In force from 01.07.2018
1. BASIS FOR PROCESSING PERSONAL DATA
Managing Partner at Advokatfirmaet Føyen Torkildsen AS, org. 885 719 392, is the data controller for Personal Data processed by our company. Any inquiries related to Føyen Torkildsen’s processing of Personal Data may be sent to email@example.com.
2. INFORMATION WE COLLECT
Personal Data is defined as any kind of information that can be linked directly or indirectly to an individual.
In most cases, Personal Data is collected directly from you or generated in connection with your use of our services, however, it can also be obtained from publicly available registers, such as the Register of Business Enterprises, the Brønnøysund Register Centre, etc.
Føyen Torkildsen is obliged to carry out customer control according to Sections 6 to 13 and continuing follow-up pursuant to section 14, cf. Money Laundering Act Section 5. We ask our new customers, for example, for Personal Data such as their name, national identity number, e-mail address, and telephone number. Furthermore, we may require some additional information in order to keep our data up to date, or to verify that the information we collect is accurate.
Any processing of Personal Data by Føyen Torkildsen is carried out in accordance with applicable privacy legislation.
3. OUR USE OF THE PERSONAL DATA WE COLLECT
Personal Data collected by Føyen Torkildsen is used for the following purposes:
3.1. PROCESSING OF PERSONAL DATA RELATED TO OUR SERVICES
We use your Personal Data to fulfil our legal and contractual obligations, as well as to provide you with advice and services within our business areas. The purpose of the processing of Personal Data is to collect, control, and process the information before we make an offer and enter into an agreement. Furthermore, the purpose of the processing is to document, administer, and execute our tasks in order to provide our services as agreed. We also process Personal Data to fulfil our obligations according to law, regulations and/or governmental decisions.
We collect the following Personal Data about you in connection with our services:
- Name/name of the contact
- Date of birth/national identity number
- Telephone number
3.1.1. BASIS FOR PROCESSING
Føyen Torkildsen processes Personal Data based on
- Consent from the data subject of the entered agreement, (cf. GDPR Article 6 (1) b.),
- Fulfilment of legal obligations incumbent on Føyen Torkildsen (cf. GDPR Article 6 (1) c.), or
- Legitimate interests pursued by Føyen Torkildsen, or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data (see GDPR Article 6 (1) f.).
All employees at Føyen Torkildsen are also subject to the general duty of confidentiality and have each signed his/her own declaration of confidentiality.
3.2. PERSONAL DATA RELATED TO JOB APPLICATIONS
We collect the following Personal Data about you in relation to job applications:
- Name and address
- National identity number
- Telephone number
- Transcripts of of grade papers
3.2.1. BASIS FOR PROCESSING
Føyen Torkildsen processes Personal Data related to job applications based on:
- Fulfilment of an agreement with the party in question, or implementation of measures on the party’s request prior to conclusion of an agreement, cf. GDPR Article 6 (1) b.
- Consent from the data subject applying for the position, cf. Article 6 (1) a.
All employees at Føyen Torkildsen are also subject to the general duty of confidentiality and each of them has signed his/her own declaration of confidentiality.
3.3. PROCESSING OF PERSONAL DATA FOR MARKETING, INFORMATION, AND STATISTICAL PURPOSES
Føyen Torkildsen uses Questback to conduct surveys. We will always inform you about the purpose of the survey, and any answer we receive will be processed only in connection with the stated purpose. The surveys we send are usually not anonymous, unless the opposite is explicitly stated. If the survey is anonymous, Føyen Torkildsen will not collect any information that can be linked to you as an individual.
3.3.3. NEWSLETTERS AND INVITATIONS TO SEMINARS
Føyen Torkildsen regularly sends newsletters, seminar invitations, and other relevant news via e-mail to its customers and contacts who have agreed to this. In order for us to be able to send e-mail, we ask for contact information in the form of name, employer, and e-mail address. We collect information through regular customer contact, as part of delivering our services. Based on consent, we further collect information about persons signing up for our newsletters, and about persons participating in our seminars.
It is voluntary to receive newsletters and other information from Føyen Torkildsen. Therefore, you can always unsubscribe from our newsletters and seminar invitations. All our newsletters and seminar invitations contain a link to a page where you can unsubscribe.
Apsis is the data processor for Føyen Torkildsen’s newsletter and seminar invitations. All contact information submitted for registration is stored in a separate database. We always treat the information confidentially and never share the information with others. The information is deleted when you unsubscribe from our e-mailings and/or if we receive feedback that the e-mail is no longer active. This is in order to send only relevant information.
Føyen Torkildsen uses Apsis registration solution for registering participants for seminars and courses that we arrange. In this solution, you can register your participation in our seminars and courses by providing your name, employer, job title, and e-mail. We collect this information for the purpose of administration/coordination of our courses or seminars, for example, for sending registration confirmations or course material, for making nameplates, or for collection of course fees. In the case of paid seminars and courses, we will also request an invoice address upon registration. Personal Data collected and stored for managing the seminars and courses will be stored and processed as long as needed, and will be deleted as soon as the purpose for the processing expires.
4. SHARING INFORMATION WITH THIRD PARTIES
Personal Data for which Føyen Torkildsen is Data Controller will not be shared with third parties, with the exception of:
i) disclosure as a result of a legal obligation imposed on Føyen Torkildsen by, for example, tax or supervisory authorities.
5. INFORMATION SECURITY AND STORAGE PERIOD
Føyen Torkildsen has implemented organizational and technical measures to ensure that your Personal Data is processed securely and in accordance with the requirements for integrity, confidentiality, and availability of applicable privacy legislation.
Personal Data for which Føyen Torkildsen is the Data Controller, will be stored as long as you have a relationship with Føyen Torkildsen. Upon termination of the customer relationship, Føyen Torkildsen will delete this Personal Data. However, we may retain your Personal Data for as long as it is necessary to fulfil our obligations, and in accordance with the retention period stipulated by laws and regulations.
6. YOUR RIGHTS
As a customer of Føyen Torkildsen you have rights relating to the Personal Data we have registered about you. You can request access to Personal Data we have registered about you, for which Føyen Torkildsen is the Data Controller. You may also request correction, deletion, and limitation of the processing of your Personal Data in accordance with applicable data protection legislation.
Inquiries, as mentioned above, may be sent by e-mail to: firstname.lastname@example.org. Føyen Torkildsen will respond as soon as possible, and no later than 30 days after receiving the inquiry. If any unforseen special circumstances make it impossible to reply within 30 days, Føyen Torkildsen will provide a feedback that includes justification for the delay and information about the expected time of reply. Føyen Torkildsen may keep your Personal Data in order to fulfil our legal obligations and enforce our agreements.
If you believe that Føyen Torkildsen has not complied with your rights pursuant to the data protection legislation, you have the right to send a complaint to the Norwegian Data Protection Authority, which is the supervisory authority.