Skip to main content
To top
Blog
Favourites
Log in

Privacy Policy for Anda-Olsen AS

This privacy policy explains how Anda-Olsen collects and uses personal data and describes security in relation to the General Data Protection Regulation (GDPR).

The CEO of Anda-Olsen is the data controller responsible for the company's processing of personal data. If daily responsibility is delegated, this is specified under each relevant section. The delegation only covers tasks, not responsibility. The policy includes the information you are entitled to when data is collected from our website (Personal Data Act § 19) and general information about how we process personal data (Personal Data Act § 18, paragraph 1).

Purpose

Anda-Olsen's purpose for storing personal data is to communicate with customers either via phone, letter, email, or SMS. This is necessary to ensure access to information regarding products/solutions, warranty cases, product recalls, communication for online purchases, order processing, and claims follow-up.

Processing of Personal Data

www.anda.no

The IT Manager at Anda-Olsen is responsible for the daily handling of personal data on anda.no. For anda.no, Gurusoft in Sandefjord is responsible for the operation, development, and updating of the website. Data collected in connection with the website's operation is stored on servers managed by the provider. Only Anda-Olsen and the provider have access to the collected data. A data processor agreement between Anda-Olsen and Gurusoft regulates which information the provider has access to and how it should be processed.

In this context, we store personal data about employees of customers, partners/dealers, and businesses that contact Anda-Olsen to evaluate our products and services on servers hosted by Gurusoft.

Personal data we store:

  • Contact information such as name, position, phone numbers, and email address.
  • Email communication related to marketing, sales, and use of our products.
  • Usernames, passwords (one-way encrypted and cannot be retrieved), and mobile numbers for contact persons who have registered in our product and knowledge portals.
  • Managers of our customers and dealers representing larger organizations may have superuser roles, allowing them to create, maintain, and delete users from our product and knowledge portals.
  • Orders placed on behalf of our customers are stored with information about who actually placed/registered the order.

Security Certificate (SSL)

It is safe to visit our website as a security certificate is used to verify the site's identity and ensure that all communication is encrypted. We use a recognized security certificate from the leading provider Commfides (also a supplier to Altinn.no). The purpose of encryption is to ensure secure data communication between the server (our website) and the client (your browser). This includes a digital certificate to prove the website's authenticity.

Cookies on the Website

Gurusoft AS provides the e-commerce platform/cloud service Gurusoft Ecommerce for our website and is responsible for technical development, operation, and maintenance. Gurusoft uses the following two cookies to make the website function:

  • JSessionId: This is a "session cookie" that is removed from your computer/mobile when you close the browser. This cookie has a reference ID to a session file on the webserver. The session file does not contain personal data. It is necessary for anonymous users to have their shopping carts, favorites, etc. The session file is automatically deleted after the user has closed the browser or been inactive, so it is not stored permanently. Only system administrators have access to these session files.
  • ListView: This cookie is used to remember which type of product list a user has selected, with two possible values: list or grid view. It does not store personal data.

Google

  • Google Analytics: A common analysis tool used to analyze user behavior on a website. It is a free service from Google that allows you to view the number of visitors, page views, traffic sources, visit duration, geographic location, and much more. To store information about visitors, Google Analytics uses a JavaScript that in turn creates various cookies in your browser. The data collected via Google Analytics is collected anonymously and cannot be linked to you as a user.
  • Google Remarketing: When you visit a website, a cookie (tracking file) is stored in your browser. When you visit another website with ads from the site you just visited, these ads are shown to you. If this cookie is not in your browser, a different ad from another site or a random ad based on different segments than remarketing is shown.

Facebook, Twitter, LinkedIn With JavaScript from Facebook, Twitter, and LinkedIn, we can display ads to you on these platforms after you have visited our website. We do not collect any data that can identify you as a person, but we sometimes use the opportunity to show you ads after your visit.

Internally Stored at Anda-Olsen

Anda-Olsen also stores personal data on its internal servers located in its Ålesund office. The IT Manager is responsible for the daily operation of these servers, which have enhanced security with encrypted communication.

Personal data will be transferred from www.anda.no for further processing on internal servers. These servers maintain high security, and collected data is not shared with external parties.

In addition to Anda-Olsen managing its solutions, Lan-X, as a subcontractor, provides 24/7 monitoring and participates in server and PC updates, all with a focus on data security. Anda-Olsen and Lan-X have a data processor agreement.

Cloud Services

Anda-Olsen uses cloud services as part of its business. Below is a list of systems we use that contain personal data for employees of our customers and dealers/partners.

Newsletters, contact persons at customers and partners as part of our collaboration agreements, are registered in our system for sending important information and newsletters. Contact persons can subscribe and unsubscribe from these lists themselves. The registered data includes email address, name, and company. Management of newsletter subscriptions is handled by Lime/Anda-Olsen.

Rights

Everyone has the right to basic information about how personal data is processed in a business according to § 18, paragraph 1 of the Personal Data Act. Anda-Olsen has provided this information in this declaration and will refer to it in case of inquiries. Those registered in one of Anda-Olsen’s systems have the right to access their information. They also have the right to request that incorrect, incomplete, or unauthorized data be corrected, deleted, or supplemented. Requests from the registered person shall be answered free of charge and within 30 days.

For more information on laws and rights, we refer to the Norwegian Data Protection Authority's website. This agreement is fully based on Norwegian law.

How are the Data Deleted or Archived?

Anda-Olsen will immediately delete personal data if it is incorrect, incomplete, or unnecessary. Alternatively, the data will be updated with correct information if deemed necessary for customer management. Unnecessary personal data will be deleted.

Contact Information

Email: personvern@anda.no
Phone: +47 70 17 89 70
Address: Breivika Industriveg 75, 6019 Ålesund

My account