Privacy Policy – Metinor 

Processing of Personal Data

Privacy and information security are important to us in Metinor. We will process your personal data lawfully and securely. On this page, you can read about how we handle your personal data.

Introduction

This privacy policy explains how Metinor AS ("we," "us," "our") collects and uses (processes) personal data in our operations. Metinor AS, represented by the Managing Director, is the data controller for the processing.

Our contact information:

  • Metinor AS
  • Address: Nordregate 18, 7011 Trondheim, Norway
  • Telephone: +47 99 55 44 19
  • Org. No.: 931 720 961
  • Email: post@metinor.com

Your Rights

If you wish to exercise any of your rights, you can email us at post@metinor.com. You are entitled to a response as soon as possible, and no later than 30 days.

  • Access and correction of your data: You can request a copy of all the information we process about you and ask us to correct inaccurate information.
  • Deletion or restriction of data processing: In some situations, you can ask us to delete and/or restrict the processing of your personal data.
  • Object to data processing: If we process your data based on our tasks or a balance of interests, you have the right to object to our processing of your data.
  • Data portability: If we process your data based on consent or a contract, you can request that we transfer your data to you or another data controller.

You can file a complaint with the Norwegian Data Protection Authority about our processing of personal data. We hope you will notify us first so that we can resolve the issue satisfactorily.

Who We Process Personal Data About

  • Customers
  • Potential customers
  • Website visitors
  • Newsletter subscribers

How We Collect Personal Data

Providing personal data to us is voluntary. However, we require certain data to deliver our products or services and complete transactions. We do not rent, buy, or sell personal data from/to third parties. We do not use automated decision-making or profiling in our processing of your personal data.

We process personal data when someone:

  • Enters into an agreement to purchase products/services from us
  • Sends us emails, SMS, social media messages, or other correspondence
  • Signs up for our newsletter
  • Registers for digital events (courses, lectures, workshops, etc.), both free and paid
  • Uses our website (see the section on cookies)
  • Submits an inquiry via communication tools or contact forms on our website
  • Responds to a survey

Categories of Personal Data, Purpose, and Legal Basis

We process personal data under the following legal bases from Article 6(1) of the GDPR:

  • (a) "consent": when you have given us your consent
  • (b) "contract": to fulfil an agreement to which you are a party or to take steps at your request before entering into an agreement
  • (c) "legal obligation": to comply with a legal requirement
  • (f) "legitimate interest": to pursue a legitimate interest that we believe outweighs the individual's right to privacy

We process personal data related to:

  1. Inquiries from youPurpose: To respond to inquiries, keep records, and have documentation in case of complaints or legal claims.Legal basis: GDPR Article 6(1)(f).
  2. Purchase of Products and ServicesPurpose: To deliver products and services and maintain a history of sales.Legal basis: GDPR Article 6(1)(b) or 6(1)(c).
  3. Marketing in Existing Customer RelationshipsPurpose: To provide excellent customer service and offer relevant products/services.Legal basis: GDPR Article 6(1)(f) or 6(1)(a).
  4. NewsletterPurpose: To inform about news and offers and to provide good customer service.Legal basis: GDPR Article 6(1)(a).
  5. Events, Including Digital EventsPurpose: To offer relevant courses and workshops.Legal basis: GDPR Article 6(1)(a) or 6(1)(b).
  6. SurveysPurpose: To collect feedback or opinions as described in each survey.Legal basis: GDPR Article 6(1)(a).

Suppliers, Partners, and Data Processors

When you engage with us as a supplier, partner, or data processor, we process personal data like contact information.

Purpose: To establish agreements.

Legal basis: GDPR Article 6(1)(b).

Website Use

We process data like IP addresses and technical data collected through cookies and analytics tools when you use our website.

Purpose: To enhance user experience and improve services.

Legal basis: GDPR Article 6(1)(f).

Cookies and Analytics Tools

Cookies are text files stored in your browser. We use cookies for analytics and to improve our website.

  • Google Analytics: Tracking user behavior
  • Hubspot: Tracking user behavior
  • WordPress: For comments

Social media cookies from Facebook and LinkedIn may track your activity and provide insights. You can disable cookies in your browser settings.

Data Sharing

We may share your personal data with:

  • Data processors (e.g., IT and accounting service providers)
  • Professional advisors (e.g., legal and financial experts)
  • Public authorities (as required by law)

We ensure data protection agreements are in place with all processors.

Transfer of Data Outside the EU/EEA

We may transfer your data outside the EU/EEA using appropriate safeguards. Contact us for more information.

Security

We prioritize data security using strong passwords, encryption, access controls, and backups. In case of a data breach, we will notify the Data Protection Authority within 72 hours and affected individuals if needed.