When does it apply
When does it not apply
Legal basis for the processing of personal data
We rely upon several legal bases to process your personal data, such as our contractual obligations to you when you order services from us, compliance with our regulatory and legal obligations, or to pursue our legitimate business interests. In some situations, we rely on your explicit consent. In particular, we will need your consent to send you newsletters that may contain marketing elements if you are not our user or customer yet. In these cases, you will be asked to consent by clicking an "accept" checkbox.
The personal data we collect
We collect information about you when you interact with us directly, and irrespective of the type of interaction, we always collect the minimum amount of information required for that specific purpose. We also automatically collect information related to you that is of a technical nature when you visit our website and use our software. The types of information we collect include:
Identifying information such as your name, email address, phone number, position and organisation.
The content of the messages you send us, such as requests via our website, emails or support tickets.
Payment details, including payment card information
Feedback from surveys or questionnaires.
Information that is collected automatically when you visit our website or use our software applications.
When and why do we collect information about you
Some information is collected automatically when you visit our website, but most of the information we collect about you is information you directly provide us with.
Information that is collected automatically
When you visit our website (ledidi.com)
When you use our software applications
We collect information when you use our software applications. For example, we use analytical tools to monitor the security of our systems, improve performance, uncover technical issues and analyse use patterns. All information is either anonymised or de-identified and used statistically. Our legal basis for collecting this information is our legitimate interest to preserve the security and performance of our systems and to better understand how to improve our services and offerings.
We may also collect information on use patterns and frequency of use on an individual level to help us better understand our users’ needs and preferences and optimise support efforts. Our legal basis in doing so is our legitimate interest in delivering good services and user experiences.
Information you provide us with depending on the purpose
When you send a request or a message to us
If you send us a message through the contact forms on our website, we collect your name, email address and the content of your message in order to respond to your request. We encourage you to be careful about disclosing any sensitive information about yourself or others. If you request a copy of our security documentation, we also collect information about your position and organisation. We store this information and any following correspondence in our customer relationship management (CRM) system. The information is deleted three years after your last interaction with us. The lawful basis for this data processing is our legitimate interest to be able to respond to inquiries from you, and to have documentation in case we receive complaints, grievances or legal claims.
When you interact with us as a potential customer
If you are approached or contacted by our sales representatives and signalise a wish to continue the dialogue, we collect your name, contact information and documentation from correspondence or meetings. Processing your data in our CRM system is based on a legitimate interest in establishing customer relationships.
When you create a user account
As our user/customer, you can also receive marketing. The legal basis is a legitimate interest to offer you more options. You can unsubscribe from these emails using the unsubscribe link at the bottom of the mail.
You have the option to provide additional information about yourself in your user profile. This information can be shared with other users, making it easier for users to recognise each other and establish collaborations. Ledidi may collect this information (e.g., academic degree, position and role) and combine it with information on use patterns as part of our efforts to understand our users' needs. This information is anonymised and only used statistically. Our legal basis for using this information is our legitimate interest in improving our services and offerings.
When you pay for our services
If you buy or subscribe to any of our paid services, either on your own behalf or on behalf of others, we collect your name, email address, phone number, organisation and payment details (payment card information or required information for invoicing). This information is collected and stored both for us to be able to fulfil our contractual obligations with you and to comply with our legal obligations (e.g., accounting, tax purposes and fraud detection).
When you sign up to receive our newsletter
You may subscribe to our newsletter either by signing up on our website or by creating a Ledidi user account. In these cases, you consent to receive our newsletters either by filling out a subscription form or checking the Newsletter box when you fill out a contact form on our website. All users will automatically receive newsletters, according to the User Agreement. You may unsubscribe from our newsletters by clicking “unsubscribe” at the bottom of a newsletter you have received from us.
When you register for a Ledidi event
When you sign up for an event hosted by Ledidi (i.e. webinar, meeting, educational course), we collect your name, email address, position and organisation. We use your personal information to inform you about the event and how to attend. This data processing is based on our legitimate interests to organise the webinar and adapt its content.
When you participate in surveys or answer questionnaires
If you have a Ledidi user account, we may also send you invitations to participate in user surveys or invite you to answer questionnaires. The legal basis for sending these invitations is our legitimate interest in improving our services. Responding is optional, and invitations will include a description of the purpose and how the information will be used.
How we share our personal information
We never sell or share personal information with marketers or unaffiliated third parties. We may share information about you with our trusted service providers for specific purposes such as payment processing, subscription plan management and billing, and to manage our relations with our customers and users. A complete list of our service providers can be provided by contacting us at firstname.lastname@example.org.
Our service providers are subject to contract terms that limit their use of your personal data following applicable data protection legislation. We authorise them only to use or disclose your data to perform services on our behalf or to comply with legal requirements. We require all our service providers to contractually commit to protecting the security and confidentiality of the personal data they process on our behalf and to have appropriate safeguards and compliance measures to ensure an adequate level of protection of personal data.
International data transfers
Some of our service providers are registered in the United States (US), and personal data may be transferred and processed outside the EEA. We require all our service providers to contractually commit to protecting the security and confidentiality of the personal data they process on our behalf and to have appropriate safeguards and compliance measures to ensure an adequate level of protection of personal data. We only use providers on the condition that enforceable data subjects' rights and effective remedies for data subjects are available. Ledisi's existing measures to accommodate international data transfers include the EU Commission’s approved Standard Contractual Clauses (SCCs). We carry out a Transfer Impact Assessment (TIA) for each provider to identify and implement appropriate safeguards. Contact us at email@example.com to get a copy of the SCC or TIA.
Retention of personal data
How we protect your personal data
Ledidi has implemented technical, organisational and administrative security measures to protect your personal data. We continuously seek to ensure that the data we collect is protected against loss, destruction, corruption and unauthorised access. Our security framework is updated regularly in line with technological developments. Your personal data is only accessed by a limited number of personnel who need access to data to perform their duties. When we share data with our service providers, we authorise them only to use or disclose your data to perform services on our behalf or to comply with legal requirements. Before engaging any service provider, we perform a risk assessment.
Your rights and choices
You can request information about what data we store and process about you at any time. You have the right to request the correction, deletion and restrictions in the processing of your personal data, as well as the right to object to the processing of personal data about you in accordance with applicable data protection laws. You may also have the right to receive your data and transmit those data to another controller.
Consents that you have given can be withdrawn at any time. Withdrawal of your consent does not affect the legality of the storing, processing or transfer of your personal data before the withdrawal.
If you believe that we have not complied with your statutory rights in accordance with applicable data protection legislation, you have the right to send a complaint to the Norwegian Data Protection Authority (www.datatilsynet.no). However, we kindly ask you to contact us first so that we may address your concerns or resolve any misunderstandings.
If you have any concerns about privacy at Ledidi, please contact us at firstname.lastname@example.org or at LEDIDI AS, Attn: Ledidi AS, Gaustadalleen 21, 0349 Oslo, Norway.