Privacy Policy for Morten Skancke AS

Processing of your personal data at Morten Skancke AS

Morten Skancke AS, organization number 981 887 379, (hereinafter referred to as "the Company"), is the data controller for the processing of personal data in the business.

This privacy policy provides you with information on how we process your personal data and what rights you have in that regard. This privacy policy applies to you if:

  • You are our customer
  • Work for our customers
  • Work for our suppliers
  • Apply for a job
  • Are otherwise in contact with us, for example individuals attending seminars, recipients of newsletters, journalists contacting us, or other visitors.  

By 'personal data,' we mean information that can be linked to a physical person. By 'processing' of personal data, we mean any use of personal data, both automated and manual, such as collection, structuring, storage, and deletion.

We use cookies (see cookie statement) on the website. Read more about what information is collected when using our website here.

Contact information for the data controller:

Name: Morten Skancke

Address: Nydalstråkket 32, 2320 Furnes


Phone: +47 918 84 686 981 887 379

1. Why do we collect personal data and what kind of information do we collect?

1.1 Collaboration with external parties

For collaboration with and follow-up of our customers, suppliers, and other partners, it is necessary to store information to fulfill our contractual obligations as well as to plan and execute assignments and projects. Personal data processed may typically include names, email addresses, telephone numbers, and any other personal data necessary in the specific assignment or customer/supplier relationship. Most of this personal data will be necessary for us to process in order to fulfill our agreement with you, cf. GDPR Article 6 letter b. In some cases, the processing is necessary to safeguard our legitimate interests in the proper operation and organization of our own business, cf. GDPR Article 6 letter f. In the latter cases, we have assessed that our interest in conducting the processing outweighs the participant's need for protection of their interests or fundamental rights and freedom.

1.2 Processing of personal data regarding inquiries received via the website or other channels

f you contact us through our website or other channels, we process your personal data. Personal data processed may typically include name, telephone number, email address, employer, organization number, and any personal data that may arise from the inquiry. The information is collected via contact forms, by email inquiries, by filling out applications/forms, or when you contact us in other ways. The processing of personal data is based on a balancing of interests, cf. GDPR Article 6 letter f. We have assessed that it is necessary for us to store this personal data to follow up on your inquiry properly.

1.3 Processing of personal data at events

In connection with organizing seminars, courses, and similar events for our customers, suppliers, partners, and others, personal data is processed. This includes names, contact information, position, employer, and organization number. The legal basis for this processing is GDPR Article 6 letter f. In order to organize such events, we have assessed that our interest in conducting the processing outweighs the participant's need for protection of their interests or fundamental rights and freedom.

1.4 Processing of personal data during recruitment

In connection with the recruitment of employees, we collect personal data about job seekers applying for a job with us: Name, contact details, photo, CV, application, diplomas, certificates, statements from references, interview summaries and other information that job applicants provide to us. The legal basis is GDPR article 6 (a) and (f). The company has a legitimate interest in collecting information about the candidate for recruitment purposes. This data is deleted after the recruitment process is completed unless the candidate consents to the data being retained by the data controller. In that case, the legal basis is Article 6(a) of the GDPR. The data is stored for one year after the consent has been given or until the consent is withdrawn.

1.5 Newsletters and other marketing activities

For individuals who have consented to it, we send out newsletters by email. We also send newsletters and other marketing materials to those with whom we have an existing customer relationship. In connection with newsletters and other marketing activities, we process personal data. This includes names, contact information (email, address, possibly phone number), and potentially information about the employer for this purpose.

Consent to receive such marketing can be withdrawn at any time. This can be done by contacting us. The legal basis for the processing is GDPR Article 6 letter f. The processing is necessary for purposes related to our legitimate interests, which outweigh the need to protect the interests or fundamental rights and freedoms of the data subjects.

Personal data related to marketing is processed until consent is withdrawn or the existing customer relationship ceases.

2. Disclosure of personal data to third parties

We do not disclose your personal information to others unless there is a basis for such disclosure. Examples of such a basis typically include because you have consented to it, because the disclosure is necessary to fulfill an agreement with you, or because there is a legal basis that requires us to provide the information.

The data controller uses data processors to collect, store, or otherwise process personal data on our behalf. In such cases, we have entered into agreements to ensure information security in the processing. Such data processors may include accountants, recruitment systems, personnel systems, payroll systems, IT systems, HSE systems, etc.

All processing of personal data that we undertake takes place within the EU/EEA area.

3. Storage period

We store your personal information with us for as long as it is necessary for the purpose for which the personal information was collected, unless we are legally obligated to retain it further.

4. Your rights when we process personal data about you

The privacy regulations provide you with several rights related to the processing of your personal data. You have the right to request access to your personal data, correction of any errors, or deletion of the personal data we process about you. You also have the right to request restricted processing, object to processing, and request data portability. You can read more about the content of these rights on the Data Protection Authority's website:

To utilize your rights, we ask you to contact us by email. We will respond to your request as soon as possible, and no later than 30 days. You can also contact us if you want more information about how we process your personal data.

We will ask you to confirm your identity or provide additional information before allowing you to exercise your rights with us. We do this to ensure that we only provide access to your personal data to you and not to anyone pretending to be you.

5. Complaints

If you believe that our processing of personal data does not comply with what we have described here or that we are otherwise in breach of data protection legislation, you can complain to the Norwegian Data Protection Authority. You can find information on how to contact the Data Inspectorate on the Data Inspectorate's website: