This privacy policy is an agreement between you and Diwan AS (“agoralilleborg.no”) about how we collect, use and protect your personal information when you use our website or book a table with us via https://agoralilleborg.no/. It is important that you read and understand this, as it tells you how we handle your information and what your rights are.
By using our website, you agree to the terms of this policy.
If you do not agree, you should not use our website.
If you have any questions about privacy, please contact us as described in this policy.
1. What personal data do we have about you
We process the following categories of personal data:
Contact information: first name, last name, address, phone number, email address
Payment information: Transaction information, payment method via iZettle
Customer activity: reading and action history from app, website or electronic communication we send out.
As well as technical information about the devices you use.
Cookies: see our information about cookies here: <URL to cookie declaration>
2. How we use the personal data
Delivery of service/conclusion of agreement
We use your personal data to fulfill our agreements with you, i.e. when you have ordered a product or service from us.
The legal basis for processing personal data for this purpose is that the processing is necessary to fulfill an agreement with you.
Customer relationship management
We use your personal data to manage our customer relationship with you.
This may, for example, be customer service, complaint handling and error correction regarding your customer relationship.
The legal basis for processing personal data for this purpose is that the processing is necessary to fulfill an agreement with you.
Analysis, business development and improvement of services
We work continuously to develop and improve our services and products.
Much of this work involves analyzing various forms of personal data, such as customer activity, customer history and account and profile information.
The legal basis for processing personal data for this purpose is our legitimate interest.
Customized user experience
We customize the user experience and communication to your customer relationship and we use personal data for this.
The legal basis for processing personal data for this purpose is our legitimate interest.
Sales and marketing
We use personal data in connection with sales and marketing of our products and services, for example when you receive emails from us.
The legal basis for processing personal data for this purpose is our legitimate interest.
You have the opportunity to opt out of parts of this processing by, for example, opting out of receiving emails from us.
In addition to this, we may also ask for your consent to use your personal data for so-called profiling, where we derive interests and needs based on your personal data.
The purpose of profiling will be to make our marketing more relevant.
System monitoring, error correction etc.
We monitor our systems for errors and problems.
Part of these processes involves the storage and processing of personal data.
The legal basis for processing personal data for this purpose is our legitimate interest.
Security, fraud and crime detection
We process personal data in our efforts to protect our users and ourselves against fraudulent activity, misuse and criminal acts.
The legal basis for processing personal data for this purpose is our legitimate interest.
Comply with legal obligations
In some cases, we are required to process personal data in order to comply with other legal obligations.
An example of this is information related to sales, which we are obliged to record and store in accordance with the Bookkeeping Act.
The legal basis for processing personal data for this purpose is that the processing is necessary in order to comply with a legal obligation to which we are subject.
3. Who we share personal data with
We share personal data with companies that provide technical and administrative services to us, such as IT suppliers.
We have agreements with these to ensure your privacy.
We may disclose information in individual cases, e.g. to public authorities, on suspicion of a breach of the law.
If you consent, we may share your personal data with our business partners as described in your consent.
We use IT suppliers within and outside the EEA. If we transfer personal data out of the EEA, we ensure that we safeguard your privacy by entering into contracts. You can request more information or a copy of the security mechanisms we use to secure the transfer of your data.
We may also share anonymized information with partners for e.g.
market analysis and service development.
4. How long do we store personal data
We only store information about you for as long as it is necessary to achieve the purpose for which it was collected, or if we are required to store the information.
The data will be deleted or anonymized when it is no longer necessary to achieve the purpose.
Below is an overview of how long we store your data:
Purchase information: We store information about your table reservations and contact inquiries for 12 months. We will delete your payment card information three months after the reservation took place, unless you ask us to save the information for the next booking. We store transactions and payment information for 5 years in accordance with the Bookkeeping Act.
Use information on the websites: We store information about your use of our websites for up to 6 months.
Communication: We store communication with our customers for three years, unless we need to store it longer, e.g. in connection with complaints or claims.
5.
Your rights
If you wish to exercise any of your rights, please contact us at agora@faros.no
Right of access to your own data
You can request a copy of all data we process about you.
Please contact us at the email address above to exercise your right of access.
Right to rectification of personal data
You have the right to ask us to correct or supplement information that is incorrect or misleading.
The right to erasure of personal data
You have the right to have your personal data erased without undue delay.
You can therefore ask us to delete information about yourself at any time.
However, please note that information that we are required to retain for other legal obligations (such as the Bookkeeping Act) will not be deleted.
Restriction of processing of personal data
In some situations, you can also ask us to restrict the processing of information about you.
You do this by managing consents or reservations in our solutions.
Objecting to the processing of personal data
If we process information about you on the basis of our tasks or on the basis of a balance of interests, you have the right to object to our processing of information about you.
You do this by managing consents or reservations in our solutions.
Data portability
You have the right to receive your personal data in a structured, commonly used and machine-readable format.
Please contact us at the email address above to obtain your personal data.
You can complain about our processing of personal data
We hope you will let us know if you think we are not complying with the rules in the Personal Data Act.
Please feel free to let us know first through the contact or channel you have already established with us.
You can also complain about our processing of personal data.
You do this to the Norwegian Data Protection Authority.
7. Changes to the privacy policy
We may update the privacy policy from time to time. You will be notified of any significant changes. You will always find the latest version of our privacy policy on the website/app.
8. Contact information
If you would like to get in touch with us, please use the following contact information:
Contact person: Sara-Louise Mahgoub
Telephone number: +47 414 41 852
E-mail address: agora@faros.no
Address: Selvbyggerveien 72, 0591 Oslo