Last updated: 30.10.2024
1. Introduction
This Privacy Policy explains how we collect, use, process, and protect your personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
2. Data Controller
Senja by Heart
Torsken, Senja, Norway
Email: post@senjabyheart.no
3. Personal Data We Collect
We may collect the following types of personal data:
– Name and contact information
– Booking details and travel dates
– Payment information
– Communication preferences
– Website usage data through cookies
– Special requirements or preferences related to your stay
4. Legal Basis for Processing
We process your personal data based on:
– Contract fulfillment (booking arrangements)
– Legal obligations
– Legitimate business interests
– Your consent, where applicable
5. How We Use Your Data
We use your personal data to:
– Process your bookings and payments
– Provide customer service
– Send booking confirmations and essential communications
– Improve our services
– Comply with legal obligations
– Send marketing communications (with your consent)
6. Data Sharing
We may share your data with:
– Payment processors
– Booking system providers
– IT service providers
– Government authorities (when required by law)
All third-party providers are carefully selected and required to maintain appropriate security measures.
7. International Data Transfers
If we transfer your data outside the EEA, we ensure appropriate safeguards are in place through:
– EU Standard Contractual Clauses
– Adequacy decisions by the European Commission
– Other legally approved transfer mechanisms
8. Data Security
We implement appropriate technical and organizational measures to protect your personal data, including:
– Encryption
– Access controls
– Regular security assessments
– Staff training
9. Your Rights
Under GDPR, you have the right to:
– Access your personal data
– Correct inaccurate data
– Request deletion of your data
– Object to processing
– Data portability
– Withdraw consent
– Lodge a complaint with a supervisory authority
10. Data Retention
We retain your personal data only for as long as necessary to:
– Fulfill the purposes for which it was collected
– Comply with legal obligations
– Resolve disputes
– Enforce our agreements
11. Cookies
Our website uses cookies to:
– Improve functionality
– Analyze traffic
– Enhance user experience
You can manage cookie preferences through your browser settings.
12. Changes to This Policy
We may update this Privacy Policy periodically. Significant changes will be notified to you via email or website notice.
13. Contact Us
For any privacy-related questions or to exercise your rights, please contact us at:
post@senjabyheart.no
You have the right to lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet):
– Website: www.datatilsynet.no
– Email: postkasse@datatilsynet.no
