplies to provide you with products and services. When you ask about or buy one or more of these products, the relevant product provider will use your data to provide you with information and carry out the duties stipulated in the contracts you have entered into with them. In some cases, these product providers will act as data processors of your data, so we encourage you to read their privacy policies and sign a data processing agreement. These third-party product providers share your data with us, and we use this information per this privacy policy.

Use of subcontractors as data processors

We may use subcontractors to process personal data on our behalf. In this case, we are responsible for ensuring that they comply with this privacy policy and applicable privacy laws by signing a data processing agreement.

If the subcontractor processes personal data outside the EU/EEA, we will ensure that such subcontractor is bound by EU Standard Contractual Clauses for transfer to a third country or arrange other safeguards, if applicable, to ensure that the transfer and processing are in compliance with applicable laws. You are, under Data Privacy Laws upon request, entitled to receive a copy of any documentation demonstrating that appropriate safeguards have been taken in order to protect your personal data during a transfer outside the EU/EEA. You can do so by reaching out to our Data Processing Officer via

Requirements under law

We may disclose personal data if required by law or court order or as necessary to safeguard our rights under legal proceedings.

1.5 How long do we store personal data?

1.6 How do we secure the processing of personal data?

We will meet the security requirements set out in applicable privacy laws. The level of security will take into account the nature of the personal data and the risk of a data breach of the data subject.

We have established procedures and measures at various levels to ensure that non-authorized persons cannot access your personal data and that all data processing is performed according to applicable laws. The security measures include regular risk assessments, technical systems, and procedures to ensure information security.

1.7 What information requirements does the data subject have?

As the data subject, you have the right:

  • to gain access to the personal data about you that we process;
  • to request that incorrect, unnecessary, insufficient, or outdated personal data be rectified or removed;
  • to object to the processing from direct marketing as well as to know about any profiling;
  • to withdraw any consent to the processing of personal data that you have granted us;
  • to download the personal data about yourself that you have given us and transfer it to another data controller (data portability);
  • to contact us if you have any input or questions related to our processing of personal data;
  • to complain directly to supervisory authorities if you consider that the processing of your personal data violates the applicable laws.

1.8 Cookies

Cookies are text files placed on your computer to collect standard Internet log information and visitor behavior information. When you visit our websites, we may collect information from you automatically through cookies or similar technology. Please find our cookies policy here.

1.9 Changes to the Privacy Policy

We publish any changes to this privacy policy on the company's website. This privacy policy was last updated on 2022-06-14.

1.10 How can you contact us?

If the Client has any questions or requirements related to our processing of personal data, they can contact our Data Protection Officer via

All inquiries related to personal data where Kiona is the data processor should go directly to the data controller.