2. Contact information
2.1 Desiree Andersen is the data controller and bears responsibility that your personal data is processed in concordance with existing laws.
Contact information at Desiree Andersen:
Contact: Desiree Andersen
Address: Ramsåsveien 7, 3145 Tjøme, Norge
CVR number: 918905898
3. Desiree Andersen ensures fair and transparent data processing
3.1 When Desiree Andersen requests your personal data, you are informed as to which data is being used and to what specific purpose. This information is available to you at the time of the collection of your personal data.
3.2 If Desiree Andersen collects your personal data from other providers such as a public authority or business partner, you will be informed hereof no later than 10 days from the collection of the data. Desiree Andersen must also disclose the purpose of the data collection and the legal framework permitting Desiree Andersen access to your personal data.
4. Types of data collected
4.1 Desiree Andersen uses personal data processing for your registration with Desiree Andersen and to ensure that Desiree Andersen has the information needed, to establish a personalized training program and continuously guidance. Processed data cover: Name, address, email, date of birth, sex, weight, fat percentage, any injuries, illness or allergies, activity level, profile picture, motivation for applying, body measurements, results of physical tests, completed exercises, chat messages in group chat and with Desiree Andersen.
4.2 Additionally Desiree Andersen may process personal data actively transferred to BOON ApS by that same person.
5. Application and storage of collected personal data
5.1 The purpose of collecting and processing personal data is to ensure We can fulfill our obligations to you and ensure you get the best training We can provide. Data is also stored to make sure that proper documentation exist, should any disagreements arise from our engagement with each other.
6.1 The information is stored for the allowed period of time only and is deleted when the personal data is no longer required by Desiree Andersen. The duration of the time period depends on the type of the information and the reason for the storing.
7. Transmission of personal data
7.2 Desiree Andersen may transmit or share personal data in order to abide by a judicial obligation. Transmission of data may also occur following directions by the court or other public authority for trademark protection, privileges or property rights. This includes the exchange of data with other companies and organisations as safeguard against fraud.
7.3 Desiree Andersen makes use of service providers and data processors acting on our behalf. These services include hosting and system maintenance, email service etc. Business partners have access to our data to the extent necessary to do their job and deliver requested services. Business partners are contractually obligated to handle data in absolute confidence and are not authorised to use data for any purpose other than those contractually stated to Desiree Andersen. Desiree Andersen supervises that business partners meet their commitments in this regard.
7.4 Should Desiree Andersen in exceptional cases transmit personal data to a service provider or data processor outside of the EU, Desiree Andersen guarantees this data transmission happen in accordance with legal requirements.
8.1 What are cookies?
8.2 Desiree Andersen uses the following types of cookies:
9.1 Desiree Andersen protects your personal data and has adopted internal data security policies containing guidelines and precautionary measures to protect your personal data from destruction, loss, alteration or unauthorized disclosure and to prevent from any unauthorized access to the data.
9.2 Desiree Andersen has set procedures for assignment of security levels for employees processing personal data containing information on personal interests and habits. To prevent loss of data Desiree Andersen makes ongoing backup copies of the personal data and protects data confidentiality and authenticity by use of encryption.
9.3 In the event of a data security breach implicating reasonable personal risk of discrimination, identity theft, economic loss, and damage to reputation or other significant downside, Desiree Andersen must inform you without undue delay.
10. Your rights
10.1 In general
10.2 Access to your personal data
10.3 Correction or deletion of incorrect data.
10.4 Objection to data storage and transmitting