Privacy Policy

PRIVACY POLICY 

This Privacy Policy sets out how we, Altitude Asker AS, collect, store and use information about you when you use or interact with our websites, http://altitude.no and https://altitudenorway.centeredgeonline.com/ (our websites) and where we otherwise obtain or collect information about you. This Privacy Policy is effective from 25 October 2019.

Altitude Asker AS processes the personal data transmitted to it in accordance with the legislation in force, and, in particular, Regulation 2016/679 of 27 April 2016 on the protection of individuals with regard to the processing of personal data and the free movement of such data, applicable from 25 May 2018

Access to the websiteshttp://altitude.no and https://altitudenorway.centeredgeonline.com/ implies the User’s full and unreserved acceptance of this Privacy Policy, as well as its general terms of use and the cookie policy.

Summary

This section summarizes how we obtain, store and use information about you. It is intended to provide a very general overview only. It is not complete in and of itself and it must be read in conjunction with the corresponding full sections of this Privacy Policy.

Data controller: Altitude Asker AS

How we collect or obtain information about you:

  • when you provide it to us by contacting us via e-mail or signing up for our newsletter or by filling out the form,
  • from your use of our websites, using cookies.

Information we collect:

  • IP address,
  • information from cookies,
  • information about your computer or device (e.g. device and browser type),
  • information about how you use our websites (e.g. which pages you have viewed,
  • the time when you view them and what you clicked on,
  • the geographical location from which you accessed our websites (based on your IP address).

 

  When you fill out Sign Waiver form:

  • your first name,
  • your last name,
  • your email address,
  • your phone number,
  • your gender,
  • your birthdate,
  • your address,
  • your city,
  • your country,
  • your child’s first name,
  • your child’s last name,
  • your child’s gender,
  • your child’s birth date.

 

When you fill out Buy Tickets form:

  • your email address.

 

When you fill out Subscribe form:

  • your email address.

 

When you fill out Send Us an Email form:

  • your email address,
  • your full name,
  • your phone number.

 

When you fill out Create a New Account form:

  • your first name,
  • your last name,
  • your birthdate,
  • your phone number,
  • your email address.

 

When you fill out a Recruitment form:

  • your first name,
  • your last name ,
  • your e-mail,
  • your birth date,
  • your nationality,
  • your gender,
  • your address,
  • your phone number,
  • your cover letter,
  • your diplomas,
  • your pictures.

 

How we use your information:

  • for administrative and business purposes,
  • to analyze your use of our websites,
  • if you have subscribed to our newsletter,  to send you the newsletter.

 

Disclosure of your information to third parties: only to the extent necessary to

  • to our service providers with whom we have a data processing agreement in place,
  • to fulfill any contracts we enter into with you,
  • where required by law or to enforce our legal rights.

 

Your rights in relation to your information

  • to access your information and to receive information about its use,
  • to have your information corrected and/or completed,
  • to have your information deleted,
  • to restrict the use of your information,
  • to receive your information in a portable format,
  • to object to the use of your information,
  • to withdraw your consent to the use of your information,
  • to complain to a supervisory authority.

 

Sensitive personal information: we do not collect what is commonly referred to as ‘sensitive personal information’. For more information, please see the main section below entitled Sensitive Personal Information.

 

Our details

The data controller in respect of our websites is Altitude Asker AS, Bergerveien 5 – 1396 Bilingstad (NORWAY).

Altitude Asker AS is a Norwegian private limited company governed by Norwegian law (Norwegian Private Limited Companies Act of 1997), registered under number [917 628 874].

Altitude Asker AS is registered with VAT NO 917628874

 

You can contact the data controller by writing to:

Altitude Asker AS

Bergerveien 5

1396 Billingstad, Asker (NORWAY)

or by calling Tel +47 66 98 22 00

or sending an email to info@altitude.no

If you have any questions about this Privacy Policy, please contact the data controller at info@altitude.no

 

Information we collect when you visit our websites

We collect and use information from websites visitors in accordance with this section and the section entitled Disclosure and additional uses of your information.

 

Web server log information

We use third-party servers to host our websites, named Digital Ocean and AWS EC2, the privacy policies of which are available here: https://aws.amazon.com/privacy/ https://www.digitalocean.com/legal/privacy-policy/. Our websites servers automatically log the IP address you use to access our websites as well as other information about your visit such as:

  • the pages accessed,
  • information requested,
  • the date and time of the request,
  • the source of your access to our websites (e.g. the websites or URL (link) which referred you to our websites),
  • your browser version and operating system.

Our servers are located in the United States of America.

 

Use of websites server log information for IT security purposes

We collect and store server logs to ensure network and IT security and so that the server and websites remain uncompromised. This includes analyzing log files to help identify and prevent unauthorized access to our network, the distribution of malicious code, denial of service attacks and other cyber-attacks, by detecting unusual or suspicious activity.

Unless we are investigating suspicious or potential criminal activity, we do not make, nor do we allow, any attempt to identify you from the information collected via server logs.

 

Use of websites server log information to analyze websites use and improve our websites

We use the information collected by our websites server logs to analyze how our websites users interact with our websites and its features. For example, we analyze the number of visits and unique visitors we receive, the time and date of the visit, the location of the visit and the operating system and browser used

We use the information gathered from the analysis of this information to improve our websites. For example, we use the information gathered to change the information, content, and structure of our websites and individual pages based according to what users are engaging most with and the duration of time spent on particular pages on our websites.

 

Cookies

Cookies are data files that are sent from a websites to a browser to record information about users for various purposes.

We use cookies on our websites, including

  • essential,
  • preference & functionality,
  • analytics & customization,

For further information on how we use cookies, please see our cookies policy which is available here: https://altitude.no/cookie-policy/

You can reject some or all of the cookies we use on or via our websites by changing your browser settings by using our cookie control tool, but doing so can impair your ability to use our websites or some or all of its features. For further information about cookies, including how to change your browser settings, please visit www.allaboutcookies.org or see our cookies policy.

Information we collect when you contact us

We collect and use information from individuals who contact us in accordance with this section and the section entitled Disclosure and additional uses of your information.

 

Email

When you send an email to the email address displayed on our websites we collect your email address and any other information you provide in that email (such as your name, telephone number and the information contained in any signature block in your email).

 

Post

If you contact us by post, we will collect any information you provide to us in any postal communications you send us.

 

 

Information we collect when you interact with our websites

We collect and use information from individuals who interact with particular features of our websites in accordance with this section and the section entitled Disclosure and additional uses of your information.

 

Disclosure and additional uses of your information

This section sets out the circumstances in which will disclose information about you to third parties and any additional purposes for which we use your information.

 

Disclosure of your information to service providers

We use a number of third parties and who process your information for us on our behalf.

We do not display the identities of our service providers publicly by name for security and competitive reasons. If you would like further information about the identities of our service providers, however, please contact us directly by email and we will provide you with such information where you have a legitimate reason for requesting it.

 

Disclosure of your information to other third parties

We disclose your information to other third parties in specific circumstances, as set out below.

 

Providing information to third parties such as Google Inc.

Google collects information through our use of Google Analytics on our websites. Google uses this information, including IP addresses and information from cookies, for a number of purposes, such as improving its Google Analytics service. Information is shared with Google on an aggregated and anonymized basis. To find out more about what information Google collects, how it uses this information and how to control the information sent to Google, please see the following page: https://www.google.com/policies/privacy/partners/

You can opt-out of Google Analytics by installing the browser plugin here: https://tools.google.com/dlpage/gaoptout

 

Transfer and storage of your information

Information collected by Google Analytics is stored outside the European Economic Area on Google’s servers in the United States of America.

We do not display the identities of our service providers publicly by name for security and competitive reasons. If you would like further information about the identities of our service providers, however, please contact us directly by email and we will provide you with such information where you have a legitimate reason for requesting it.

 

Disclosure and use of your information for legal reasons

 

Indicating possible criminal acts or threats to public security to a competent authority

If we suspect that criminal or potential criminal conduct has occurred, we will in certain circumstances need to contact an appropriate authority, such as the police. This could be the case, for instance, if we suspect that we fraud or a cybercrime has been committed or if we receive threats or malicious communications towards us or third parties.

We will generally only need to process your information for this purpose if you were involved or affected by such an incident in some way.

 

In connection with the enforcement or potential enforcement our legal rights

We will use your information in connection with the enforcement or potential enforcement of our legal rights, including, for example, sharing information with debt collection agencies if you do not pay amounts owed to us when you are contractually obliged to do so. Our legal rights may be contractual (where we have entered into a contract with you) or non-contractual (such as legal rights that we have under copyright law or tort law).

 

In connection with a legal or potential legal dispute or proceedings

We may need to use your information if we are involved in a dispute with you or a third party for example, either to resolve the dispute or as part of any mediation, arbitration or court resolution or similar process.

 

For ongoing compliance with laws, regulations and other legal requirements

We will use and process your information in order to comply with legal obligations to which we are subject. For example, we may need to disclose your information pursuant to a court order or subpoena if we receive one.

 

How long we retain your information

This section sets out how long we retain your information. We have set out specific retention periods where possible. Where that has not been possible, we have set out the criteria we use to determine the retention period.

 

Retention periods

  • Server log information:we retain information on our server logs for 10 years.
  • Correspondence and inquiries:when you make an inquiry or correspond with us for any reason, whether we will retain your information for as long as it takes to respond to and resolve your inquiry, and for 10 years after which point we will delete your information.

 

Criteria for determining retention periods

In any other circumstances, we will retain your information for no longer than necessary, taking into account the following:

  • the purpose and use of your information both now and in the future (such as whether it is necessary to continue to store that information in order to continue to perform our obligations under a contract with you or to contact you in the future);
  • whether we have any legal obligation to continue to process your information (such as any record-keeping obligations imposed by relevant law or regulation);
  • whether we have any legal basis to continue to process your information (such as your consent);
  • how valuable your information is (both now and in the future);
  • any relevant agreed industry practices on how long information should be retained;
  • the levels of risk, cost, and liability involved with us continuing to hold the information;
  • how hard it is to ensure that the information can be kept up to date and accurate; and
  • any relevant surrounding circumstances (such as the nature and status of our relationship with you).

 

How we secure your information

We take appropriate technical and organizational measures to secure your information and to protect it against unauthorized or unlawful use and accidental loss or destruction, including:

  • only sharing and providing access to your information to the minimum extent necessary, subject to confidentiality restrictions where appropriate, and on an anonymized basis wherever possible;
  • using secure servers to store your information
  • verifying the identity of any individual who requests access to information prior to granting them access to information;
  • using Secure Sockets Layer (SSL) software

 

Transmission of information to us by email

Transmission of information over the internet is not entirely secure, and if you submit any information to us over the internet (whether by email, via our websites or any other means), you do so entirely at your own risk.

We cannot be responsible for any costs, expenses, loss of profits, harm to reputation, damages, liabilities or any other form of loss or damage suffered by you as a result of your decision to transmit information to us by such means.

 

Transfers of your information outside the European Economic Area

All of your information is stored on the servers in the United States of America.

All of your data is safe under the Article 45 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) which ensures appropriate safeguards and protections are in place (Privacy Shield). To read more about the Regulation, please visit:

Providers who joined the Privacy Shield program guarantee the highest standards of European Union’s personal data protection. Thus, using the services of those is fully compliant with the European Union’s data processing resolutions.

You can read more about your data protection on the servers’ provider’s websites:

 

Google Analytics

Information collected by Google Analytics (your IP address and actions you take in relation to our websites) is transferred outside the EEA and stored on Google’s servers. You can access Google’s privacy policy here: https://www.google.com/policies/privacy/

Country of storage: United States of America. This country is not subject to an adequacy decision by the European Commission.

Safeguard(s) used: Google has self-certified its compliance with the EU-U.S. Privacy Shield which is available here: https://www.privacyshield.gov/welcome. The EU-U.S. Privacy Shield is an approved certification mechanism under Article 42 of the General Data Protection Regulation, which is permitted under Article 46(2)(f) of the General Data Protection Regulation. You can access the European Commission decision on the adequacy of the EU-U.S. Privacy Shield here: http://ec.europa.eu/justice/data-protection/international-transfers/adequacy/index_en.htm

 

Your rights in relation to your information

Subject to certain limitations on certain rights, you have the following rights in relation to your information, which you can exercise by writing to:

  • to request access to your informationand information related to our use and processing of your information;
  • to request the correction or deletionof your information;
  • to request that we restrict our useof your information;
  • to receive information which you have provided to us in a structured, commonly used and machine-readable format(e.g. a CSV file) and the right to have that information transferred to another data controller (including a third party data controller);
  • to object to the processing of your information for certain purposes(for further information, see the section below entitled Your right to object to the processing of your information for certain purposes); and
  • to withdraw your consent to our use of your information at any time where we rely on your consent to use or process that information. Please note that if you withdraw your consent, this will not affect the lawfulness of our use and processing of your information on the basis of your consent before the point in time when you withdraw your consent.

In accordance with Article 77 of the General Data Protection Regulation, you also have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or of an alleged infringement of the General Data Protection Regulation.

 

Verifying your identity where you request access to your information

Where you request access to your information, we are required by law to use all reasonable measures to verify your identity before doing so.

These measures are designed to protect your information and to reduce the risk of identity fraud, identity theft or general unauthorized access to your information.

 

Sensitive Personal Information

‘Sensitive personal information’ is information about an individual that reveals their racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic information, biometric information for the purpose of uniquely identifying an individual, information concerning health or information concerning a natural person’s sex life or sexual orientation.

We do not knowingly or intentionally collect sensitive personal information from individuals, and you must not submit sensitive personal information to us.

If, however, you inadvertently or intentionally transmit sensitive personal information to us, you will be considered to have explicitly consented to us processing that sensitive personal information under Article 9(2)(a) of the General Data Protection Regulation. We will use and process your sensitive personal information for the purposes of deleting it.

 

Changes to our Privacy Policy

We update and amend our Privacy Policy from time to time.

 

Minor changes to our Privacy Policy

Where we make minor changes to our Privacy Policy, we will update our Privacy Policy with a new effective date stated at the beginning of it. Our processing of your information will be governed by the practices set out in that new version of the Privacy Policy from its effective date onwards.

 

Major changes to our Privacy Policy or the purposes for which we process your information

Where we make major changes to our Privacy Policy or intend to use your information for a new purpose or a different purpose than the purposes for which we originally collected it, we will notify you by email (where possible) or by posting a notice on our websites.

We will provide you with information about the change in question and the purpose and any other relevant information before we use your information for that new purpose.

Wherever required, we will obtain your prior consent before using your information for a purpose that is different from the purposes for which we originally collected it.

 

PARTIES AND EVENTS

Altitude Norge is the perfect venue for a birthday party or group event. We offer several different party and event packages that can be customized to fit your budget and accommodate groups of any size, large or small.

 

SAVE TIME,

COME READY TO JUMP