Skimore is committed to handling your personal information in a safe and secure manner, in accordance with current regulations. Below you will find information on how we, as the controller, handle the personal information we collect from our members when they register and use the Skimore service.
2 WHAT PERSONAL INFORMATION WE COLLECT AND WHY
2.1 Registration and use of the Skimore app
When you enter into a membership agreement with us, we collect personal information from you to complete your order and fulfill our obligations under the agreement with you. These obligations will include giving you access to the application, identifying you as a valid member, and contacting you regarding matters relating to your membership. In this context, we process the following personal information: Name, email, mobile number, user photo, date of birth, account information.
The legal basis for this treatment is the GDPR art. 6 no. 1 letter b (agreement). It is optional for you to provide us with your personal information, but if we do not receive the necessary information we may not be able to fulfill the agreement.
If the order includes persons who are not of legal age, we also collect this information, provided that this is necessary to fulfill the agreement with you. The legal basis for this treatment will be the GDPR art. 6 no. 1 letter b (agreement).
2.2 Registration of activity
Furthermore, we will be able to process information about your activity in Skimore’s facilities for purposes such as analysis, targeted advertising and custom content. We do this to provide you with a better user experience via the app and for product development. The legal basis for this treatment activity will also be Article 6 (1) (b) (agreement), but in addition the targeted advertising will have legal basis in section 15 third paragraph (existing customer relationship) of the Marketing Act.
We will not process personal data for other marketing purposes unless we have obtained consent or an existing customer relationship exists in accordance with the Marketing Act.
2.3 Visits to our Website – Log Data and Cookies
We would like to inform you that when you visit our service or our website we collect information that the browser sends to us. It is called log data. This log data may contain information such as; your computer’s Internet Protocol (IP) address, Geo location, browser version, which pages of our service you visited, the time and date of the visit, the time spent on those pages and other statistics.
Cookies are files with a small amount of data, usually used as an anonymous unique identifier. These are sent to your browser from the site you are visiting and stored on your computer’s hard drive.
Our website uses these “cookies” to collect information and to improve the user experience on our service. You have the option to delete these cookies in your browser after a cookie is sent to your computer. If you choose to refuse our cookies, you may miss out on good user experiences and not be able to use certain parts of our service.
3 SHARING PERSONAL INFORMATION
In order to complete your order with us, we may need to share your personal information with our suppliers and partners. We only share personal information with them to the extent necessary for them to complete their services to you and us, and they will only have access to the personal information needed.
We will also disclose personal information to other companies in the same group where this is necessary for internal management purposes or it is necessary to satisfy group-based management, control and / or reporting requirements set by law. The legal basis for this treatment is the GDPR art. 6 No. 1 letter f (legitimate interest).
We use the following subcontractors and individuals to: assist our services; Google Tag Manager, Google Analytics. provide services and make payments on our behalf; Skidata, NETS. perform Service-related services; or help us analyze how our service is used or analyze your performance; MailGun, Firebase, Teletopia.
These subcontractors process personal information on our behalf and only in accordance with our instructions. In accordance with GDPR Article 28, data processing agreements have been entered into with all recipients of your personal data.
4 HOW LONG IS YOUR PERSONAL INFORMATION STORED
We will never store personal information longer than necessary to fulfill our membership agreement with you. Personal information that we no longer need will be permanently anonymized or securely deleted.
When you cancel your Skimore membership, your personal information will be deleted after 6 months or when they are no longer needed for the purpose for which they were collected.
You also have rights to how your personal information is used, including:
The right to oppose you processing our information. Here it is important to emphasize that in cases where Skimore asks for personal data, such a contradiction will make it impossible to buy the service. The exception is the purchase of “Drop-in” cards on the Internet. In this case, it is possible to buy cards in the cash register without providing personal information.
The right to request that your information be deleted or that further use of it is restricted.
The right to request a copy of the information we hold about you.
The right to correct, change or update the information you have provided us.
The right to contest all kinds of automated decisions we make about you. An automated decision is a decision made without human intervention and which has legal consequences (eg credit check). We do not usually use automated decision-making, but if we do, we will inform it when such decisions are made.
5 HOW WE STORE YOUR INFORMATION
Your information is stored in Skimore’s database and Skidata. All of our solutions are also secured by Cloudfare CDN and all data stored here in Google Cloud. A limited number of service administrators have access to this data, and all have signed a data processor agreement.
6 HOW TO ACCESS AND CHECK THE INFORMATION
You can access your personal data in the Skimore app under Account -> My Account.
If you have any other questions about the contents of this statement, you wish to exercise your rights in accordance with point 6 or have any other inquiries, you are welcome to contact us at firstname.lastname@example.org. You also have the right to appeal to a supervisory authority, in the Norwegian Data Inspectorate, in accordance with Article 13 (2) (d) of the GDPR.