Privacy Policy (GDPR)

PRIVACY POLICY (GDPR)

1. Purpose
1.1 Flowerdirect AS has adopted this privacy policy to inform you how personal data is processed. Personal data is to be perceived as any information that may be used to verify the identity of a person including (but not limited to) first-name, surname, address, email address or other contact information regardless of said information relates to the private residence or workplace of the individual in question.
**2. Contact information **
2.1 Flowerdirect AS is the data controller and bears responsibility that your personal data is processed in concordance with existing laws. Contact information at Flowerdirect AS: Contact: Flowerdirect AS, Address: Håndverksveien 5, 1450 Langhus Organization number: 984 823 673 Tel.: +47 64 85 00 50 Email: ordre@flowerdirect.no Website: www.flowerdirect.no
3. Flowerdirect AS ensures fair and transparent data processing
3.1 When Flowerdirect AS requests your personal data, you are informed as to which data is being used and to what specific purpose. This information is available to you at the time of the collection of your personal data.
3.2 If Flowerdirect AS collects your personal data from other providers such as a public authority or business partner, you will be informed hereof no later than 10 days from the collection of the data. Flowerdirect AS must also disclose the purpose of the data collection and the legal framework permitting Flowerdirect access to your personal data.
4. Types of data collected
4.1 Flowerdirect AS uses personal data processing for news, marketing activities, handling of requests and offers, negotiations of possible cooperation’s and coordinating meeting and events. Processed data covers name, phone number, address, email, position, account details and related information.
4.2 Additionally FLOWERDIRECT AS may process personal data actively transferred to FLOWERDIRECT AS by that same person.
**5. Application and storage of collected personal data **
5.1 The purpose of collecting and processing personal data is to handle requests and orders, keep you up to date with news and changes within our business activities, sending you invitations to events and meetings and offers and marketing initiatives if you have accepted to receive such correspondence.
6. Storage
6.1 The information is stored for the allowed period of time only, and is deleted when the personal data is no longer required by FLOWERDIRECT AS. The duration of the time period depends on the type of the information and the reason for the storing.
7. Transmission of personal data
7.1 FLOWERDIRECT AS may transmit personal data to a third party only in compliance with regulations stated in this privacy policy.
7.2 FLOWERDIRECT AS may transmit or share personal data in order to abide by a judicial obligation. Transmission of data may also occur following directions by the court or other public authority for trademark protection, privileges or property rights. This includes the exchange of data with other companies and organizations as safeguard against fraud.
7.3 FLOWERDIRECT AS makes use of service providers and data processors acting on our behalf. These services include hosting and system maintenance, email service etc. Business partners have access to our data to the extent necessary to do their job and deliver requested services. Business partners are contractually obligated to handle data in absolute confidence and are not authorized to use data for any purpose other than those contractually stated to FLOWERDIRECT AS. FLOWERDIRECT AS supervises that business partners meet their commitments in this regard.
7.4 Should FLOWERDIRECT AS in exceptional cases transmit personal data to a service provider or data processor outside of the EU, FLOWERDIRECT AS guarantees this data transmission happen in accordance with legal requirements.
8. Cookies
8.1 What are cookies?
8.1.1 Cookies are little text files made up of letters and numbers stored on your computer or other unit. Cookies are created when visiting a website that employs cookies. They are used to save your browser history, to help you start where you left off on a previous visit to the website and they can remember your chosen language or other preferences.
8.1.2 If FLOWERDIRECT AS uses cookies you will be notified of the usage and purpose of the cookies collecting data. Before cookies are downloaded on to your computer FLOWERDIRECT AS must ask for your consent. Cookies necessary for functionality and settings may be employed without your consent.
8.2 FLOWERDIRECT AS uses the following types of cookies:
8.2.1 Technical cookies: Technical cookies are necessary for the functionality of most websites. They ensure you can stay on the website you are visiting.
8.2.2 You can choose not to accept cookies on your computer by adjusting your browser settings. Settings are adjusted differently dependent on which type of browser is in use. Be aware that if you decline cookies you also disable many internet functions and services.
9. Security
9.1 FLOWERDIRECT AS protects your personal data and has adopted internal data security policies containing guidelines and precautionary measures to protect your personal data from destruction, loss, alteration or unauthorized disclosure and to prevent from any unauthorized access to the data. 9.2 FLOWERDIRECT AS has set procedures for assignment of security levels for employees processing personal data containing information on personal interests and habits. To prevent loss of data FLOWERDIRECT AS makes ongoing backup copies of the personal data and protects data confidentiality and authenticity by use of encryption.
9.3 In the event of a data security breach implicating reasonable personal risk of discrimination, identity theft, economic loss, and damage to reputation or other significant downside, FLOWERDIRECT AS must inform you without undue delay.
10. Your rights
10.1 In general
10.1.1 To access your data in order to have it corrected or deleted or to protest our data processing, an enquiry for this must be made to FLOWERDIRECT AS. An answer will come as soon as possible and no later than a month from the time of the received enquiry.
10.2 Access to your personal data
10.2.1 If so requested at any time, the FLOWERDIRECT AS must inform you which data is processed, how and from where it was collected and how it is being used. You also have the right to be informed as to how long your personal data will be stored and who has access to your data in case of data transmission.
10.2.2 Access to your data in process can be obtained by request to FLOWERDIRECT AS. The access might be restricted in consideration of the privacy of other people or trade secrets and intellectual property rights.
10.2.3 To make use of your privileges a request must be made to FLOWERDIRECT AS. Contact information can be found under section 2.1. 10.3 Correction or deletion of incorrect data.
10.3.1 You have the right to have inaccurate personal data corrected. A request must be made to FLOWERDIRECT AS stating the inaccuracies as well as your corrections to the data.
10.3.2 In some cases FLOWERDIRECT AS has an obligation to delete your personal data if you so request.
10.3.3 You may also contact us for clarification if you believe your personal data is being processed against regulations or against other legal obligations.
10.3.4 If a request for correction or deletion of your personal data is made and the request is warrant, we seek to go through with the amendments to the data as soon as possible.
10.4 Objection to data storage and transmitting
10.4.1 You have the right to object to the processing of your personal data. You may also object to FLOWERDIRECT AS transmitting your data for sales promotion purposes. If your objection is warrant the processing of your personal data will be terminated.
10.4.2 You are entitled to receive the personal data you have made available for FLOWERDIRECT AS as well as data about you that has been collected from other operators with your consent. You are also entitled to have your data sent if FLOWERDIRECT AS handles your data as part of a contract in which you are a party. You also have the right to transfer these personal data to another provider of services. 11. Version 11.1 This privacy policy is valid from 25-09-2018.