Personvernerklæring

Nordlys Livsstil

Privacy Policy

1. Introduction and Company Information

This Privacy Policy explains how Nordlys Livsstil collects, uses, stores, shares, and protects personal data in connection with our business activities, products, services, website, customer communications, and other interactions with us.

Data Controller: Nordlys Livsstil

Address: Storgata 12, 0155 Oslo, Norway

Email: [email protected]

Phone: +47 23 45 78 91

Nordlys Livsstil operates as a lifestyle business and may process personal data relating to customers, prospective customers, website visitors, suppliers, business partners, and other individuals who contact us or interact with our services.

2. Data Collection and Processing

We may collect and process the following categories of personal data, depending on your relationship with us and how you interact with our services:

  • Identification data: name, date of birth, and similar identifiers.
  • Contact data: address, email address, telephone number, and other communication details.
  • Customer and transaction data: purchase history, order details, payment-related information, delivery information, returns, and complaints.
  • Communication data: correspondence with us by email, phone, contact forms, chat, or social media.
  • Usage data: information about how you use our website, including pages visited, device information, browser type, and interaction data.
  • Marketing preferences: consent choices, subscription status, and communication preferences.
  • Technical data: IP address, cookies, log files, and similar online identifiers.
  • Any other information you choose to provide: for example, when contacting customer service or submitting feedback.

We normally collect personal data directly from you. In some cases, we may also receive data from payment providers, delivery partners, analytics providers, public sources, or other third parties where permitted by law.

3. Purpose of Data Processing

We process personal data for the following purposes:

  • To provide and deliver our products and services.
  • To manage customer relationships, orders, payments, returns, and complaints.
  • To communicate with you regarding inquiries, service updates, and support matters.
  • To send marketing communications, newsletters, and offers where permitted and, where required, with your consent.
  • To improve our website, services, product selection, and customer experience.
  • To analyze usage patterns, trends, and performance of our digital services.
  • To comply with legal obligations, including accounting, tax, and consumer law requirements.
  • To prevent fraud, misuse, and unauthorized access, and to ensure security.
  • To establish, exercise, or defend legal claims.

4. Legal Basis for Processing

We process personal data only where we have a valid legal basis. Depending on the specific processing activity, the legal basis may include:

  • Performance of a contract: when processing is necessary to fulfill a contract with you or to take steps at your request before entering into a contract.
  • Legal obligation: when processing is necessary to comply with applicable legal requirements.
  • Legitimate interests: when processing is necessary for our legitimate business interests, provided that your interests and fundamental rights do not override those interests.
  • Consent: when you have given us clear consent for specific processing activities, such as certain marketing communications or cookies where required.

Where processing is based on consent, you may withdraw your consent at any time without affecting the lawfulness of processing carried out before withdrawal.

5. Data Sharing and Third Parties

We may share personal data with third parties only when necessary and in accordance with applicable law. Such recipients may include:

  • Service providers: IT hosting, website maintenance, analytics, customer support, email delivery, and other operational providers.
  • Payment service providers: to process payments and related financial transactions.
  • Delivery and logistics partners: to deliver products and manage returns.
  • Professional advisers: lawyers, accountants, auditors, and consultants.
  • Public authorities: where disclosure is required by law or lawful request.
  • Business partners: where necessary to provide requested services or fulfill contractual obligations.

We require third parties that process personal data on our behalf to protect the data and to process it only in accordance with our instructions and applicable law.

6. Data Transfer to Third Countries

In some cases, personal data may be transferred to or accessed from countries outside Norway and the European Economic Area (EEA). If such transfers occur, we will ensure that appropriate safeguards are in place in accordance with applicable privacy laws.

These safeguards may include:

  • an adequacy decision by the relevant authorities;
  • standard contractual clauses or equivalent transfer mechanisms;
  • additional technical and organizational measures where necessary.

Where required by law, you may request further information about the safeguards used for international transfers.

7. Storage Duration

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, unless a longer retention period is required or permitted by law.

  • Customer and transaction data: retained for the period necessary to manage the customer relationship and to comply with accounting, tax, and consumer law obligations.
  • Communication data: retained for as long as needed to handle your inquiry and any follow-up.
  • Marketing data: retained until you withdraw consent or object, unless another lawful basis applies.
  • Technical and analytics data: retained for a limited period necessary for security, statistics, and service improvement.

When personal data is no longer needed, we will delete, anonymize, or securely archive it in accordance with applicable requirements.

8. User Rights

Subject to applicable law, you may have the following rights regarding your personal data:

  • Access: the right to know whether we process your personal data and to receive a copy of it.
  • Rectification: the right to request correction of inaccurate or incomplete data.
  • Erasure: the right to request deletion of your personal data in certain circumstances.
  • Restriction: the right to request that we limit the processing of your data in certain situations.
  • Data portability: the right to receive certain data in a structured, commonly used, machine-readable format and, where technically feasible, to have it transmitted to another controller.
  • Objection: the right to object to processing based on legitimate interests and to object at any time to direct marketing.

To exercise your rights, please contact us using the details provided below. We may need to verify your identity before responding. We will respond within the timeframe required by applicable law.

9. Withdrawal of Consent

Where we rely on your consent to process personal data, you may withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.

You may withdraw consent by contacting us at [email protected] or by using any unsubscribe or preference-management option provided in our communications, where available.

10. Right to Complain

If you believe that our processing of your personal data does not comply with applicable privacy laws, you have the right to lodge a complaint with the competent supervisory authority.

In Norway, this is the Norwegian Data Protection Authority (Datatilsynet). We encourage you to contact us first so that we can try to resolve your concern directly.

11. Data Security

We take appropriate technical and organizational measures to protect personal data against unauthorized access, loss, misuse, alteration, and disclosure. These measures may include:

  • access controls and role-based permissions;
  • encryption and secure transmission methods where appropriate;
  • regular backups and system monitoring;
  • staff confidentiality obligations and training;
  • security assessments and vendor oversight;
  • procedures for handling suspected data breaches.

While we strive to protect personal data, no method of transmission or storage is completely secure. We therefore cannot guarantee absolute security.

12. Contact Information

If you have questions about this Privacy Policy, our processing of personal data, or wish to exercise your rights, please contact us:

Nordlys Livsstil
Storgata 12, 0155 Oslo, Norway
Email: [email protected]
Phone: +47 23 45 78 91

13. Changes to Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, legal requirements, or other operational needs. The updated version will be published on our website or otherwise made available to you where appropriate.

We encourage you to review this Privacy Policy periodically to stay informed about how we process personal data. The date of the latest update may be indicated at the top or bottom of the policy, if applicable.

4/13/2026 Hjem