Information Security

Privacy Policy

Privacy is important to us, and we want all customers, employees and other users of our website to rest assured that their personal data is kept safe.

Why does GC Rieber collect personal data?
GC Rieber collects personal data to be able to fulfil agreements or legal obligations. The process is described in the General Data Protection Regulation (GDPR) articles 6.1 b and 6.1 c. GC Rieber may sometimes wish to use personal data such as names and email addresses to distribute information materials. In such cases we will use a consent form which clearly explains what you are consenting to.

How is personal data collected?
GC Rieber collects personal data that the user actively discloses when using contact forms, registering for premium services, submitting job applications or using other services on our website.

What personal data do we collect?
GC Rieber only collects a minimum of information to be able to provide a service. In most cases it is limited to name, email address and other contact information. In other instances GC Rieber may need to obtain additional information, e.g. during a recruitment process or when registering moorings, parking and similar.

The following list describes all of the personal data that GC Rieber may collect in connection with the services provided on our website:

• Name
• Address
• Telephone number
• Email address
• CV and other appendices (job applications)

Who is responsible for your personal data?
GC Rieber AS or one of its subsidiaries is responsible for your personal data.

How is your personal data processed?
All personal data collected by GC Rieber is treated in accordance with prevailing privacy law. This means that we only collect a minimum of information to be able to perform a task and that this information is protected by appropriate measures such as strict access control, encryption of emails and deletion procedures in line with the privacy legislation.

How long is your personal data stored for?
Your personal data will be stored for as long as is necessary to achieve the objective for which it was collected or for longer if other statutes so require.

Where is your personal data stored?
Personal data collected by GC Rieber is stored in the EU and EEA and may in certain cases also be transferred to countries outside the EU and EEA. In such instances the personal data will be transferred in accordance with prevailing legislation.

In the event of transfers outside the EU or EEA, GC Rieber will use standard agreements as guarantees from countries without adequate approval by the EU Commission.

Who has access to your personal data?
GC Rieber does not disclose personal data to third parties unless instructed to do so by the authorities, e.g. the tax authorities or NAV in relation to employment matters.

In some cases GC Rieber uses sub-contractors to process personal data on its behalf. We only use sub-contractors who have provided guarantees that the personal data will not be processed for any other purpose than that for which it was collected and that the processing is conducted in accordance with the privacy legislation.

Your rights
When GC Rieber processes personal data on you, Norwegian privacy law grants you the following rights:

You may request access to the personal data we hold on you and inspect the security measures in place to protect your data.

  1. You may request that the personal data we hold on you be rectified and/or supplemented.
  2. You may request that we limit the processing of your personal data.
  3. You may submit an objection to the way we process your personal data.
  4. You may request that your personal data be deleted. Such requests must be met unless we can demonstrate (e.g. statutory requirements) that we are obliged to keep certain personal data about you.
  5. You may request that the personal data we process be transferred to a different data controller (e.g. a different company).
  6. If our processing of your personal data is based on your consent, you may withdraw your consent at any time and without giving a reason. If you believe that GC Rieber has failed to respect your rights under the privacy legislation, you may complain to the regulator – the Norwegian Data Protection Authority in this instance.
  7. You can do so by submitting a written complaint to the Data Protection Authority. You can find contact information for the Data Protection Authority on its website.