This privacy policy explains how we collect and use (process) personal data in our business. FUNGYBAR AS, represented by the CEO, is the data controller for the processing.
Our contact information is:
FUNGYBAR AS
Business address: Gydas vei 14, 1614 FREDRIKSTAD, Norway
Organization number: 834605732
Email address: contact@fungybar.com
We take your privacy seriously and have taken several steps to ensure that we provide you with clear information about how we process your data and what rights you have. If you feel that something is unclear or missing, please do not hesitate to contact us.
Please contact us if you have any questions about or would like to exercise one of your rights. You are entitled to a response within 30 days at the latest. Read more on the Norwegian Data Protection Authority's website.
Access to and correction of your own information: You can request a copy of all information we process about you, and ask us to correct information that is incorrect.
Deletion or restriction: In some situations, you can ask us to delete and/or restrict the processing of information about you, but we cannot delete data we are required to process.
Object to processing: If we process information about you on the basis of legitimate interest, you have the right to object to it.
Data portability: If we process information about you on the basis of consent or a contract, you can ask us to transfer information about you to you or to another data controller.
You also have the right to withdraw your consent at any time.
If you are not satisfied with the processing of your data, you can complain to the Norwegian Data Protection Authority, but we hope that you will tell us directly first so that we can try to resolve the matter for you in a good way.
We process personal data about:
Providing personal information to us is voluntary, but in order to complete a transaction, we need a number of pieces of information from you.
We process personal data when you:
According to Article 6(1) of the General Data Protection Regulation, personal data may be processed on the basis of:
As a general rule, personal data shall not be processed and stored for longer than is necessary to fulfil the purpose of the processing. If we process your personal data on the basis of a legitimate interest that we believe we have, you may object to the processing by contacting us. We will then consider your objection and provide you with prompt feedback.
We retain data for as long as we are required to do so by applicable legal obligations, for example relating to accounting, tax or employment laws, and/or other relevant rules and regulations. You may contact us at any time if you would like us to stop processing or delete your personal data, but please note that we cannot delete personal data that we are legally obliged to process.
Accounting material is kept for up to 5 years, according to the rules in the Accounting Act.
Here we describe in detail when and how we process your personal data, for what purposes, on what legal basis and for how long. We process personal data when:
When you give us your business card or contact us via the website (contact form, comment box, chat or similar), by email, by phone (call, text message) or social media, we process personal data. Depending on where and how you send us a message, this may include your name, contact information, IP address and other information you choose to send to us.
The purpose is to be able to respond to inquiries from you, for history, and to have documentation in case we receive complaints, claims or legal claims.
The legal basis may be:
We review, archive and delete inquiries as needed, but no less frequently than once per year.
When you purchase products and services from us, we process personal data such as name, contact information, order and payment information, and purchase history.
The purpose is to be able to deliver products and services to you after ordering/purchasing, to have a history of products and services sold and otherwise to administer and follow up on the customer relationship with you.
The legal basis may be:
When you become a customer with us, we process personal data as mentioned above. If you have an existing customer relationship with us, we may send you marketing by email and SMS, in accordance with Section 15 of the Marketing Act. The legal basis will then be legitimate interest, but may also be consent.
The purpose of marketing is to provide good customer service.
You can unsubscribe from email and SMS marketing at any time. Information on how to unsubscribe is included in all marketing-related emails and SMS we send.
When you apply for a job with us, we process personal data such as name, contact information, CV and other information we need to be able to assess your application.
The legal basis may be:
The legal basis may vary depending on where we are in the recruitment process and what type of position is involved.
For employees, we process personal data as mentioned above, in addition to information that is necessary to be able to pay salaries and otherwise administer the employment relationship.
The legal basis may be:
Most information about employees is processed on the basis of the employment contract and is generally deleted when the employment relationship ends, unless special reasons (such as a dispute over termination or dismissal) make it necessary to keep it longer.
When you participate in free events with us, we process personal data such as name and contact information. For paid events, we also collect booking and payment information. The purpose is to be able to offer relevant courses, lectures and workshops or to fulfill the agreement for a booked event.
The legal basis may be:
We may also use your personal data to send you a request for evaluation of the event you attended, and possibly invite you to other similar events. The legal basis is then legitimate interest, where the legitimate interest is to continuously improve our products and services, and offer you good customer support.
How long we store the information depends on the type of event, but it is usually deleted after 12 months at the latest.
We always inform you about the purpose of the surveys we conduct, and whether they are anonymous or not. We do not share the information with others or use it for purposes other than those stated. We do not collect personal information in anonymous surveys.
The legal basis for surveys that are not anonymous may be:
How long we store the information depends on the type of survey, but it is usually deleted after 2 years at the latest.
When you enter into an agreement with us either as a supplier, partner or data processor, we process personal data such as name, contact information and correspondence.
The purpose is to be able to enter into an agreement with you and the legal basis may be:
The information is retained for as long as we have an ongoing relationship. We process personal data related to general correspondence and communication as described above.
When you use our website, we process personal data in accordance with our cookie statement. The purpose is to administer our website, promote the company and respond to inquiries from visitors. The legal basis for cookies that store or process information that falls under Section 2-7b of the Electronic Communications Act is consent through a pre-setting in your browser, in line with Nkom's recommendations.
In order to operate our business efficiently and securely, we sometimes need to share your personal information with parties such as:
We require that everyone we share your personal data with secure your data in accordance with good information security practices and the requirements of the General Data Protection Regulation. We enter into data processing agreements with everyone who processes data on our behalf, and confidentiality agreements as required.
*We use data processors for:
For security reasons, we have not specified these by name, but please feel free to contact us if you would like to know more.
In some cases, your personal data is transferred outside the EU/EEA. For example, outside the EU/EEA we have:
Transfer of personal data outside the EU/EEA is only permitted to countries approved by the EU Commission, or under the necessary safeguards under the General Data Protection Regulation. This could be, for example, the EU's standard contracts.
For security reasons, we have not specified these by name. Please contact us if you would like to know more about which such data processors we use, what kind of necessary guarantees apply to such transfers and what additional security measures we have implemented.
We take information security seriously, and we will always do our utmost to protect your personal information in the best possible way. Among other things, we use:
to secure our data and prevent unauthorized persons from accessing, changing, deleting or in any way influencing the data we store, including your personal data.
We only use reputable providers of IT and administrative services such as web hosting, website and PC security, virus protection, email provider, backup, and more. We only allow others to access and/or process your personal data in accordance with our instructions, and only where strictly necessary (e.g. for IT support).
This privacy policy was last updated: 21.01.2025
