Privacy Policy

Olympus Media AS
Last Updated: January 10, 2025

Introduction

This Privacy Policy describes how Olympus Media AS ("Company," "we," "us," or "our") collects, uses, processes, and protects your personal information when you visit our website at olympusmedia.no, use our services, or interact with us in any capacity. This policy applies to all services, products, and digital platforms operated by Olympus Media AS.

Olympus Media AS is a Norwegian company committed to protecting your privacy and ensuring compliance with the General Data Protection Regulation (GDPR), the Norwegian Personal Data Act, and other applicable data protection laws. As a data controller, we are responsible for determining the purposes and means of processing your personal data.

This Privacy Policy explains what personal information we collect, why we collect it, how we use it, and what rights you have regarding your personal data. By using our website or services, you acknowledge that you have read and understood this Privacy Policy and agree to the collection and use of your information as described herein.

Key Definitions

For the purposes of this Privacy Policy, the following terms have the meanings set forth below:

Personal Data: Any information relating to an identified or identifiable natural person. This includes information such as your name, email address, phone number, IP address, and any other data that can be used to identify you directly or indirectly.

Processing: Any operation performed on personal data, including collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, dissemination, restriction, erasure, or destruction.

Data Controller: The entity that determines the purposes and means of processing personal data. Olympus Media AS acts as the data controller for the personal data we collect.

Information We Collect

We collect various types of personal information to provide and improve our services, communicate with you, and fulfill our business obligations. The information we collect falls into several categories, and we only collect information that is necessary for the purposes outlined in this policy.

Personal Information We Collect

Contact Information

We collect basic contact details that allow us to communicate with you and provide our services. This includes your full name, email address, phone number, postal address, and company name (if applicable). We collect this information when you create an account, subscribe to our newsletter, contact us for support, or engage our services.

Account Information

When you create an account with us, we collect information necessary to establish and maintain your account. This includes your username, password (stored in encrypted form), account preferences, profile information, and any additional details you choose to provide in your profile.

Technical Information

When you visit our website or use our services, we automatically collect certain technical information about your device and usage patterns. This includes your IP address, browser type and version, operating system, device identifiers, referring website URLs, pages visited, time spent on pages, click-through data, and other usage analytics.

Sensitive Personal Information

Under GDPR and Norwegian data protection law, certain categories of personal data are considered sensitive and require additional protection and explicit consent for processing. We generally do not collect sensitive personal information unless it is necessary for specific business purposes and we have obtained your explicit consent.

How We Use Your Information

We use the personal information we collect for various legitimate business purposes that are necessary to provide our services, improve user experience, and fulfill our legal obligations. Our use of your information is always proportionate to the purposes for which it was collected and is conducted in accordance with applicable data protection laws.

Service Provision and Account Management

We use your personal information primarily to provide, maintain, and improve our media services. This includes creating and managing your account, processing your requests for services, delivering the content and services you have requested, and providing customer support.

Communication and Customer Support

We use your contact information to communicate with you about our services, respond to your inquiries, and provide customer support. This includes sending you important updates about your account, notifying you of changes to our services or policies, and responding to your questions or concerns through various communication channels.

Marketing and Communications

With your consent, we use your information to send you marketing communications about our services, industry news, and other content that may be of interest to you. This includes email newsletters, promotional offers, event invitations, and updates about new services or features.

Data Security and Protection

Protecting your personal data is a fundamental responsibility that we take seriously. We have implemented comprehensive technical, organizational, and administrative safeguards designed to protect your personal information from unauthorized access, use, disclosure, alteration, or destruction.

Technical Security Measures

Encryption

We employ industry-standard encryption protocols to protect your data both in transit and at rest. All data transmitted between your device and our servers is protected using Transport Layer Security (TLS) encryption with strong cipher suites.

Access Controls

We implement strict access controls to ensure that personal data is only accessible to authorized personnel who need it to perform their job functions. This includes role-based access controls, multi-factor authentication for administrative accounts, and regular review of access permissions.

Network Security

Our systems are protected by enterprise-grade firewalls, intrusion detection systems, and network monitoring tools that continuously scan for potential security threats.

Your Rights Under GDPR

As a data subject under the General Data Protection Regulation (GDPR) and Norwegian Personal Data Act, you have several important rights regarding your personal data. These rights are designed to give you control over your personal information and ensure transparency in how it is processed.

Right of Access

You have the right to obtain confirmation from us as to whether personal data concerning you is being processed, and if so, to access that personal data along with specific information about the processing.

Right to Rectification

You have the right to obtain the rectification of inaccurate personal data concerning you without undue delay. You also have the right to have incomplete personal data completed.

Right to Erasure (Right to be Forgotten)

You have the right to obtain the erasure of personal data concerning you without undue delay in certain circumstances. This right is not absolute and must be balanced against other rights and legitimate interests.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller without hindrance from us.

Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority if you believe that processing of your personal data violates GDPR or Norwegian data protection law.

Contact Information

We are committed to addressing your privacy concerns and helping you exercise your data protection rights. If you have any questions about this Privacy Policy, our data processing practices, or if you wish to exercise any of your rights, please contact us using the information below.

Data Protection Contact

Company: Labanauskas Digitaltjenester
Email: post@olympusmedia.no
Website: https://olympusmedia.no

Data Protection Officer

DPO Email: post@olympusmedia.no

Supervisory Authority

Datatilsynet
P.O. Box 458 Sentrum
NO-0105 Oslo, Norway
Phone: +47 22 39 69 00
Website: www.datatilsynet.no

Response Timeline

We will acknowledge receipt of your inquiry within 48 hours and provide a substantive response within one month.

Last Updated: January 10, 2025 | Version: 1.0

This Privacy Policy is effective as of the date listed above and applies to all personal data processing activities conducted by Labanauskas Digitaltjenester from that date forward.

Data Sharing and Third Parties

We understand that sharing your personal data is a significant responsibility, and we are committed to being transparent about when, why, and with whom we share your information. We do not sell your personal data to third parties, and we only share your information in the specific circumstances outlined below.

Service Providers and Processors

We work with carefully selected third-party service providers who help us deliver our services and operate our business effectively. These service providers act as data processors on our behalf and are contractually obligated to protect your personal data.

Legal and Regulatory Requirements

We may disclose your personal data when required by law or when we believe in good faith that such disclosure is necessary to comply with legal obligations, protect our rights, or ensure the safety of our users and the public.

Business Transactions

In the event of a merger, acquisition, reorganization, sale of assets, or other business transaction involving Olympus Media AS, your personal data may be transferred to the acquiring or successor entity as part of the transaction.

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with our legal obligations, resolve disputes, and enforce our agreements. Our data retention practices are designed to balance your privacy rights with our legitimate business needs and legal requirements.

General Retention Principles

Purpose Limitation: We retain personal data only for the specific purposes for which it was originally collected or for compatible purposes that are clearly communicated to you.

Data Minimization: We regularly review the personal data we hold and delete information that is no longer necessary for our business operations or legal compliance.

Legal Compliance: Some personal data must be retained for specific periods to comply with Norwegian law, tax regulations, accounting requirements, and other legal obligations.

Specific Retention Periods

  • Account Information: Retained for as long as your account remains active
  • Communication Records: Typically retained for three years from the date of the last interaction
  • Transaction Data: Retained for seven years to comply with Norwegian accounting and tax law requirements
  • Website Usage Data: Typically retained for 12 months unless longer retention is necessary for security purposes

International Data Transfers

As a Norwegian company operating in the global digital economy, we may occasionally need to transfer your personal data to countries outside the European Economic Area (EEA) to provide our services effectively. We are committed to ensuring that any such transfers are conducted in full compliance with GDPR and provide adequate protection for your personal data.

Transfer Safeguards

We primarily transfer personal data to countries that have been deemed by the European Commission to provide an adequate level of data protection. When transferring data to countries without adequacy decisions, we use Standard Contractual Clauses (SCCs) approved by the European Commission.

Your Rights Regarding Transfers

You have the right to obtain information about the safeguards we have implemented for international transfers of your personal data. You can also request copies of the relevant safeguard documents, though we may redact commercially sensitive information.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website, analyze usage patterns, and provide personalized content and services. This section explains what cookies we use, why we use them, and how you can control them.

Types of Cookies We Use

  • Essential Cookies: Necessary for our website to function properly and cannot be disabled
  • Performance Cookies: Collect information about how you use our website to help us improve performance
  • Functionality Cookies: Allow our website to remember choices you make and provide enhanced features
  • Marketing Cookies: Used to deliver advertisements that are relevant to you and your interests

Cookie Management

You can control cookies through your browser settings. Most browsers allow you to refuse cookies, delete existing cookies, or receive notifications when cookies are being set. However, disabling certain cookies may affect the functionality of our website.

Children's Privacy

We are committed to protecting the privacy of children and do not knowingly collect personal data from children under the age of 16 without appropriate parental consent. Our services are not directed at children, and we do not intentionally market to or solicit information from children.

Age Verification

We implement age verification measures where appropriate to ensure that children do not provide personal data without proper consent. If we become aware that we have collected personal data from a child under 16 without parental consent, we will take immediate steps to delete such information.

Parental Rights

Parents and guardians have the right to review, modify, or delete their child's personal data. They can also refuse to permit further collection or use of their child's information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, legal requirements, or for other operational, legal, or regulatory reasons. We are committed to keeping you informed about any significant changes to how we handle your personal data.

For material changes that significantly affect your rights or how we process your personal data, we will provide prominent notice through our website, email notifications, or other appropriate communication methods at least 30 days before the changes take effect.

Your Options

When we make significant changes to this Privacy Policy, you will have the opportunity to review the updated policy and decide whether to continue using our services. If you disagree with the changes, you may choose to stop using our services or exercise your rights to delete your personal data.