1.1 We are committed to safeguarding the privacy of our website visitors and service users.
1.2 This policy applies where we are acting as a data controller with respect to the personal data of our website visitors and service users; in other words, where we determine the purposes and means of the processing of that personal data.
1.3 In this policy, “we”, “us” and “our” refer to The Adventure Cook & Eventyrkokken.
The declaration contains information that you are entitled to when collecting information from our websites (section 19 of the Personal Data Act) and general information on how we process personal data (section 18, first paragraph, of the Personal Data Act). The Adventure Cook’s basis for processing personal data will vary, but according to the Personal Data Act § 8 letter a and b will consist of consent from the data subject or because it is required by law. Furthermore, it may be necessary to process personal information to fulfil an agreement with the data subject or to fulfil a legal obligation. Consent to the processing of personal data may be withdrawn at any time in accordance with article 13 (2) (c) of the GDPR.
2 About personal data and the regulations:
Personal data is information and assessments that can be linked to an identifiable individual. This can be a name, address, phone number, e-mail address, IP address and purchase and behaviour history. All processing of personal data, such as collection, registration, storage and delivery is subject to special rules, included in the Personal Data Act. It is the Adventure Cook who is responsible for ensuring that the treatment takes place in accordance with the rules of the Act. The Data Inspectorate supervises compliance with the law.
3 What kind of information do we collect?
3.1 In this Section 3 we have set out:
(a) the general categories of personal data that we may process;
(b) the purposes for which we may process personal data; and
(c) the legal bases of the processing.
3.2 We may process data about your use of our website and services (“usage data“). The usage data may include your length of visit, page views and website navigation paths, as well as information about the timing, frequency and pattern of your service use. The source of the usage data is our analytics tracking system. This usage data may be processed for the purposes of analysing the use of the website and services. The legal basis for this processing is our legitimate interests, namely monitoring and improving our website and services.
3.3 We may process your account data (“account data“). The account data may include your name and email address. The account data may be processed for the purposes of providing our services e.g. class bookings and communicating with you. The legal basis for this processing is our legitimate interests, namely the proper administration of our website and business.
3.4 We may process your personal data that are provided when booking or attending a class. (“service data“). The service data may include your email, contact details, allergies and any other relevant information.. The service data may be processed for the purposes of operating our bookings, providing our services, maintaining back-ups of our databases and communicating with you. The legal basis for this processing is our legitimate interests, namely the administration of our website and business.
3.5 We may process information contained in any enquiry you submit to us regarding goods and/or services (“enquiry data“). The enquiry data may be processed for the purposes of offering, marketing and selling relevant goods and/or services to you. The legal basis for this processing is consent.
3.6 We may process information relating to our customer relationships, including customer contact information (“customer relationship data“). The customer relationship data may include your name, your contact details and information contained in communications between us and you. The source of the customer relationship data is you. The customer relationship data may be processed for the purposes of managing our relationships with customers, communicating with customers, keeping records of those communications and promoting our products and services to customers. The legal basis for this processing is our legitimate interests, namely the management of our customer relationships.
3.7 We may process information that you provide to us for the purpose of subscribing to our email notifications and/or newsletters (“notification data“). The notification data may be processed for the purposes of sending you the relevant notifications and/or newsletters. The legal basis for this processing is consent.
3.8We may process any of your personal data identified in this policy where necessary for the establishment, exercise or defence of legal claims, whether in court proceedings or in an administrative or out-of-court procedure. The legal basis for this processing is our legitimate interests, namely the protection and assertion of our legal rights, your legal rights and the legal rights of others.
3.9 We may process any of your personal data identified in this policy where necessary for the purposes of obtaining or maintaining insurance coverage, managing risks, or obtaining professional advice. The legal basis for this processing is our legitimate interests, namely the proper protection of our business against risks.
3.10 In addition to the specific purposes for which we may process your personal data set out in this Section 3, we may also process any of your personal data where such processing is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person.
4 What is the information used for?
We use personal information for the following purposes:
a) To provide and improve our services. We use personal information to provide our services to you. For example, we need personal information in order for you to get a wet card from the Norwegian Paddle Federation. We also use personal information to ensure the best possible user experience for you, including customizing the display of content to your screen/device and ensuring the fastest possible page loading.
b) To personally customize our services, we give you recommendations and relevant marketing. We want to provide you with recommendations, product information, and service adjustments that are most relevant to you. This will both be given on the basis of your own behavior, eg. based on what products and services you have used or purchased, ads you’ve clicked on, or articles you’ve read, and on the basis of the behavior of other users with similar usage patterns like you.
c) To improve digital communication and advertising We use your personal information to improve our advertising. By making purchases with us, you accept targeted advertising through programmatic purchases and targeted advertising through social media where your personal data will be used in the purchase of such advertising.
d) To compile statistics and understand market trends We prepare statistics and map market trends. We do this to improve and further develop our product offerings and services. As far as practicable, we try to do this with anonymous information, without knowing that the information is specific to you.
e) To prevent misuse of our services We use personal information to prevent misuse of our services. Abuse may be attempts to log on to other people’s accounts, attempts at fraud, “spamming”, incitement, harassment and other acts prohibited by Norwegian law.
5 Sharing information.
The Adventure Cook, in some cases, shares personal information with other companies that perform services on our behalf. This is primarily to give you a safer and better shopping experience. Here are the most important examples:
a) When others perform services on our behalf; For example, external instructors on our courses / trips., we must share your information with the guides and instructors.
b) In case of suspicion of an offence, information may be disclosed to public authorities upon request. We will also be able to disclose information in case of suspected fraud, or information that is necessary to clarify specific disputes.
6 Deleting Personal Information.
We are required by law to retain certain personal information. Examples of this are:
The Accounting Act
Order data according to. right of withdrawal
7 Securing Personal Information.
We use appropriate security measures to protect personal information under our control against unauthorised access, collection, use, disclosure, copying, modification or disposal.
8 About marketing in e-mail and SMS:
If you have an active customer relationship with us, we can send you marketing by e-mail or with other electronic communication methods in accordance with the Marketing Act § 15. It includes newsletters and other inquiries regarding content, services, offers, promotions and events from us, via email, phone, SMS and social media. However, if you do not have an active customer relationship, we will only send such marketing if you have given us consent to this. Your personal data can also be used to customize this communication. You can opt out of marketing inquiries through the unsubscribe feature of the emails / SMS at any time easily and free of charge.
When using our services, we communicate via our brand name “The Adventure Cook” with the domain: www.theadventurecook.com and “Eventyrkokken” with the domain: eventyrkokken.no
To help service you as a customer in the best way possible, and to comply with local regulation in the countries we operate, we may ask for, and gather any or all of the below example data categories. In certain occasions, where necessary the information we gather includes, but is not limited to the summarised list below:
– Address, phone number, email address, age, gender, product preferences, travel budgets, salary levels, location data, DOB information.
In addition we may display marketing materials in various online platforms, to provide information about our products that are relevant to you, depending on what intent or interest that has been shown on our site. We do have “retargeting pixels'' or “cookies” on our website and do remarket to some or all of our users in digital platforms, including but not limited to; facebook, instagram, google, youtube and various partner networks connected to these platforms. You can read more about our GDPR process at: www.theadventurecook.com/gdpr
10 Changes to the Privacy Statement.
We may periodically update or change the Privacy Statement. In the event of major changes, we will inform you about this.
You have the right to appeal to a supervisory authority, The Data Inspectorate, in accordance with article 13 (2) d.
12 Contact information.