Privacy policy

 

It is important to Meshcrafts that your personal data is processed with care and in accordance with GDPR. This privacy policy describes how Meshcrafts is processing information about you, what information we need, and why we need it.

The entity in control of the personal data covered by this privacy policy is Meshcrafts AS (organization number 912 901 491).

Our address is Høgskoleveien 8, 1433 Ås.

Our visiting address is Gaustadalléen 21, 0349 Oslo.

You are welcome to contact us any time, but we suggest that you contact our data protection officer if you have any questions or concerns regarding our privacy policy. His name is Peter Songedal and his e-mail address is [email protected].

This privacy policy applies to any personal data that is shared through any contact with us, including visiting our websites, receiving newsletters, and contacting customer support.

In this privacy policy you will find important information about your rights. We recommend that you read it carefully.

Definitions
Important definitions:

  • Personal data means any information relating to an identified or identifiable natural person.
  • Processing means any operation which is performed on personal data, including the collection, storing, changing, and removing of such data.
  • Cookies are small text files that are stored on your computer when you visit a website.

How are we collecting personal data?
How we collect data depends on the channels that you use to access our information and services:

  • We collect personal data that you provide to us. For example: when registering in our mobile application, becoming a customer, registering to receive our newsletters, or contacting us.
  • We collect data that is registered automatically. For example: from cookies when you visit our websites.
  • With your consent, we can use your GPS-coordinates to guide you to the nearest charge point. The coordinates are not stored or shared with others and are only used to locate a charge point close to you.

You are not obliged to share any information with us, but sometimes lack of information may prevent us from offering our services. For example, we cannot answer your questions without first collecting your contact information.

What personal data are we processing?
We are processing and storing the following personal data:

  • Name, e-mail address, password, RFID-number
  • Payment information, such as payment card and/or PayPal. This information is stored by a third party payment processing service. Currently this provider is Braintree, but this may change from time to time.
    • History of charging
      • Number of kWh
      • Time of start and stop
      • Location
      • Charging power
      • Price
  • History of purchases
    • Date sent and paid
    • Price
    • Number of attempts of payment (if it does not work the first time)
  • Information that is automatically collected when you use our websites and mobile applications, such as the time of visit and information about the device used to access the website or app.

Why are we processing personal data?
We need your personal data for the following reasons:

  • Delivering our services: We need to process your personal data to deliver our services. For example, we need your personal data to:
    • Identify you as a customers or user
    • Correctly process payments
    • Correct errors and provide customer support
  • Improvement and development of our services
  • Marketing, including identifying target groups, tailoring our market communication, and sending out customer satisfaction surveys.
  • Sending out newsletters, if we have your consent to do so.
  • Security work, such as preventing misuse of our services or preventing unauthorized use.
  • Compliance with laws and regulations, for example related to accounting.

What makes our processing of your personal data lawful?
We are processing personal data to be able to perform our obligations as described in our contract with you. This applies to contact information, payment information, and other basic information.

Some of the personal data are being collected because we have a legitimate interest in processing these data. These are considered to minimally invasive to you.

Sometimes we will ask for your consent to process your personal data. This applies to collection of GPS-data, which is collected from your phone with your permission. When we are processing personal data with your permission, you may withdraw your consent at any time. In that case, we will immediately stop processing your personal data.

How are we protecting your personal data?
The safety of your personal data is one of our greatest concerns, and we are working continually to protect the data we are processing. To make sure your data is safe, we have safety measures in our office facilities and our systems as well as routines, to prevent anyone unauthorized to access your personal data. We are regularly reviewing and updating our safety measures to make sure they are satisfactory.

In addition to the safety measures installed in our systems, we have routines to make sure that our partners and subcontractors are processing personal data in accordance with this privacy policy.

Who are we sharing your personal data with?
Sometimes we have to share personal data with third parties. In such cases, our partners and subcontractors have to follow our routines and are obliged to process personal data in accordance with this privacy policy. We have data processing agreements with all our subcontractors and partners that regulate the processing of any personal data.

  • We may share personal data with:
  • Subcontractors that require data processing. This is necessary in order to be able to offer our services.
  • Our partners if we have your explicit consent to do so.
  • Public authorities when we are obliged to do so by law, for example on the basis of an order from the police or a Court.
  • New owners if our company were to be acquired by a different entity. In this case, you will be notified.

For how long are we storing your personal data?
We do not want to store your personal data for any longer than we find necessary. In some cases, we may have to hold on to personal data in order to be compliant with the law. In other cases, the following routines apply:

  • Personal data that is necessary in order to administrate the customer relationship or the user account, will be stored for six months after your account is inactivated. After six months, your personal data will be anonymized. The reason we are holding on to your personal data for a period after inactivation, is to enable us to restore your account if this was deleted by a mistake or if you change your mind.
  • Personal data that is collected by customer support are stored for six months after the case is closed. We store the data for six months to verify that the problem is not reoccurring and that any other related problems are identified and resolved.

What rights do you have?
You have the right to:

  • Get to know what information we have about you and to receive a copy of this information
  • Demand that wrongful, unnecessary, inadequate, or outdated personal data is corrected or deleted
  • Withdraw or limit any consent that you previously may have provided to us
  • Deactivate automatic collection of data
  • Protest against processing of personal data that you find unlawful
  • Receive a copy of the information we have about you: to keep for yourself or for you to share with others (data portability)

Please notice that if you execute some of these rights and limit our access and use of your personal data, we might not be able to offer you our services. For example, some services require the processing of a payment in order to be made available to you.

Be aware that by execution of these rights, we will ask you to identify yourself. That is to make sure that we do not hand out your personal data to others.

If you think we do not follow these terms or current laws and regulations, please notify us by contacting our data protection officer. See above for his contact information. You also have the right to complain to the Norwegian Data Protection Authority.

Change of terms
From time to time, it may be necessary to make changes to this privacy policy for different reasons, such as changes in technology or changes in laws and regulations. You will be notified of any changes to this privacy policy.