When you use our services, you’re trusting us with your information. We understand this is a big responsibility and work hard to protect your information and put you in control.
“Personal data” means any information relating to a natural person. “Processing” means any operation which is performed on personal data, whether by automated means, such as collection, recording, organisation, storage and use. your information. We understand this is a big responsibility and work hard to protect your information and put you in control.
1. Data Controller
2. Information about Lucidtech’s processing of personal data
Lucidtech process personal data about people who: are, or work for, our suppliers, customers or business partners, are applying for a job, or get in touch with us in another way (except employees).
Types of personal data we collect, purpose and lawful basis for processing
We process personal data about people who are connected to our suppliers, customers and business partners, such as contact information, telephone number and address(es), including postal address and e-mail.
Such personal data is processed to the extent necessary to administer a contractual relationship and/or fulfil an agreement. The lawful basis for this is GDPR article 6 nr. 1 letter b.
In some cases, we store such personal data to comply with legal requirements or to assist law enforcement. We may process your information if reasonably necessary to comply with a legal obligation. The lawful basis for this is GDPR article 6 nr. 1 letter c.
We also process such personal data for marketing purposes. The legal basis for such processing is Lucidtech's legitimate interest in sending out information and marketing inquiries to stakeholders. If we use e-mail to send out marketing inquiries, this is only sent to people with whom we have an existing customer relationship or to people who have given consent to receive such marketing inquiries. You can withdraw such consent by following the instructions in any e-mail inquiry.
We also process personal data in connection with recruitment of persons for employment. We process information such as name, e-mail address, telephone number, address, information from your CV, application and other provided documents, photo, diploma and our or any given references' assessments related to the applicant. The legal basis for such processing is Lucidtech’s legitimate interest in recruiting people to its business. If you do not get a position with us after a recruitment process, we will delete the information about you shortly, unless you have consented to further storage.
Personal data that we process for any purpose will not be kept for longer than is necessary for that purpose.
3. Disclosure of personal data to others
We do not disclose personal data to others unless there is a legal basis for such disclosure.
We may disclose your personal data to comply with legal requirements or to assist law enforcement. We may disclose your personal data if reasonably necessary to comply with a legal process such as a court order, government/law enforcement investigation or other legal requirements.
We use data processors to collect, store or otherwise process personal data on our behalf. For example, we have data processors who deliver systems for IT and operations to us. In such cases, we have entered into data processing agreements to safeguard privacy and information security in all stages of the processing.
Our processing of personal data takes place mainly within the EU/EEA area. If processing of personal data takes place outside the EU/EEA area, we ensure that the transfer of personal data takes place in accordance with privacy regulations, for example by using the EU's standard contractual clauses. Contact us if you want more information.
4. Data subject’s rights
You have the right to request access to your personal data, rectification and erasure of your data. You also have the right to ask us to restrict the processing of your personal data in certain circumstances. You may also ask us to transfer the personal data to another organisation (data portability).
There may be exceptions to the abovementioned rights. If you wish to invoke your rights, you can contact us by using the contact information at the bottom of the page, and we will respond to your inquiry as soon as possible and normally within 30 days.
Lucidtech has implemented appropriate technical and organizational measures to safeguard the personal data which it processes, against accidental or unlawful destruction or accidental loss, alteration, unauthorized disclosure or access, and other unlawful forms of processing. Lucidtech uses administrative, technical, and physical measures to safeguard data against loss, theft and unauthorized uses, access or modifications.
In case of a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to customers personal data, Lucidtech will inform the customer of the breach without undue delay, including a summary description of the potential impact and a recommendation on measures to mitigate the possible adverse effects of the breach.
Subcontractors such as IT-service providers processing data on Lucidtech’s behalf are held by legally binding confidentiality and security requirements.
8. Contact information and complaints
You have the right to lodge a complaint about our processing of personal data to the Norwegian Data Protection Authority (Datatilsynet).
Address: Bentsebrugata 31E, 0469 Oslo, Norway.
Lucidtech is registered in the Norwegian Register of Business Enterprises with organization number 918 345 787.