We reserve the right to make changes to this Policy at any time. Your continued use of our services and websites that are subject to this Policy will imply that you accept all changes to this Policy made by us over time.
Cruise Norway is the data controller for any personal information collected or received by us in your use of any of our services, websites or means of communication.
2. HOW WE USE YOUR PERSONAL DATA
This section describes:
- – the general categories of personal data that we may process
- – the purposes for which we may process personal data
- – the legal basis for this data processing
We will process your personal data in accordance with Norway’s Data Protection Legislation. We maintain strict security standards and procedures with a view to preventing unauthorised access to your data. We use leading technologies such as (but not limited to) data encryption, firewalls and server authentication to protect the security of your data. For our staff and whenever we hire third parties to provide support services, we require them to observe our privacy standards and to allow us to audit them for compliance.
2.1. Events and information
We may process information that you provide to us when registering for conferences, trips or events, and subscribing to our newsletter.
-Events – by filling out and submitting an event registration form you provide us with the necessary personal data and agree that we store this information for as long as needed.
-Newsletters – by completing our newsletter signup page you are agreeing to receive email marketing communications. These can be unsubscribed from at any time, simply by clicking the unsubscribe link at the bottom of the email.
The legal basis for this processing is consent.
2.2. User Generated Content – Social Media
If you use any of our social network pages or applications or you use one of our services that allow interaction with social networks, we may receive information relating to your social network accounts. For instance:
- – If you click on a “like” or similar button in one of our websites or services, we may record the fact that you have done so. In addition, the content that you are viewing may be posted to your social network profile or feed. We may receive information about further interactions with this posted content (for example, if your contacts click on a link in the posted content), which we may associate with the details that we store about you
- – If you “like” (or similar) one of our pages on a social network site, we may receive information about your social network profile, depending on your social network account privacy settings.
The legal basis for processing this information is legitimate interest.
2.3. Legal Obligation
In addition to the specific purposes for which we may process your personal data set out in this section, we may also process any of your personal data where such processing is necessary for compliance with regulatory and legal obligation to which we are subject, or to protect your vital interests or the vital interests of another natural person.
3. PROVIDING YOUR PERSONAL DATA TO OTHERS
We may use other third-party service providers to provide certain data processing services for us (acting as our authorised data processors). Examples of authorised data processors could include billing and fulfilment partners, IT solution providers, data analytics providers who process information on our behalf for the purposes outlined above.
When acting as our authorised data processors, our service providers are required to only process data in accordance with our instructions, in line with this Policy, and are subject to appropriate confidentiality and security obligations.
In addition to the specific disclosures of personal data set out in this section, we may also disclose your personal data where such disclosure is necessary for compliance with a legal obligation to which we are subject, or to protect your vital interests or the vital interests of another natural person.
4. INTERNATIONAL TRANSFERS OF YOUR PERSONAL DATA
5. RETAINING AND DELETING PERSONAL DATA
This Section sets out our data retention policies and procedures, which are designed to help ensure that we comply with our legal obligations in relation to the retention and deletion of personal data.
Personal data that we process shall not be kept for longer than is necessary for the purpose they were collected. However, your personal data may be retained further if required to meet any legal obligations, or to protect your vital interests.
6. LINKS TO THIRD PARTY SITES
On our website we link to third-party websites that are not operated by us. While we try to link only to sites that share our high standards and respect for privacy, we are not responsible for the content, security or privacy practices of those third-party websites. We strongly encourage you to view the privacy and cookie policies displayed on those third-party websites to find out how your personal information may be used.
We may update this policy from time to time by publishing a new version on our website. You should check this page occasionally to ensure you are happy with any changes to this policy. We may notify you of changes to this policy by email or through private messaging system or via our website.
8. YOUR RIGHTS
In this Section we have summarised the rights that you have under data protection law. Some of the rights are complex, and not all details have been included in our summaries. Accordingly, you should read the relevant laws and guidance from the regulatory authorities for a full explanation of these rights.
Your principal rights under data protection law are:
(a) the right to access;
(b) the right to rectification;
(c) the right to erasure;
(d) the right to restrict processing;
(e) the right to object to processing;
(f) the right to data portability;
(g) the right to complain to a supervisory authority; and
(h) the right to withdraw consent.
You may instruct us to provide you with any personal information we hold about you; provision of such information will be subject to the supply of appropriate evidence of your identity. For this purpose, we will usually accept a certified photocopy of your passport plus an original copy of a utility bill showing your current address.
In practice, you will usually either expressly agree (opt in) in advance to our use of your personal information for marketing purposes, or we will provide you with an opportunity to opt out of the use of your personal information for marketing purposes.
When the legal basis for our processing of your personal information is consent, you have the right to withdraw that consent at any time. Withdrawal will not affect the lawfulness of processing before the withdrawal of consent.
9.1 About Cookies
A cookie is a simple text file that is stored on a user’s computer (or mobile device) that is created when a user visits a website using a program called a browser (Chrome, Internet Explorer, Firefox, Safari or other).
A cookie isn’t a program itself and doesn’t actively do anything on a user’s computer. A cookie cannot be used to identify a user but contribute to improving a user’s experience of a website.
The website reads the contents of the cookie text file. The text file itself simply contains a unique identifier code; the site name and some digits and numbers.
9.2 Why are Cookies used?
Cookies do lots of different jobs, such as:
- – remembering which items a user may have added to a form or an itinerary as the user moves between pages on a website;
- – saving a user’s preferences to allow them to customise a website
- – measuring what users do on a website to ascertain which parts of a website are popular, how long they spend on a website, how often users return, where they come from etc.
9.3 What Cookies are used by this site?
Cookies are set by this website (first party cookies) but may also be set by other websites (e.g. YouTube) that run content on the website’s pages (third party cookies). This website uses Google Analytics to collect information about users so that we can provide the best possible functionality and develop our information services. This information is taken from the computer’s web browser and may include your IP address, operating system, browser, screen resolution and previously visited website.
Cookies can be set to remember a visitor for the duration of their visit (session cookies) or to remember a visitor for repeat visits (persistent cookies).
To read more about cookies, including how to opt out of accepting cookies on your computer, see for example: allaboutcookies.org/manage-cookies/ and Google Analytics
10. ABOUT US
The www.cruise-norway.no website is owned and operated by Cruise Norway
Contact email: firstname.lastname@example.org.
Last update: Aug 20, 2019