Holte as data processor
When our customers use Holte’s software, they are the data controllers. That means that the processing of personal data about the company’s contacts and employees is the responsibility of the customer. In this context, Holte is the data processor. As data processor, we process personal data in the software by agreement with the customer (order confirmation). Holte AS guarantees the lawful processing of personal data through a data processing agreement. We have entered into data processing agreements with our subcontracted data processors.
Holte as data controller
When you use our website or communicate with us through support, services, sales and in other contexts, we process personal data about you. In this context, Holte AS is the data controller of your personal data. Feel free to contact us if you have any questions about our processing of your personal data.
Pb. 172 Skøyen, 0212 Oslo, Norway
Telephone: +47 45 50 60 70
Contact and follow-up of customers
Holte processes the name, email address, phone no., company affiliation and history of our customers. We do this to communicate with you, follow up on sales, provide services and support. The processing takes place on the basis of an order confirmation.
As a customer, you will receive information, questionnaires and relevant marketing via newsletters and we need your email address for this purpose. The processing takes place on the basis of an order confirmation.
Contact and follow-up of others
When you who are not our customer contact us, we receive the information you choose to provide to us. The processing of personal data takes place based on a balance of interests. It is our assessment that the processing is necessary for us to be able to respond to your inquiry
Contact persons who are associated with enterprises that are visible in public registers may be processed for the purpose of providing the enterprise with an offer.
In a recruitment process, Holte AS will only collect application information relevant to the position which is being applied for. The application documentation for candidates that are not hired will be deleted once the hiring process has been completed, unless otherwise agreed.
When you visit our website, we record information about you and your activity in a so-called cookie, and in some cases your IP address. On your first visit, you will be given the opportunity to approve or refuse the use of non-essential cookies.
If cookies are not strictly necessary for the website or our services to function, we will always ask you to consent before placing cookies in your browser. Furthermore, we collect and store information from any order and contact forms you fill out.
The information collected about you is used for technical, analytical, statutory and marketing and customer-related purposes.
- To fulfil agreements with customers and our users, including providing the services requested, and to manage the customer or user relationship.
- In order to improve the functionality of the website, user experience and content, we collect and analyse data about your and other users’ behaviour.
- In order to be able to get in touch with you in connection with offers or marketing of our products or services.
The loyalty programme
If you sign up for our loyalty programme, you must provide your contact details and company affiliation. Your information will not be shared with our partners unless you click the “I want this” button. Your contact details will then be sent to the relevant supplier. We believe it is in your interests for the supplier to have your contact details so that the benefit you want to take advantage of can be registered on you.
When you use apps belonging to our software, we, as data controller, normally do not store information about you. If any errors occur with the app, the error message and information on what has happened will be sent to Microsoft. The error message will contain technical data, and in some cases your email address. This is necessary in order to maintain and improve our apps.
Sharing of personal data
We will not disclose your personal data to anyone else unless there is a lawful basis for such disclosure. Examples of such a basis include an agreement with you or a legal basis which requires us to disclose the information.
Holte uses data processors to collect, store or otherwise process personal data on our behalf. In such cases, we have entered into agreements to safeguard information security at every stage of the processing.
We currently use the following data processors:
- Customer contact and follow-up: Vega and Visma
- Marketing: Apsis, Netigate, Facebook, Instagram and Google
- Software database storage: Cygate and Azure
- Website and Cookies: Semway
How is the data secured?
We work systematically to safeguard the technical and organisational security measures that protect personal data from unauthorised access and use, as well as from being destroyed or deleted.
Access to personal data is regulated and limited to our employees and partners who need them. Everyone who has access has signed a confidentiality statement. Data is stored on secure servers.
When you communicate with us through our websites, all communication is based on SSL. Secure Sockets Layer (SSL) are cryptographic protocols that ensure that all communication through the website is secure. Any information you submit will be stored on secure servers behind a firewall that safeguards security requirements.
We will store your personal data for as long as is necessary for the purposes for which the personal data was collected. This means, for example, that personal data that we process on the basis of your consent will be erased if you withdraw your consent. The personal data that we process in order to fulfil an agreement with you will be erased or anonymised when the agreement and all obligations that follow from the contractual relationship have been fulfilled.
All data in Holte’s cloud-based software is erased/anonymised by Holte 5 years after termination of the agreement, or by separate agreement.
Your rights when we process personal data about you
You have the right to request access, rectification or erasure of the personal data that we process about you. You also have the right to request limited processing and to object to processing. You may withdraw your consent for the processing of your personal data at any time.
To exercise your rights, you must send an e-mail to email@example.com. We will respond to your enquiry as soon as possible and within the deadlines stipulated in the Norwegian Personal Data Act.
Please let us know if you believe that the way in which we process personal data does not conform with what we have described here or otherwise breaches data protection legislation.
You also have the right to complain to the Norwegian Data Protection Authority. You will find information about your rights and how to contact the Norwegian Data Protection Authority on their website: www.datatilsynet.no.
The information given here may be amended in the event of any changes to our services or applicable regulations concerning the processing of personal data. If we have your contact details, we will notify you of these changes. Otherwise, updated information will always be readily available on our website.