Personvernerklæring

Fjordstrikk Atelier

Privacy Policy

1. Introduction and Company Information

Fjordstrikk Atelier values your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, disclose, store, and protect personal data when you interact with us, including when you visit our website, contact us, place an order, subscribe to communications, or otherwise use our services.

Data Controller: Fjordstrikk Atelier

Address: Storgata 12, 0184 Oslo, Norway

Email: [email protected]

Phone: +47 23 45 67 89

Business Type: Knitting and related textile products and services

2. Data Collection and Processing

We may collect and process the following categories of personal data, depending on your interaction with us:

  • Identification data: name, username, and similar identifiers.
  • Contact data: email address, telephone number, billing and delivery address.
  • Order and transaction data: products purchased, order history, payment status, invoices, and delivery details.
  • Communication data: messages, inquiries, feedback, and customer support correspondence.
  • Account data: login details, preferences, and saved settings, if you create an account.
  • Technical data: IP address, browser type, device information, operating system, and website usage data.
  • Marketing data: your preferences for receiving newsletters, offers, and updates.

We generally collect personal data directly from you. In some cases, we may also receive data from payment providers, delivery partners, analytics providers, or publicly available sources where permitted by law.

3. Purpose of Data Processing

We process personal data for the following purposes:

  • to provide and manage our products and services;
  • to process orders, payments, deliveries, returns, and refunds;
  • to communicate with you regarding inquiries, purchases, and customer service;
  • to maintain customer accounts and preferences;
  • to send newsletters, promotions, and product updates where permitted;
  • to improve our website, products, and services;
  • to detect, prevent, and address fraud, security incidents, and misuse;
  • to comply with legal obligations, including accounting and tax requirements;
  • to establish, exercise, or defend legal claims.

4. Legal Basis for Processing

We process personal data only when we have a valid legal basis. Depending on the situation, the legal basis may include:

  • Performance of a contract: when processing is necessary to fulfill an order, provide a service, or take steps at your request before entering into a contract.
  • Legal obligation: when processing is required to comply with applicable legal and regulatory obligations.
  • Legitimate interests: when processing is necessary for our legitimate business interests, such as improving services, securing our systems, or handling customer inquiries, provided your interests and rights do not override those interests.
  • Consent: when we rely on your consent, for example for certain marketing communications or cookies where required by law.

5. Data Sharing and Third Parties

We may share personal data with trusted third parties only when necessary and in accordance with applicable law. These may include:

  • Payment service providers: to process payments securely.
  • Shipping and logistics providers: to deliver products and handle returns.
  • IT and hosting providers: to operate our website, systems, and data storage.
  • Accounting, audit, and legal advisors: to meet business, tax, and compliance obligations.
  • Marketing and analytics providers: to support communications and website performance analysis, where permitted.
  • Public authorities: where disclosure is required by law or necessary to protect legal rights.

We require third parties to handle personal data securely and only for the purposes we specify, where applicable under contract and law.

6. Data Transfer to Third Countries

If personal data is transferred outside Norway or the European Economic Area (EEA), we will ensure that appropriate safeguards are in place in accordance with applicable data protection law. Such safeguards may include adequacy decisions, standard contractual clauses, or other lawful transfer mechanisms.

Where required, we will take additional measures to protect your personal data during international transfers.

7. Storage Duration

We retain personal data only for as long as necessary for the purposes for which it was collected, unless a longer retention period is required or permitted by law.

  • Order and transaction data: retained for the period required by accounting, tax, and consumer law.
  • Customer service communications: retained for as long as needed to handle your request and for a reasonable period thereafter.
  • Marketing data: retained until you withdraw consent or object, or until it is no longer relevant.
  • Technical and security logs: retained for a limited period necessary for security, troubleshooting, and system integrity.

When personal data is no longer needed, we will delete, anonymize, or securely archive it in accordance with applicable requirements.

8. User Rights

Subject to applicable law, you have the following rights regarding your personal data:

  • Right of access: to request confirmation of whether we process your personal data and to receive a copy of that data.
  • Right to rectification: to request correction of inaccurate or incomplete personal data.
  • Right to erasure: to request deletion of your personal data in certain circumstances.
  • Right to restriction: to request that we limit the processing of your personal data in certain situations.
  • Right to data portability: to receive personal data you have provided to us in a structured, commonly used, machine-readable format and, where technically feasible, to have it transmitted to another controller.
  • Right to object: to object to processing based on legitimate interests and to object at any time to direct marketing.

To exercise any of these rights, please contact us using the details provided below. We may need to verify your identity before responding to your request.

9. Withdrawal of Consent

Where we rely on your consent to process personal data, you have the right to withdraw that consent at any time. Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.

If you withdraw consent, we may no longer be able to provide certain services or communications that depend on that consent.

10. Right to Complain

If you believe that our processing of your personal data violates applicable data protection law, you have the right to lodge a complaint with the relevant supervisory authority.

In Norway, this is the Norwegian Data Protection Authority (Datatilsynet). We encourage you to contact us first so that we can try to resolve your concerns directly.

11. Data Security

We take appropriate technical and organizational measures to protect personal data against unauthorized access, loss, misuse, alteration, or disclosure. These measures may include access controls, encryption where appropriate, secure hosting, staff confidentiality obligations, and regular review of our security practices.

While we strive to protect your data, no method of transmission over the internet or method of electronic storage is completely secure. We therefore cannot guarantee absolute security.

12. Contact Information

If you have questions, requests, or concerns regarding this privacy policy or our processing of personal data, please contact us:

Fjordstrikk Atelier
Storgata 12, 0184 Oslo, Norway
Email: [email protected]
Phone: +47 23 45 67 89

13. Changes to Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices, services, legal requirements, or other operational reasons. The updated version will be published on our website with a revised effective date where applicable.

We encourage you to review this privacy policy periodically to stay informed about how we protect your personal data.

4/13/2026 Hjem