When you interact with Viete's website or use our services we collect various pieces of information about you called personal data. We take your privacy seriously and will always process your personal data in accordance applicable privacy legislations, including the EU General Data Protection Regulation ("GDPR").
This privacy policy explains what personal data Viete collects, for which purposes we process your data when you interact with our web site and use our services.
Personal data is any piece of information that can be directly or indirectly linked to a physical person, such as a name, address, e-mail, IP address and mobile number.
Zarium AS, Pedersgata 19, 4013 Stavanger, Norway ("Zarium") is the data controller responsible for the processing of your personal data.
This privacy policy covers our processing of personal data concerning:
We can collect your personal data in different ways:
We receive personal data directly from you when you visit our website or create an account in order to use Viete's services. This information is necessary for us to manage the service you have requested, and to follow up on your inquiries etc.
We receive personal data indirectly from you when you use our services, for example our websites. This information is important to be able to improve and further develop the services we offer you.
We receive personal data from third parties when you come into contact with our partners via distribution channels that are connected to our distribution channels, or if your information is available in public registers. This information is important for us to be able to improve and adapt the services we offer you.
It is voluntary to share your personal data with us. However, certain information may be necessary to be able to perform any agreement that you have entered into with us, including, among other things, information that is used in connection with invoicing.
When you use our services or interact with us on our website, we may in general collect the following categories of personal data about you:
You can read more about what categories of personal data we use for which purposes below.
Statistics: When you visit our website, we automatically collect, register and process IP-addresses, geographical information and cookies.
The purpose of this processing is to create statistical information on such things as the duration of visits to our website and what parts of the website are visited. We also process the personal data to continuously improve and develop the user experience and the IT security.
The legal basis for the processing is our legitimate interest in creating statistics, improving, and developing our products and services (GDPR Article 6 (1)(f)). When you visit our website, we ask for your informed consent to place cookies that are not strictly necessary (functional) according to the current legislation on cookies. You can withdraw your consent to cookies at any time by clicking on the small cookie symbol in the bottom left corner of the website.
Manage subscriptions: When you subscribe to our services, we process the following personal data about you: name, address, e-mail address, telephone number, age (applicable only for particular Services), credit/debit card details or other banking or billing details. The purpose of the processing is to manage your subscription, verify your age, communicate with you, to manage and administer invoice- and payment services, and to be able to deliver the services.
The legal basis for the processing is our contractual relationship with you according to our Terms and Conditions.
We process your personal data as long as your subscription is active, but we can store the data for a longer period if it is required by law, for example the Bookkeeping Act, which requires us to store any material subject to bookkeeping for up to 5 years (GDPR Article 6 (1)c), if the processing is necessary for a legal claim to be established, asserted or defended, or for reasons of our legitimate interest in administering your rights as a former customer (GDPR Article 6 (1)(f)).
We have established organizational and technical security measure to ensure the confidentiality, integrity, and availability of your personal data. These measures include, amongst other things, regular risk assessments, access control and management, training, encryption, and implementation of policies in order to ensure a level of security appropriate to the risk.
Our website uses encryption for security reasons and for the protection of the transmission of confidential content, such as the inquiries you send to us as the site operator. You can recognize an encrypted connection in your browser's address line when it changes from "http://" to "https://" and the lock icon is displayed in your browser's address bar.
If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.
We do not share, sell, lend or lease any information that identifies a client or purchaser of our services (such as email addresses or personal details) with anyone. Although, we are able to share personal data with public authorities where there is a statutory disclosure obligation.
Any company that processes your personal data on our behalf is called a data processor. Viete will from time-to-time use data processors in order to offer or improve our services. In such cases we will always enter into a data processor agreement that regulates how the data processor can process the information they gain access to and their duties in that regard, including for what purposes the personal data can be used.
From time-to-time Viete will need to transfer your personal data to countries and/or organizations outside the EU/EEA area that does not offer adequate protection (so-called third countries).
Before transferring personal data to such third countries, we will ensure that it takes place in line with the requirements set out in GDPR chapter V. We will for instance make sure that the data exporter and importers have entered into an agreement with the recipient of the data based on the EU's standard contractual clauses and that this transfer mechanism is effective.
We store your personal data for as long as is necessary for the fulfillment of the above-mentioned purposes for the processing of the data. However, this does not apply if storage is required by law for a longer period than the purpose dictates. You can read more about our retention policy for the different processing activities above.
The privacy legislation gives you a number of rights, including the right to access, rectify and erase the personal data we have stored about you.
We strive to ensure that the personal data we have stored about you is correct and up to date. If you discover that the information we have stored about you is incorrect, we encourage you to contact us. This also applies if you want the stored data to be deleted.
Regarding the right to erase, there is an exception for information which is necessary in order be able to deliver a service that you would like to use, or it is required by law to store the information for a specific period.
You also have the right to data portability. This means that, among other things, you have the opportunity to extract your personal data in a machine-readable format.
Furthermore, you have the right to object to the processing of personal data and the right to object to personal profiling and automated decisions. This means that you can demand that your personal data is not analyzed to reveal your behavior, preferences, abilities or needs. However, this does not apply if the processing is necessary to fulfill an agreement you have entered into with us, or if you have previously expressly consented to the processing.
You also have the right to receive a copy of the personal data we have registered about you, as long as an obligation of confidentiality does not prevent this. In order to ensure that personal data is handed over to the right person, we may require that access requests are submitted in written form and that identity is verified.
If you believe Viete does not comply with this privacy policy or the applicable legislation, you can send us a complaint. You can also complain to the Norwegian Data Protection Authority ("Datatilsynet").
You can read more about your rights on the Norwegian Data Protection Authority's website: www.datatilsynet.no.
Our services are in continuous development. We may therefore need to update our privacy policy. If the privacy policy is subject to updating, the updated privacy policy will be made available on our website.
If you have questions regarding how we process your personal data or wish to exercise your rights, you can contact us by sending an email to support@zarium.dev.