Processing of Your Personal Data at MOCHADO

MOCHADO EVENT AS, organization number 930 557 706 (hereinafter “the Company”), is the data controller responsible for the processing of personal data within the organization.

This privacy notice provides you with information about how we process your personal data and the rights you have in that regard. This privacy notice applies to the following categories:

Job Applicants – Individuals applying for a position with us.
Members – Individuals registered as members of our platform.
Employees of Partners and Clients – Individuals employed by our business partners or corporate clients.
Employees of Suppliers – Individuals employed by our vendors or service providers.
Other Contacts – Individuals otherwise in contact with us, including course or seminar participants, journalists, or other visitors.

“Personal data” refers to any information that can be linked to an identifiable individual.
“Processing” of personal data refers to any operation performed on personal data, whether automated or manual, such as collection, structuring, storage, and deletion.

We use cookies on our website. Read more about what data we collect through cookies on our website.

Contact Details for the Data Controller:

Company name: MOCHADO EVENT AS
Mailing address: Sorgenfrigata 11, 0367 Oslo
Email: post@mochado.no
Phone: +47 406 21 810
Org. no.: 930 557 706

1. Why We Collect Personal Data and What Information We Collect

1.1 Cooperation with External Parties

In our collaboration and follow-up with clients, suppliers, and other partners, it is necessary to store information to fulfill our contractual obligations and plan and carry out projects.

Typical personal data may include names, email addresses, phone numbers, and any other relevant information needed for the specific relationship. Most of this data is necessary to fulfill our agreement with you (GDPR Article 6(1)(b)).

In some cases, processing is based on our legitimate interest in the responsible operation and organization of our business (GDPR Article 6(1)(f)). We have assessed that our interest in processing outweighs the data subject’s need for protection of their fundamental rights and freedoms.

1.2 Processing Personal Data in Membership Registration

When registering for membership through our website, we process personal data including name, email, phone number, and payment information. We also publish photos of you on our website based on your consent as outlined in our terms of use.
The legal basis for this is GDPR Article 6(1)(b), as it is necessary to administer your membership.

1.3 Inquiries via Website or Other Channels

When you contact us through our website or other channels, we may process your personal data. This typically includes name, email, phone number, and any information you include in your inquiry.

This data is collected through contact forms, emails, applications, or other forms of communication. The processing is based on a balancing of interests (GDPR Article 6(1)(f)), as we have deemed it necessary to process this data to follow up your inquiry appropriately.

1.4 Events and Seminars

When organizing events such as seminars or courses, we process personal data such as name, contact details, job title, and employer.
The legal basis is our legitimate interest (GDPR Article 6(1)(f)) in organizing such events. We have assessed that this interest outweighs the need for protection of the participant’s rights and freedoms.

1.5 Recruitment

When recruiting, we collect personal data from applicants such as name, contact info, photo, CV, application, diplomas, references, and interview notes.

The legal basis is GDPR Article 6(1)(a) and (f). The company has a legitimate interest in gathering applicant data for recruitment purposes.
Unless consent is given for data retention beyond the process, data will be deleted after the recruitment process.
If consent is given, the legal basis is Article 6(1)(a), and data will be stored for one year or until consent is withdrawn.

1.6 Newsletters and Marketing

We send newsletters to individuals who have given consent or with whom we have an existing customer relationship.
Data processed for this includes name, email, phone (if applicable), and employer.

You may withdraw consent at any time by contacting us.
The legal basis is our legitimate interest in marketing to existing customers or consented users (GDPR Article 6(1)(f)).
Data will be processed until the consent is withdrawn or the customer relationship ends.

2. Disclosure of Personal Data to Third Parties

We do not share your data unless there is a valid legal basis. This may include your consent, necessity for contract fulfillment, or legal obligation.

We use data processors to collect, store, or process personal data on our behalf. In such cases, we have data processing agreements in place to ensure secure processing.
Examples of such processors may include accounting systems, HR systems, IT services, recruitment platforms, payroll, HSE systems, etc.

All processing is conducted within the EU/EEA.

3. Retention Period

Your personal data is stored only as long as necessary to fulfill the purpose for which it was collected, unless legal obligations require longer retention.

4. Your Rights

According to the privacy regulations, you have several rights related to your personal data:

Right to access
Right to rectification
Right to deletion
Right to restriction of processing
Right to object
Right to data portability

You can read more about these rights at www.datatilsynet.no.

To exercise your rights, contact us by email. We will respond as quickly as possible, no later than 30 days.
We may ask you to verify your identity to ensure your data is not shared with anyone impersonating you.

5. Complaints

If you believe our processing of your personal data is not in accordance with this policy or violates applicable law, you may lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet).

More information is available at: www.datatilsynet.no

Cookies

Privacy Policy