Privacy Statement Coop Norge SA / Coop Bedrift
Updated: 3/5-2018
1. Introduction
Coop’s Corporate Card is owned by Coop Norge SA, PO Box 21 Haugenstua, 0915 Oslo, organization number 936 560 288. You can always contact us at bedrift@coop.no about questions regarding the corporate card or whether you want to make changes to your personal information or you can call Ikano Bank customer service Phone number 66 85 86 55. You can always request to delete your personal information.
See also the privacy statement for Coop Norge SA at www.coop.no
You can at any time use coopbedrift.no «my page». Passwords and usernames are stated on the invoice. On My Page, you can update phone numbers, addresses, disable or order new cards, or use billing hotels.
Coop requires that personal data be processed in accordance with Norwegian law and basic privacy considerations. Coop treats all information as described in the Privacy Statement and in accordance with the consents given.
Our processing routines provide you with the assurance that the information we hold about you will not go astray or be used otherwise than you have consented to. We use advanced technology to prevent unauthorized access to our systems and access to information. Only selected employees have access to personal data to perform their work.
This statement is aimed at you and the processing of your personal information as the contact for your business.
2. Processing manager
Coop Norge SA is responsible for the processing of the personal data of the company. The statement contains information that you are entitled to when collecting information from our sites and general information about how we process personal information. When applying for a company card, it is made to Ikano bank. Ikano bank is the responsible for the processing of the personal data that they process concerning Coop Business Cards.
Partners of Coop will be able to become processing managers by entering into independent agreements with them where the benefit is achieved through Coop corporate cards.
3. Purpose
The reason for the business card is to give business customers an advantage when using the company card. They get credit by shopping in Coop’s stores and selected partners or can make use of other offers and services. Offers are negotiated for corporate customers, which they can choose to use. In addition, the purpose of corporate customers is to get an overview of article level on all purchases up to 5 years back in time to simplify accounting according to the Accounting Act.
The purpose of processing personal data is to fulfil the agreement, to ensure
- Providing you with offers, benefits and marketing communications that may be relevant to the company.
- Notify withdrawal of products to your E-mail address or mobile number
- Purchase information and give basis for accounting
4. Legitimate grounds for processing
Coop Norge SA’s legitimate grounds for processing personal data is to fulfil an agreement with the company and to fulfil the contractual obligation. In connection with entering into a business card agreement, Coop is dependent on having a contact person in the company with whom Coop can communicate.
5. About personal data and the regulations
Personal information are information and assessments that can be linked to an identifiable individual. This may include name, address, telephone number, e-mail address, IP address and purchase and service history. Information about legal persons is not personal information.
6. What kind of information do we collect?
In order to deliver as good services as possible, we are dependent on collecting various types of information, including personal information about you. Below is an overview of how we typically collect the personal information and what information this is typically. We do not collect sensitive data.
a) Information you provide yourself to us
When you register on our website, on behalf of the company, you must provide some information stored by us, such as the Company’s name, name, e-mail address and mobile number on the company’s contact person. We will also store information when you contact us later, such as inquiries to the customer service center or other contact points. The information you provide can also be enhanced by lookup services, purchase history, or social media you give us access to.
b) Information we receive through the use of our services
When the company or you use our services through the company card, we record information about what services you use and how to use them. We collect information about:
i) Your device and internet connection:
We can record information about the device you are using, such as the manufacturer of mobile / PC, operating system and browser version. We can also collect information about the connection to our services, such as IP network ID, cookies and unique identification files.
ii) Use of the Services or Purchases:
We record information about the company’s use of services, and employee use if the company card is on named employees of the company. Then your use of the services or purchases you make, like the pages you access, which functions you use, and your purchases.
iii) Location information:
We can also record your geographic position when you use our services, or shop in our stores through data from the purchases you make.
c) Information we receive from other sources
We regularly receive transaction information from IKANO Bank, and we also collaborate with third parties like Brønnøysundregistrene for increased data quality, Analysis companies for increased precision in our communications and can receive information about you from these.
d) Cookies and other content stored locally
When you use our services or visit our website, cookies and other data are stored.
e) Automatic decisions and assessments
Through analysis of the company or your purchases and purchase behaviour, if the card is named, we can automatically categorize you, as a customer.
7) What is the information used for?
We use personal information for the following purposes:
a) To send you information required by authorities or related to the agreement
We use personal information to send you statutory information related to your agreement (s), like a notification of when we’ve sent the card (s), information about My Page where you find financial overview or other contractual obligations between us.
b) To deliver and improve our services
We use personal information to deliver our services to you. For example, we need personal information to enable you to log in to our site and, if relevant, to pay for services. We also use personal information to ensure the best possible user experience for you, including customizing the display of content to your screen / device and ensuring the fastest possible page loading.
c) To customize the services, give you recommendations and relevant marketing
We want to provide you with recommendations, product information and service adjustments that are most relevant to you. This will both be given on the basis of your own behaviour, e.g. based on what products and services you have used or purchased, ads you’ve clicked on, or articles you’ve read, and based on the behaviour of other users with similar usage patterns like you.
d) To improve digital communication and advertising
We use your personal information to improve our advertising and our offerings to you. By creating a profile with us, you accept targeted advertising through programmatic purchases and targeted advertising through social media where your personal data will be used in the purchase of such advertising.
e) To compile statistics and understand market trends
We prepare statistics and map market trends. We do this to improve and further develop our product offerings and services. As far as possible, we try to do this with anonymous information, without knowing that the information is specific to you.
f) To prevent misuse of our services
We use personal information to prevent misuse of our services. Abuse may be attempts to log on to other people’s accounts, attempts at fraud, “spamming”, incitement, harassment and other acts prohibited by Norwegian law.
8. Sharing information
Coop basically does not share personal information with other companies, except for those partners who need the information to be able to provide services to Coop and the company in accordance with the agreement. If we disclose personal information, we enter into data processing agreements with the relevant third parties that limit their opportunity to use the information.
We will also be able to disclose information in individual cases imposed by law, for example to public authorities if there is suspicion of an offense.
9. Transfer of personal data abroad
a) Within the EU / EEA
Your personal information can be transferred abroad. Transfer of personal data within the EU / EEA area can be done freely in accordance with applicable privacy legislation.
b) Outside the EU / EEA
If we transfer personal data outside the EU / EEA area, we will ensure that the transfer takes place in accordance with applicable legislation. Coop will use other mechanisms to make a legal transfer.
10. Managing Personal Data
You can influence what personal information we should have about you and how we should use it. You can do this by clicking on encrypted links in any email you receive from us to get to your communication page, or by contacting us at corporate@coop.no.
If you discover any errors in the information we have about you, please contact Ikano Bank by filling out the contact form at https://ikanobankbedrift.no/innkjopskort/coop-bedriftskort/kontakt.
If you have any questions regarding your personal information, you can contact us at bedrift@coop.no at any time
11. Deletion of personal data
You are entitled to all our information about you be deleted on request, without traceability, as long as we are not required by law to store these. You can contact us about this and cancel your customer relationship via the contact form and bedrift@coop.no
12. Securing personal data
Security measures are used to protect personal information that is under our control against unauthorized access, collection, use, disclosure, disclosure, copying, modification or disposal.
13. Especially about email marketing and SMS marketing
If you have an active customer relationship with us, we can send you marketing by e-mail or with other electronic communication methods in accordance with the Marketing Act section 15. It includes newsletters and other inquiries regarding content, services, offers, campaigns and events from us, our partners and partners via e-mail, phone, SMS, mail / letter and social media.
However, if you do not have an active customer relationship, we will only send such marketing if you have given us consent to this. Your personal data can also be used to customize this communication. You can at any time simply and free of charge notify marketing inquiries through the unsubscribe function in the emails / SMS’s.
Coop will always be able to contact you on your corporate email address.
14. Changes to the Privacy Statement
We will periodically update or change the privacy statement. In case of major changes, we will inform you about this.
15. Data Processors
Consort
Assists the company’s contact person on information and application process about Coop corporate cards. Consort wants information on account owner, telephone number and e-mail in connection with the company applying for Coop corporate card.
Cognito
Is Coop’s partner for the preparation and transmission of communications to corporate customers and will have access to customer and transaction information from Ikano Bank. The information will be used to segment and analyse customers with the goal of giving each individual Coop Business Card customer the most relevant information and offers on how they can use Coop Business Card. Cognito will also record the customer’s response to communication with the purpose of being able to optimize information for the customers.
At the bottom of all emails sent via Cognito there is an opportunity to click and see all registered data, as well as information about data that is collected.
Dipper and Entelios
If you have a subscription with Dipper or Entelios, they receive the following personal information: The company name, contact person with telephone and e-mail. The exchange of personal data with the partners is carried out in order to fulfill the agreement.
We consider it less stressful to send the company’s contact person’s telephone number and possibly contact the business customer by phone to obtain an advantage based on the purpose of Coop Business Card. A weighing of the load has been carried out by making the contact person’s information known versus fulfilling the purpose and advantage of Coop’s company card in accordance with the Personal Data Act § 8f.
16. Partners
By using the partners, they have independent care arrangements for processing your personal information. See also the privacy statements of our partners
17. Insight
Purchases are registered and the card administrator has access to all purchases and in some cases they will indirectly know who is making the purchase. It is important that the employees /card users are aware that the administrator of the company card has been made aware of this.
18. Deletion
You have the right to object in writing to the process of your personal data if it is linked to your particular situation, after there is a written justification. You are the registered person who has to justify why the treatment should stop. The premise for being able to protest is that the basis for treatments is either in the public interest or the balancing of interests.
Follow us