Privacy Policy

Last updated: 07/07/2025

This privacy policy explains how Johs. H. Giæver AS, the company operating www.lyngen-havnnes.no, collects, uses, and protects your personal data in accordance with the EU General Data Protection Regulation (GDPR). The website offers booking services and an online shop for products and experiences connected to Havnnes Handelssted.

1. Data Controller

Johs. H. Giæver AS

Org. no.: 940 315 468

Postboks 1, 9159 Havnnes, Norway

Email: office@giaever.net

2. What Information We Collect

We collect the following types of personal data:

When you make a booking or purchase: name, email, phone number, address, and payment information
When contacting us via forms or email: name, email, and any message content
Automatically via cookies: IP address, browser type, device information, and website interactions

3. Purpose of Data Collection

We process your personal data in order to:

Deliver purchased goods and services
Manage your user account and booking history
Respond to inquiries
Improve the functionality and user experience of our website
Comply with legal obligations (e.g., accounting and tax requirements)

4. Legal Basis for Processing

The processing is based on:

GDPR Art. 6(1)(b): necessary for fulfilling a contract
GDPR Art. 6(1)(f): legitimate interest in operating and improving our services
GDPR Art. 6(1)(a): consent for marketing purposes

5. Cookies

Our website uses cookies for analytics and functionality. We use Google Analytics via Wix to understand visitor behaviour and enhance the website. You can control cookie settings through your browser preferences.

6. Third Parties and Data Processors

We use the following third-party service providers:

Wix.com: website, booking system, and online store platform
Stripe: payment processor

All data is stored securely on servers located in the EU/EEA or in countries with an adequate level of protection under GDPR.

7. Data Retention

We retain personal data only as long as necessary for its purpose or as required by applicable laws (e.g., accounting rules). Inactive user data is deleted after 12 months.

8. Your Rights

You have the right to:

Access your personal data
Correct inaccuracies
Request deletion of data
Object to processing
Request data restriction
Withdraw consent at any time

9. Changes to This Policy

We reserve the right to update this policy at any time. Major updates will be communicated on the website.

10. Video Surveillance at Havnnes

To protect individuals, property, and cultural heritage, Johs. H. Giæver AS has installed video surveillance in specific areas at Havnnes Handelssted. This surveillance is carried out in accordance with the Norwegian Personal Data Act, the Regulation on Camera Surveillance, and the guidelines from the Norwegian Data Protection Authority.

Purpose:

Prevent and document theft, vandalism, and unauthorised access
Ensure the safety of individuals (e.g., detecting if someone falls into the sea near the pier)
Safeguard historically protected buildings from damage

Scope and Operation:

Surveillance is limited to high-risk areas, such as the pier and technical installations
Video is only recorded when motion is detected close to the cameras
Footage is stored locally for a short duration and only reviewed if an incident occurs
Remote monitoring via encrypted connections on mobile devices is possible due to the large area and limited staff

Access and Sharing:

Access to footage is restricted to authorised personnel only
Footage is shared only with police or insurance companies if criminal or compensable damage is suspected or documented

Legal Basis:

The legal basis is GDPR Art. 6(1)(f) – legitimate interest. A documented legitimate interest assessment has been conducted. All areas under surveillance are clearly marked with appropriate signage.

Only the Norwegian version of this privacy policy is legally binding. This English version is provided for informational purposes only.