Personvernerklæring

Nordic Driftspartner AS

Privacy Policy

1. Introduction and Company Information

This Privacy Policy explains how Nordic Driftspartner AS collects, uses, stores, shares, and protects personal data when you visit our website, contact us, use our services, or otherwise interact with us.

Data Controller: Nordic Driftspartner AS
Address: Dronningens gate 23, 0152 Oslo, Norway
Email: [email protected]
Phone: +47 21 58 74 39

Nordic Driftspartner AS operates in the field of operations services. Depending on the nature of the assignment, we may process personal data relating to customers, contact persons at business partners, suppliers, subcontractors, website visitors, and other individuals who communicate with us.

2. Data Collection and Processing

We may collect and process the following categories of personal data:

  • Identification and contact information: name, job title, company name, email address, phone number, postal address.
  • Communication data: correspondence, inquiries, feedback, and records of meetings or calls.
  • Contract and service data: information necessary to establish, manage, and perform agreements.
  • Billing and payment data: invoicing details, payment status, and related accounting information.
  • Technical data: IP address, browser type, device information, log data, and cookie-related information where applicable.
  • Operational data: information required to deliver, coordinate, and document operational services.

We generally collect personal data directly from you, from your employer or organization, from publicly available sources, from business partners, or through our website and technical systems.

3. Purpose of Data Processing

We process personal data for the following purposes:

  • to respond to inquiries and maintain communication;
  • to enter into and perform contracts;
  • to provide, administer, and improve our operational services;
  • to manage customer and supplier relationships;
  • to handle invoicing, accounting, and tax obligations;
  • to maintain security, prevent misuse, and detect fraud or unauthorized access;
  • to comply with legal obligations and regulatory requirements;
  • to document activities and ensure quality control;
  • to develop and improve our business operations and internal processes.

4. Legal Basis for Processing

We process personal data only where we have a valid legal basis, including:

  • Performance of a contract: where processing is necessary to enter into or perform an agreement with you or your organization.
  • Legal obligation: where processing is required to comply with applicable laws, including accounting, tax, and record-keeping obligations.
  • Legitimate interests: where processing is necessary for our legitimate business interests, such as managing operations, securing systems, and communicating with customers and partners, provided these interests are not overridden by your rights and freedoms.
  • Consent: where we rely on your consent for specific processing activities, such as certain marketing communications or optional cookies, if applicable.

5. Data Sharing and Third Parties

We may share personal data with third parties when necessary for the purposes described in this Privacy Policy. Such recipients may include:

  • IT and system providers, including hosting, cloud, email, and support services;
  • accountants, auditors, legal advisors, and other professional advisers;
  • payment service providers and banks;
  • subcontractors and business partners involved in delivering operational services;
  • public authorities, courts, or regulators where required by law.

We require third parties that process personal data on our behalf to protect the data and to process it only according to our instructions and applicable law.

6. Data Transfer to Third Countries

In some cases, personal data may be transferred to or accessed from countries outside Norway and the European Economic Area (EEA). If such transfers occur, we will ensure that appropriate safeguards are in place, such as:

  • an adequacy decision by the relevant authorities;
  • standard contractual clauses or equivalent transfer mechanisms;
  • additional technical and organizational safeguards where necessary.

You may contact us for more information about international data transfers and the safeguards used.

7. Storage Duration

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, unless a longer retention period is required or permitted by law.

  • Contractual and customer-related data are generally retained for the duration of the relationship and for a reasonable period thereafter.
  • Accounting and tax records are retained for the period required by applicable law.
  • Communication records are retained as long as needed to handle the matter and for documentation purposes.
  • Technical logs are retained for a limited period unless needed for security investigations or legal claims.

When personal data is no longer needed, we will delete, anonymize, or securely archive it in accordance with applicable requirements.

8. User Rights

Subject to applicable law, you may have the following rights regarding your personal data:

  • Access: to obtain confirmation of whether we process your personal data and receive a copy of it.
  • Rectification: to request correction of inaccurate or incomplete data.
  • Erasure: to request deletion of your data in certain circumstances.
  • Restriction: to request that processing be limited in certain situations.
  • Data portability: to receive data you have provided to us in a structured, commonly used, machine-readable format, where applicable.
  • Objection: to object to processing based on legitimate interests or to direct marketing, where applicable.

To exercise your rights, please contact us using the details provided below. We may request additional information to verify your identity before responding to your request.

9. Withdrawal of Consent

Where we process personal data based on your consent, you may withdraw that consent at any time. Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.

If you withdraw consent, we will stop the relevant processing unless we have another lawful basis for continuing it.

10. Right to Complain

If you believe that our processing of your personal data does not comply with applicable privacy laws, you have the right to lodge a complaint with the relevant supervisory authority.

In Norway, this is the Norwegian Data Protection Authority (Datatilsynet). We encourage you to contact us first so that we can address your concerns directly.

11. Data Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, loss, or destruction. These measures may include access controls, authentication procedures, encryption where appropriate, backup routines, staff confidentiality obligations, and internal policies governing data handling.

While we take reasonable steps to secure personal data, no method of transmission or storage is completely secure. We therefore cannot guarantee absolute security.

12. Contact Information

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

Nordic Driftspartner AS
Dronningens gate 23, 0152 Oslo, Norway
Email: [email protected]
Phone: +47 21 58 74 39

13. Changes to Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, legal requirements, or other operational needs. The updated version will be published on our website or otherwise made available to you.

We encourage you to review this Privacy Policy periodically to stay informed about how we process personal data.

4/15/2026 Hjem