Thakreonghel
Legal Document

Privacy Policy

How we protect and handle your personal information

Last Updated: Norway

1. Introduction

This Privacy Policy explains how Thakreonghel ("we," "us," or "our") collects, uses, processes, and protects your personal data when you visit our website or use our services. We are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR) and Norwegian data protection laws.

2. Data Controller

Company Name: Thakreonghel

Address: Kongens Gate 11, 7013 Trondheim, Norway

Email: touch@thakreonghel.world

Country: Norway

3. Data We Collect

3.1 Information You Provide

We collect personal data that you voluntarily provide when you:

  • Place an order through our order form (name, email address, message)
  • Contact us via email or other communication channels
  • Subscribe to our newsletter or marketing communications
  • Create an account on our website

3.2 Automatically Collected Information

When you visit our website, we may automatically collect:

  • IP address and device information
  • Browser type and version
  • Operating system
  • Pages visited and time spent on pages
  • Referring website addresses
  • Cookie data (see our Cookie Policy for details)

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: When you provide explicit consent for specific processing activities (e.g., marketing communications)
  • Contract Performance: To fulfill our contractual obligations when you place an order
  • Legal Obligation: To comply with legal requirements (e.g., tax and accounting obligations)
  • Legitimate Interest: For our legitimate business interests, such as improving our services and website functionality

5. How We Use Your Data

We use your personal data for the following purposes:

  • Processing and fulfilling your orders
  • Communicating with you about your orders and inquiries
  • Sending marketing communications (with your consent)
  • Improving our website and services
  • Analyzing website usage and user behavior
  • Preventing fraud and ensuring website security
  • Complying with legal obligations

6. Data Sharing and Disclosure

We may share your personal data with:

  • Service Providers: Third-party companies that help us operate our business (e.g., payment processors, shipping companies, email service providers)
  • Legal Authorities: When required by law or to protect our legal rights
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

We do not sell your personal data to third parties for their marketing purposes.

7. International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions by the European Commission
  • Other legally approved transfer mechanisms

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy:

  • Order Data: 7 years (for accounting and legal compliance)
  • Marketing Data: Until you withdraw consent or 3 years of inactivity
  • Website Analytics: 26 months
  • Cookie Data: As specified in our Cookie Policy

9. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right of Access: Request a copy of your personal data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Restriction: Limit how we use your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests or for direct marketing
  • Right to Withdraw Consent: Withdraw consent at any time (without affecting prior processing)
  • Right to Lodge a Complaint: File a complaint with your local data protection authority

To exercise any of these rights, please contact us at touch@thakreonghel.world.

10. Security Measures

We implement appropriate technical and organizational security measures to protect your personal data, including:

  • HTTPS encryption for all website communications
  • Secure data storage with access controls
  • Regular security assessments and updates
  • Employee training on data protection
  • Incident response procedures

While we strive to protect your data, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

11. Children's Privacy

Our website and services are not intended for children under 16 years of age. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.

12. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on our website with an updated date. Your continued use of our services after changes constitutes acceptance of the updated policy.

14. Contact Us

Email: touch@thakreonghel.world

Address: Kongens Gate 11, 7013 Trondheim, Norway

15. Supervisory Authority

If you are located in the EEA and believe we have not addressed your concerns adequately, you have the right to lodge a complaint with your local data protection supervisory authority.