Privacy policy

March 18, 2023

Privacy policy of Fjordblock AS, Remmo 11, 5911, Alversund, Norway (“Fjordblock”; “We”) for the website https://www.fjordblock.com (“Website”).

Thank you for your interest in our products/services. Below we inform you about the processing of your (personal) data by Fjordblock when using our website or purchasing our products/ using our services as well as your rights in this regard. Our data protection practice is in accordance with the Data Protection Basic Regulation of the European Union (“DSGVO”).

The primary intention of all data protection regulations is to protect your personal data in the best possible way. All data that enables us or any third party to identify you as a person is personal data. This policy applies exclusively to the website mentioned. If you are redirected to other websites via links on our website, please inform yourself directly on the target page about the respective handling of your data. We cannot assume any responsibility or liability whatsoever for the content of third-party websites linked to our website.

1. Data processing of website users

When you visit our website, we collect the following data: IP address.

You can visit our website without having to provide any personal information. Only certain access data (your IP address and other metadata) are processed when you call up the site. Data processing is carried out for the purpose of security and improving the quality of our website (Article 6 (1) lit. f DSGVO). However, this information does not enable us to draw any conclusions about your person. IP addresses are collected and stored by shortening the last three (3) digits exclusively in anonymous form. You can therefore view all contents of our website without providing any personal data.

2. Rights concerned


An essential concern of data protection law is to grant you certain disposition options for your personal data even after data processing has already begun. For this purpose, several rights exist which we will comply with immediately upon your request, but at the latest within one (1) month. To exercise your rights, please send an e-mail to ronny.bruknapp@fjordblock.no. The following rights are provided for in detail:

  1. If you exercise your right to information and there are no legal restrictions, we will inform you comprehensively about our processing of your data. We will provide you with (i) copies of the data (emails, database excerpts, etc.) and information about (ii) actual data processed, (iii) processing purposes, (iv) categories of data processed; (v) recipients; (vi) the retention period or criteria for determining it, (vii) the origin of the data, and (viii) additional information as appropriate. Please note, however, that we cannot hand over any documents that could affect the rights of other persons.
     
  2. With the right to correction, you may request that we correct data that has been incorrectly recorded, has become incorrect or is incomplete (for the purpose for which it was processed). Your request will then be examined, and the data processing concerned may be restricted for the duration of the examination upon request. 
     
  3. The right to (data) deletion may be exercised (i) if there is no need to do so with regard  to the purpose of the processing, (ii) the event of the revocation of a consent given by you, (iii) in the event of a special objection, insofar as the data processing concerned is based on the legitimate interests of Fjordblock, (iv) in the event of unlawful data processing,  (v) if there is a legal obligation to delete the data, and (vi) in the event of data processing  by minors under the age of 16.
     
  4. An accompany right to restriction, after the exercise of which affected data may only be stored, exists in special cases. In addition to the possibility of restricting the duration of the review of data corrections, (i) unlawful data processing (unless deletion is requested)  and (ii) the duration of the review of a particular objection request are covered.
     
  5. In addition, you have a fundamental right to object to data processing at any time. However, this only applies if the processing is based on the legitimate interests of Fjordblock.
     
  6. You may also exercise your right of appeal to the supervisory authority (see point 11).


Please also note that we may be unable to comply with your request due to compelling reasons worthy of protection for the processing (weighing of interests) or a processing due to the assertion, exercise or defense of legal claims (on our part). The same applies in the case of excessive applications, whereby a fee may be charged here as well as for the processing of manifestly unfounded inquires.
 

3. Data security, data secure

Fjordblock takes all appropriate technical and organizational measures to ensure that only those personal data are processed by default whose processing is necessary for the business purpose. The measures taken by us relate to the amount of data collected, the scope of processing as well as its storage period and accessibility. We use these measures to ensure that personal data is only made available to a limited and necessary number of people through default settings. Other persons will under no circumstances be granted access to personal data without express consent of the person concerned. In addition, we use various protective mechanisms (backups, encryption) to secure the website and other systems. This is intended to protect your (personal) data as best as possible against loss or theft, destruction, unauthorized access, alteration and dissemination.

In accordance with the provisions of the DSGVO, all (personal) data collected by us via the website will only be stored for as long as it is required with regard to the legal basis of the processing, unless longer-term storage is provided for by law. We comply with our obligation to delete by means of our specific internal company deletion concept, whereby we can provide you with more detailed information on request.

All Fjordblock employees have been sufficiently informed about all applicable data protection regulations, internal data protection regulations and data security precautions and are required to keep secret all information entrusted to them or made accessible to them in the course of their professional activities. The requirements of the DSGVO are strictly observed and personal data are only made available to individual employees insofar as this is necessary regarding the purpose of data collection and our obligations arising therefrom.

Insofar as contract processors are used by us, they shall also be obliged to comply with all applicable data protection regulations based on specific framework agreements. In addition, when handling your (personal) data, you are strictly bound by our specifications, regarding type and scope.
 

4. Data transmission

For the purposes explained in this policy, we will transfer your (personal) data to recipients of the following categories:

Within our organization, those entitles or employees who need your information to fulfill their contractual or legal obligations and for data processing that is based on our legitimate interests will receive it.

Furthermore, (external) contract processors commissioned by us receive your data insofar as they require  the data for the provision of their respective services (whereby one access possibility to personal data is sufficient). All contract processors are contractually obliged to treat your data confidentially and to process it only within the scope of the service provision. This includes the following categories of recipients:

Google Analytics:

  • Analytics of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA

Social Media

  • LinkedIn: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, D02 CA30, Ireland
  • Facebook: Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA
  • Instagram: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
  • Twitter: Twitter Inc., 1355 Market St, Suite 900, San Francisco, CA 94103, USA

Some of the above-mentioned recipients are located outside the EU or process your (personal) data there. However, we take steps to ensure that all recipients have an adequate level of data protection. For example, we conclude standard contract clauses, which can be transmitted on request. Alternatively, we use providers who have been certified according to the EU-US Privacy Shield and who for this reason have an adequate level of data protection according to the DSGVO (according to European Commission’s adequacy decision). The Privacy Shield certifications can be viewed at https://www.privacyshield.gov/list.

6. Cookies

A “cookie” is a small data file that we transfer to your computer when you browse our website. Certain data is stored in exchange with our systems via your browser. We do not use cookies in any case to obtain information about your person. We use “session-related” cookies; they do not remain on your computer. If you leave our website, the temporary cookie is also discarded. With the help of the collected information, we can analyze usage patterns and structures of our website. In this way, we can continually optimize our website by improving its content or personalization and simplifying its use.

Most browsers accept cookies by default. In the security settings you can configure how your browser should handle cookies ore whether cookies are stored at all. It is also possible to block only so-called third-party-cookies, which are created by parties other than our website. If you disable cookies, certain features on our website may not be available for you and some web pages may not display correctly.

7. Web analytics tools

1. Google Analytics     

Our website uses Universal Analytics, the new generation of the web analytics tool Google Analytics from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”), which enables us to analyze your use of this website. Since registration on our website is only possible as an option, you will only be assigned a ClientID when you call it up, which will be generated for different end devices, for example. Tracking is performed using the tracking code analytics.js (Java Script). In this context, we progress your data based on our overriding legitimate interests in compiling easy-to-use website access statistics in a cost-efficient manner (Art. 6 (1) lit. f DSGVO).

By using the software, a cookie is set (for the client ID), which is stored on your computer. The information generated by the cookie about your use of this website will generally be transmitted to a Google server in the United States and stored there for a period of thirteen (13) months. However, due to the activation of IP anonymization on this website, your IP address will be shortened by Google in advance within Member States of the European Union or in other Contracting States to the Agreement on the European Economic Area. Only in exceptional cases the full IP address transmitted to a Google server in the USA and shortened there. Google will use this information for the purpose of evaluating your use of the website, compiling reports on the website activity and providing other services relating to the website activity and internet usage. The IP address transmitted by your browser as part of Google Analytics is not combined with other data from Google. Your person cannot be found out by Google.

Google is a participant in the EU-US Privacy Shield, which obliges the company to comply with the agreement and maintain a level of data protection that complies with European data protection standards. The Privacy Shield certification can be viewed at https://www.privacyshield.gov/list .

With the procedure described under point 8, you can prevent the storage of cookies by setting your browser software accordingly (possibly limited to third party cookies). You can also prevent Google from collecting data generated by cookies and related to your use of the website (including your IP address) and from processing this data by downloading and installing an appropriate browser plug-in (http://tools.google.com/dlpage/gaoptout?hl=en). Alternatively, you can also click here to set a so-called opt-out cookie, which is stored on your end device and prevents the collection of your data by Google Analytics. If you delete your stored cookies, however, this step is necessary again. We would like to point out that you may then not be able to use all functions of the website to their full extent.

Further information on data protection with Google Analytics and your options in this regard can be found at support.google.com/analytics/answer/6004245.

2. Server-Logfiles

When accessing our website, anonymized access data (so-called server log files) are automatically stored based on our legitimate interest (Art. 6 (1) lit. f DSGVO). This data is retained for a maximum of six (6) months and is then deleted for the sole purpose of maintaining the smooth operation of our website and does now allow us to identify you. In particular, the storage shall be affected: Date and time of access, website visited, amount of data transferred, requesting provider, browser used, operating system, IP address. There shall be no transfer of such data to a third country. Should it be necessary to store this data for longer than six (6) months (especially in cases of misuse), certain server log files may be excluded from deletion for as long as necessary for reasons of proof.
 

8. Social media plug-ins using the “2-click-solution

Our website uses so-called social media plug-ins (“Plug-ins”) from the social networks Facebook and Instagram and the microblogging service Twitter.

Facebook is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). You can find an overview of the Facebook plug-ins and their appearance here: https://developers.facebook.com/docs/plugins

Instagram is operated by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Instagram”). An overview of Instagram plug-ins and their appearance can be found here: http://blog.instagram.com/post/36222022872/introducing-instagram-badges

Twitter is operated by Twitter Inc, 1355 Market St, Suite 900, San Francisco, CA 94103, USA (“Twitter”). You can find an overview of the Twitter buttons and their appearance here: https://twitter.com/about/resources/buttons

In order to increase the protection of your data when you visit our website, the plug-ins are integrated into the page by means of a so-called “2-click-solution”. This integration ensures that when a page of our website containing such plug-ins is accessed, no connection is established with the servers of Facebook, Instagram and Twitter. Only when you activate the plug-ins and give your consent to the data transfer does your browser establish s direct connection to the Facebook, Instagram and Twitter servers. The content of the respective plug-in is then transmitted directly to your browser by the respective provider and integrated into the page. By activating the plug-ins, the providers receive the information that your browser has called the corresponding provider or are not logged in. This information (including your IP address) is transmitted directly from your browser to a server of the respective provider in the USA and stored there. If you are logged in to one of the services, the providers can change the visit to your site to your profile on Facebook, Instagram or Twitter directly. If you interact with the plug-ins, for example by pressing the “Like”, the “+1” or the “Tweed” button, the corresponding information is also transmitted directly to a server of the respective provider and stored there. The information is also published on the social network or on your Twitter account and displayed there to your contacts.

Information on the data collection by the providers as well as your rights in this regard and setting options for the protection of your privacy can be found in the data protection information of the providers.

Facebook Privacy Policy

Instagram Privacy Notice

Twitter Privacy Policy


If you do not want Facebook, Instagram or Twitter to associate the data collected via our website directly with your profile on the relevant service, you must log out of the relevant service before activating the plug-ins.

Please note that Facebook, Instagram and Twitter participate in the EU-US Privacy Shield, which requires companies to adhere to the agreement and maintain a level of data protection that complies with European data protection standards. The EU-US Privacy Shield was granted an adequate level of data protection by the European Commission’s adequacy decision; data transfers to certified companies in the third country USA are therefore basically permissible. The Privacy Shield certifications can be viewed at https://www.privacyshield.gov/list .
 

9. Right of appeal

Should you believe that we violate applicable data protection laws when processing your data, you have the right to lodge a complaint with the data protection authority.
We kindly ask you to contact us in advance in order to clarify any questions or problems.


10. Contact for data protection questions, messages, requests

For questions, messages or requests regarding data protection please send an e-mail to ronny.bruknapp@fjordblock.no .