Privacy policy

We process personal data in order to deliver services, carry out projects and research, manage customer relationships and collaborations, communicate with you, and to develop and improve our websites and services. If you consent, we may also process personal data for other purposes, such as sending newsletters or updates. We want you to feel confident that your personal data is handled responsibly. This Privacy Policy explains how we collect and use personal data, how we safeguard it, whom we may share it with, and what rights you have.

What is personal data?

Personal data is any information that can be linked to an individual, directly or indirectly—for example name, email address, phone number, IP address, and information provided in forms, applications, or project/research data.

Who is the data controller?

Møreforsking AS, represented by the Managing Director, is the data controller for the processing of personal data related to our websites, services, projects, and other contact with us.

What personal data do we process?

Depending on how you interact with us, we may process, among other things:

When you visit our website

• Browser and operating system
• Approximate location (e.g., city/region)
• Time of visit
• Pages visited and duration of visit
• Referring link (where you came from)
• Clicks and any downloads

When you use forms or contact us

• Name, email address, phone number
• Workplace/organisation and role
• Message content and any other information you choose to provide

For events, courses, and newsletters

• Contact information and registration details
• Any preferences (e.g., dietary restrictions) if you choose to provide them

In research and development projects

• Application, CV, certificates, and references
• Information from interviews and assessments during selection processes
• Information necessary for project implementation, including data from interviews, surveys, or other data collection
• If a project involves special categories of personal data (e.g., health data), this will be described in the specific project information and consent documents, and such processing will have its own legal basis and safeguards

Providing personal data is voluntary, but in some cases necessary—for example to respond to enquiries, fulfil agreements, manage participation, or deliver services.

What do we use personal data for?

We process personal data for purposes such as:

• Operation, security, and improvement of the website, including statistics and analysis
• Handling enquiries, collaborations, and customer relationships
• Conducting projects and research, including data collection, analysis, reporting, and documentation
• Administration, including finance/invoicing where relevant
• Events and communication, such as registrations, mailings, and practical information
• Recruitment, when you apply for a position with us
• Marketing/newsletters, if you have given your consent

Legal basis

We process personal data based on one or more of the following legal bases, depending on the situation:

• Consent (e.g., newsletters, certain cookies, or project-specific data collection)
• Contract (to enter into or fulfil an agreement with you or your organisation)
• Legal obligation (e.g., accounting or documentation requirements)
• Legitimate interest (e.g., basic statistics, security, and website improvement)
• Task carried out in the public interest / research purposes, where applicable and legally supported, and with necessary safeguards

For research projects, the legal basis and participant information will typically be described in the project’s own documents.

How do we protect your personal data?

Møreforsking AS has established routines and both technical and organisational measures to ensure confidentiality, integrity, and availability. These may include:

• Access control and role-based access
• Encryption where relevant
• Backups and logging
• Risk assessments and internal procedures
• Agreements with data processors/subcontractors

How long do we store personal data?

We do not store personal data longer than necessary for the purposes for which it was collected.

• Website and log data are stored according to our needs for statistics and security, and are deleted/anonymised when no longer needed.
• Enquiries are stored as long as necessary for follow-up and documentation.
• Recruitment data is stored in accordance with internal procedures and normally deleted after the process is completed, unless otherwise agreed.
• For research and project data, project‑specific storage and archiving plans apply, as well as any requirements from funders/clients and relevant regulations.

Who do we share personal data with?

We do not share personal data with others unless it is necessary to fulfil the purposes described above, or we are legally obliged to do so.

Personal data may be shared with:

• Technical subcontractors (data processors) providing hosting, analytics, form solutions, email services, etc.
• Project partners/clients, when necessary for project execution (and always in accordance with agreements and legal information provided)
• Public authorities, if legally required

Where we use data processors, we have data processing agreements governing their responsibilities.

Your rights

Under data protection legislation, you have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate information
• Request deletion in certain cases
• Request restriction of processing in certain cases
• Object to processing based on legitimate interest
• Data portability, when applicable
• Withdraw consent when processing is based on consent

You may also lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet) if you believe we are processing your data in violation of the law.

Cookies

Use of cookies

Møreforsking AS uses cookies and similar technologies to:

• Ensure technical functionality on the website
• Produce statistics and analyse usage to improve content and user experience
• Maintain security and stable operation

Cookies are small text files stored in your browser. If your browser settings allow cookies, they may be stored when you visit our site. Where consent is required, you will be asked through a consent banner or similar solution.

What information is collected through cookies?

When using the website, the following may be registered:

• Browser and operating system
• Approximate location
• Time of visit
• Pages visited and duration
• Referring link
• Clicks and downloads
• Information you submit through forms (name, email, phone, workplace, etc.)

How can you manage cookies?

You can adjust your browser settings to:

• Block cookies entirely or partially
• Delete stored cookies
• Receive a warning when cookies are used

Guidance is available in the help pages of your browser (Chrome, Firefox, Safari, Edge).

Contact us

If you have questions about how we process personal data, or wish to exercise your rights (access, correction, deletion, etc.), you can contact us.