KGJ GROUP DATA PROTECTION DECLARATION
This data protection declaration applies to KGJ Group and subsidiaries’ (the company) processing of personal data.
Kristian Gerhard Jebsen Skipsrederi AS (914 530 393 MVA) is appointed Controller for all personal data collected and processed by us.
Personal data are all data that can be linked to you as an individual, i.e., name, telephone number etc.
The purpose of this data protection declaration is to provide information about which personal data we process, why we process personal data and which rights you are entitled to in this regard.
Which personal data are processed?
The company processes the following personal data:
– Telephone number(s)
– E-mail address
– Personal identity number
– Bank account details
– Marital status
How are personal data collected?
Personal Data related to representatives of our customers, suppliers and business partners are in general collected from the relevant company (e.g. employer), from the representative himself, from other business partners, or from publicly available sources.
Collection of personal data from the data subject
The company will not disclose, sell, distribute or otherwise share your Personal Data with other companies or organizations for commercial purposes. We will only disclose Personal Data to third parties to the extent we are required to do so pursuant to applicable law or regulation, or to the extent disclosure is necessary to deliver our services or otherwise required for legitimate business purposes. In any case we will implement the measures required to ensure an adequate protection of the Personal Data.
The purpose of collecting personal data
The main purposes of our collection and processing of Personal Data are to be able to comply with legal obligations and to conduct recruitment processes (article 6 (1b), maintain business relations and overviews of suppliers (article 6 (1f)). Prepare and deliver tenders and services to our customers, receive services from our suppliers, collaborate with our business partners, respond to questions and requests from customers and others.
How are personal data stored and secured
Access to Personal Data is restricted to ensure that the processing of your Personal Data is carried out in a safe and lawful manner. Only designated persons in the company have access to Personal Data and the access is secured by use of control mechanisms whenever necessary or required by law.
How to delete personal data?
The company has internal routines that safeguard that your personal data are deleted in accordance with the personal privacy regulations.
If you are of the opinion that there are grounds for deleting all or parts of your personal data, you are kindly requested to contact the company for the deletion of your personal data.
Distribution to a third party
Personal data are not distributed/shared with external third parties. KGJ Group and subsidiaries will on occasion make use of subcontractors who process personal data on our behalf. We will only engage subcontractors who have submitted guarantees that the personal data will only be used for the purpose they have been contracted and always in compliance with personal privacy regulations.
When KGJ Group and subsidiaries processes your personal data, the regulations provide you with the following rights/entitlements vs the company:
1. You can request access into which personal data we process regarding your person and which security measures are in place when making use of your personal data.
2. You can request to correct and/or supplement personal data information we process regarding your person.
3. You can request restricted processing of your personal data.
4. You can file an objection for processing your personal data.
5. You can request that your personal data is deleted. Such request must be acceded to, unless we can justify (i.e., legal obligations) that we are obligated to retain/store certain personal data about you.
6. You can request that personal data being processed by us is transferred to another controller, (i.e., to another company).
If the company’s processing of your personal data is based on a consent form, you can withdraw your consent at any time, without giving any reasons for this.
If you are of the opinion that KGJ Group and subsidiaries are not in compliance with your rights in accordance with the regulations (GDPR/The Personal Data Act), you have the right to file a complaint to the controlling authority, which is in our case “Datatilsynet” (the Norwegian Data Protection Authority). This can be achieved by sending a written complaint to “Datatilsynet”. “Datatilsynet”’s contact information can be found on their website; www.datatilsynet.no.
KGJ Group and subsidiaries
Zander Kaaes gt 7,
Chief Financial Officer
Zander Kaaes gt 7,