Privacy and data policy

You are obligated to provide complete and accurate details in the prescribed form to enable us to process your booking and fulfil our contractual obligations. The personal information you provide will be utilized for the purpose of facilitating your booking(s).

Moreover, by confirming your booking, you assert that any personal information or data you provide on behalf of another person has been obtained with their prior consent. Such individuals should have familiarized themselves with Vervet Adventures’ booking terms and conditions and privacy policy and be aware of their rights concerning the data shared with us.

Our Service Providers may retain the right to use images or videos of you for lawful purposes, including publicity, illustration, advertising, and web content. When required by law, they will seek your consent prior to any publication.

We are responsible for processing personal data about our existing, former, and potential customers, as well as users of our website and other channels where we interact with our customers, in a legal and secure manner.

This includes:

• Collection of personal information
• Registration of personal information
• Storage of personal information
• Disclosure of personal information
• Deletion of personal information

Information provided by you:

• Contact information: Full name, address, phone number, email address.
• Order data: purchased activity(s)/overnight stay(s), payment/invoice information.
• Customer history and our communication with you
• Travel information: time of travel, health information related to disability or allergies.
• Corporate data: job title and company affiliation

Information that may be stored after the end of the customer relationship will be anonymized. All our employees are bound by confidentiality regarding customer relationships and personal information. If you have any questions about our privacy policy or the processing of personal information, please feel free to contact us at booking@vervetadventures.no.

*Bookings from business customers may include collection of the above-mentioned data, including your employer.

Data collected about you:

• Technical data: including web browser, operating system, information about the type of PC/mobile device, language settings on your browser, and IP address.
• Usage data: including the duration of your visit to our website, time spent on the website, clicks, navigations, and details about your entry points to our websites.
• Location data: consisting of information about your location when visiting our website.

Why do we store personal information?

Personal information is stored to facilitate communication between you and us and to provide you with the best possible service. In order to deliver our services and products to you, we need certain information from you. We only store information that is necessary and relevant to our delivery. The information stored depends on the type of request and your customer relationship with us. It may also be relevant to store information to send you information about your desired products and services and any relevant offers.

1) Managing and fulfilling your orders: For this purpose, we typically utilize contact information and order data. This is necessary to fulfil our agreement with you.

2) Providing customer service and addressing potential claims: For this purpose, we typically use contact information, order data, and communication records. This is necessary to fulfil our agreement with you.

3) Bookkeeping purposes: For this objective, we typically rely on order data to comply with legal obligations such as the bookkeeping act and tax laws.

4) Marketing purposes (sending newsletters and digital marketing on our websites): For this purpose, we typically utilize contact data, usage data, and location data, with your consent when required. You may withdraw your consent at any time by contacting us.

5) Providing access to our site, improving the user experience, and enhancing our services: For this purpose, we typically use technical data, usage data, and location data. Our legal basis is your legitimate interest in enabling site access, presenting relevant products and content, and delivering a pleasant user experience. In some cases, we may seek your consent.

Your personal data may be aggregated into anonymous data for statistical research and reporting purposes.

How long do we store your personal data?

We will store your personal data for the duration necessary to fulfil the purposes outlined in this privacy policy. The criteria for determining when we delete your data include:

• Retaining data as required by law, such as tax, accounting, and bookkeeping laws (typically five years).
• Keeping data like contact details, order information, and communication records relevant to limitation periods for potential claims (five years after the date of a purchase). We may also retain your data for more than five years in case of outstanding payments or active legal disputes.
• When relying on consent, we retain your personal data for as long as you have consented to the processing for specific purposes.

Where do we store your personal data?

We store your personal data on systems within the European Economic Area (EEA). Your data may also be stored on servers outside the EEA. If your personal data is transferred to countries outside the EEA, we will adopt appropriate safeguards to protect your privacy, such as the use of standard contractual clauses or ensuring that the recipient is Privacy Shield certified.

Transfer of your personal data

We use subcontractors (sub-processors) to process your personal data. Your data may be transferred to third-party service providers, including:

• Booking and purchasing service providers
• Accounting service providers
• Marketing, sales, and analytics service providers
• IT services providers

Data processing agreements are in place with all subcontractors that process personal data on our behalf, including potential subcontractors located outside the EEA.

Cookies

We use cookies on our websites for the following purposes:

• Necessary cookies: Essential for basic website functions, such as security, session saving, enabling login, language and currency preferences, form filling, or order placement.
• Analytics cookies: Enable us to monitor and analyse web traffic, track user behaviour, and create statistics.

Our use of cookies is based on your consent. Having your browser settings accept cookies is sufficient consent for our use. You can manage and withdraw your consent at any time through your browser settings and the cookie control panel.

Typically, our use of cookies does not entail the processing of data that could be directly linked to you as an identifiable individual. However, certain cookies may involve the use of personal data, especially when you log in to our website or when we combine cookies with information about your customer relationship to tailor your user experience on our websites. We refrain from establishing such links for targeted advertising cookies unless you provide explicit consent.

Privacy rights

When we collect and process personal data about you, you have the following privacy rights:

• Right to information: Obtain further information on our use of your personal data.
• Right of access: Receive a copy of your personal data.
• Right to rectification: Ask us to correct your personal data if it is incorrect or incomplete.
• Right to be forgotten: Request the erasure of your data if no longer needed.
• Right to restrict processing: Request suspension of our use of your personal data.
• Right to data portability: Obtain personal data you provided in a format allowing transfer to another organization.
• Right to object: Object to our use of your personal data, such as unsubscribing from marketing emails.
• Right to prevent automated decision making: Avoid being subject to automated decision making (e.g., automated credit scoring).

If you believe we have not processed your personal data in accordance with data protection legislation, you have the right to file a complaint with your local data protection supervisory authority. In Norway, the relevant authority is Datatilsynet. We encourage contacting us first to address any concerns.

Changes in the privacy policy

This privacy policy was last updated on 10.11.2023 and may change. The latest version will always be available on our website.

How can you contact us?

For more information on how we process your personal data or to exercise your privacy rights, please contact us via email: booking@vervetadventures.no.

You can also reach us using the following contact information:

Vervet Opplevelser AS
Org.nr: 931052624
Nordøstpassasjen 47 | 9008 Tromsø | Norway
Tel: +47 93 42 77 47
Mail: booking@vervetadventures.no
www.vervetadventures.no