Privacy policy
Privacy policy - RoMobil
When you use the website, our online store and/or are in contact with us in any other way, RoMobil may process personal data about you. Below you will find information about when and what personal data is collected, why we do this and your rights related to the processing of personal data.
RoMobil is responsible for the processing of personal data as described below.
Contact details for the data controller:
Address: Rypesnaret 9, 2016 Frogner
E-mail: hei@romobil.no
Phone: 91602721
Organization number: 934428102
For any questions you may have about our processing of your personal data, you can contact us at hei@romobil.no.
1. Who we process personal data about
This privacy policy applies to our processing of personal data about RoMobil customers.
2. Why do we process personal data, what information is processed and what is the legal basis?
All processing of personal data takes place in accordance with the data protection rules applicable at any time, including the Personal Data Act and the General Data Protection Regulation (GDPR).
"Personal data" means all information that can be linked to a natural person (the latter is referred to as "registered").
"Processing" means everything that is done with personal data, such as collection, registration, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or any other form of making available, alignment or combination, restriction, erasure or destruction.
We collect the following personal data for the purposes set out here:
i. Responding to inquiries and establishing customer relationships. We receive inquiries by telephone, e-mail and other electronic messages. When contacting us, contact information such as name, telephone number and e-mail address is registered. The registration of contact information is necessary in order to be able to enter into an agreement with you, cf. GDPR Article 6 (1) (b).
ii. Delivering goods and services. In order to fulfill the agreement and deliver the goods and services you have ordered, we process, in addition to your contact information. This processing of personal data is based on GDPR Article 6(1)(b) (necessary for the performance of a contract). If we process special categories of personal data (sensitive personal data), we will obtain your consent to this in accordance with Article 6(1)(a) of the GDPR, cf. Article 9(2)(a).
iii. IT operations and security. Personal data stored in our IT systems may be accessible to us or to our suppliers in connection with system updates, implementation or follow-up of security measures, error correction or other maintenance. The basis for processing is GDPR Article 6 (1) (f) (balancing of interests, cf. our desire to ensure good and updated systems) and our legal obligation to have satisfactory information security, cf. GDPR Articles 32 and 6 (1) (c).
3. Disclosure of personal data and use of data processors
We do not disclose personal data in other cases or in other ways than those described in this privacy policy unless the customer explicitly requests or consents to this or the disclosure is required by law.
RoMobil uses data processors to collect, store or otherwise process personal data on our behalf. In such cases, we have entered into agreements to ensure information security at all stages of the processing. Such data processors are, for example, suppliers of IT solutions.
4. Storage of personal data
We store your personal data with us for as long as it is necessary for the purpose for which the personal data was collected, and delete the data in line with regulatory requirements.
Personal data that we process on the basis of your consent will be deleted if you withdraw your consent.
5. Security of processing
All processing of personal data is secured with the required technical and organizational measures.
We handle information so that it is correct, accessible and handled according to the degree of sensitivity of the information. We also use a range of security technologies and information security procedures to protect personal data from unauthorized access, use or disclosure.
We have entered into data processing agreements with all of our suppliers who process personal data, whereby they undertake the same level of security as we have for our processing of personal data.
We restrict access to personal data to the staff or third parties who will process the data on our behalf. These parties are subject to a duty of confidentiality.
Procedures have been established for handling breaches of information security and procedures (data breaches), and we will, if there is a breach that poses a risk to the privacy of the personal data concerned, send a deviation report to the Norwegian Data Protection Authority as soon as possible and no later than 72 hours after the breach was discovered. If the breach has a high probability of affecting the privacy of those to whom the breach relates, we will also notify them.
6. Your rights when we process personal data about you
You have the following rights:
Information
You have the right to receive information about the personal data we process about you. Through this statement, we inform you about our processing of personal data. You can also contact us if you want more information.
Right of access
You have the right to demand access to the personal data processed about you. Please contact us if you want access.
Change and deletion
You can also ask us to correct incorrect information we have about you or ask us to delete personal data. We will, as far as possible, comply with a request to delete personal data, but we cannot do this if we still need the data.
Processing on the basis of consent
If we process personal data on the basis of your consent, you can withdraw your consent at any time. The easiest way to do this is to use the method stated when you gave your consent or contact us.
Right to restrict or object to processing
You have the right to have the processing restricted in certain cases, see GDPR Article 21, as:
a. You contest the accuracy of the personal data - processing is stopped for a period that allows us to verify the accuracy of the personal data.
b. The processing is unlawful and you object to the erasure of the personal data and instead request that the use of the personal data be restricted.
c. We no longer need the personal data for the purpose of the processing, but you need it to establish, exercise or defend legal claims.
You may also object to processing under Article 21(1) of the GDPR pending the verification of whether our legitimate interests override your privacy.
The right to data portability
For data that you have provided to us and is necessary for the performance of a contract with us, and which is processed automatically (i.e. not manually by us), you may request that your personal data be disclosed or transferred to another provider in a structured, commonly used and machine-readable format (data portability).
Automated processing, including profiling
There will be no automated processing, including profiling, based on your personal data that produces legal effects or significantly affects those to whom the personal data relates. See GDPR article 22 no. 1 and 4.
To exercise your rights, you must submit a request to the company. We will respond to your request as soon as possible, and at the latest within 30 days.
We will ask you to verify your identity or to provide additional information before we allow you to exercise your rights against us. We do this to ensure that we only give access to your personal data to you - and not someone pretending to be you.
7. Complaints
If you believe that our processing of personal data does not comply with what we have described here or that we are otherwise in breach of data protection legislation, you can complain to the Norwegian Data Protection Authority.
You can find information on how to contact the Data Protection Authority on the Data Protection Authority's website: https://www.datatilsynet.no/om-datatilsynet/kontakt-oss/hvordan-kan-jeg-klage-til-datatilsynet/
8. Changes to our services
If there are any changes to our services or changes to the regulations on the processing of personal data, this may result in changes to our processing of your personal data. If we have your contact details, we will make you aware of such changes. Otherwise, updated information will always be readily available on our website.
Last modified: 06.01.2026
