Privacy Policy

How and when does the privacy policy apply?

This privacy statement applies to all business processes within Quick Systems AS and all of our websites, domains and cloud services. This statement must be read in conjunction with our Data Processing Agreement.

The Privacy Policy provides information about data processing carried out by Quick Systems AS when Quick Systems AS determines the purpose of the processing. It also provides information about data processed by Quick Systems on behalf of our customers.

Personal information is information that can identify you as an individual, such as an email address, street address or telephone number. Processing your personal data is in some cases necessary for us to be able to serve our customers. Please do not use Quick System AS's products or services if you do not agree with how we process personal data in accordance with this privacy policy.

What personal data is processed at Quick Systems AS?

Quick Systems AS processes personal data about contact persons or users of our applications related to our customers (where we control the data).
In addition, personal data is processed on behalf of our customers, which is information that our customers own (Quick Systems is only a data processor).

How do we process personal data as a data owner?

We are data owners in cases where you are a representative of a customer of ours or when you are a user of our applications.

The processing of your personal data is based on a balancing of interests. It is necessary for Quick Systems to process your personal data in order to provide you with the best possible customer experience. Your telephone number and email may be used in connection with user support or operational messages (for example, in the event of errors in our systems).

If you have consented, we may send you newsletters with customized marketing.

What personal data is collected?

The following information is entered about you as a user or customer:

• First name
• Surname
• Telephone/mobile (optional)
• Email (optional)
• Address (optional)

Storage of your information

We store your information with us for as long as is necessary for the purpose for which the personal information was collected.

We are obliged to store certain documents and transactions for longer periods as a result of our obligations under Norwegian accounting law, and such documents are deleted in accordance with applicable regulations.

Transfer of personal data to third parties

We do not transfer your personal information to others unless there is a legal basis for such disclosure.

We use data processors to process personal data on our behalf. We have entered into agreements with them, and they cannot use your personal data for purposes other than those set out in the agreement. Quick Systems AS uses the following data processors:

• EDI mail
• Nets (ref separate data processing agreement between the customer and Quick Systems AS in connection with eInvoice)

The data processors store your personal data within the EU/EEA. We will not transfer your personal data to companies other than those mentioned here.

However, remember that if you as a customer want integrations with other third parties (even if these are developed in collaboration with Quick Systems AS employees), it is the individual customer of Quick Systems AS's responsibility to have valid data processing agreements with them.

Your rights

You have the right to request access, correction or deletion/anonymization of the personal data we process about you if the conditions for this are met. You also have the right to request limited processing, object to processing and request the right to data portability if the conditions for this are met.

When the processing is based on your consent, you can withdraw this at any time. Please note that you may still receive communications from Quick Systems even after any consent has been withdrawn if it is necessary to maintain your accounts with us or other necessary information.

If you have any questions about this - please contact us at support@quick.no

Complaint to the Data Protection Authority

You have the right to complain to the Norwegian Data Protection Authority, for example if you believe that our processing of personal data does not comply with what we have described above or that we are in other ways violating data protection legislation. Contact information for the Norwegian Data Protection Authority can be found here: https://www.datatilsynet.no/

How do we protect and store data as a data processor?

Quick Systems AS provides many different services to our customers. Many of these services involve processing customers' data, including personal data. The basis for processing this data is determined by our customers, not by Quick Systems AS. This means that our customers are Data Controllers (data owners). Quick Systems AS is a data processor and processes data on behalf of our customers and according to instructions given by our customers. This relationship is regulated in a data processing agreement between us and our customers.

When our clients are Data Controllers of personal information, they must ensure that they process it in accordance with the law. Our clients must also be aware of what information they store about their customers and take ownership of the way they process personal data for each data subject.

Quick Systems AS and our customers must cooperate to ensure that personal data is processed and stored in accordance with applicable legislation, and Quick Systems AS shall enable the customer to comply with the legislation through the use of our applications.

Employee information

The Norwegian Data Protection Authority processes personal data about its employees to administer salaries and personnel responsibilities. The legal basis is provided by the Personal Data Act, Section 8, first paragraph and Section 8 a), b) or f) as well as Section 9 a), b) and f). The head of the support department and the general manager have the day-to-day responsibility for this. Necessary information for the payment of salaries is registered, such as basic data, salary level, time registration, tax percentage, tax municipality and trade union membership.

In addition, information is recorded in connection with key administration of entry and exit passes and information about access control in the IT system. The information is collected from the employees themselves. The information is only disclosed in connection with salary payments and other legally required disclosures. Deletion procedures for personnel information follow the Accounting Act and the Archives Act. Information about name, position and area of ​​work is considered public information and can be published on the company's website.

All job applications are stored at Quick Systems AS. They are stored in our archive for approx. one year before being shredded. All other documents, including applicant lists and settings, are preserved. The general manager is responsible for this.

All former and current employees have a personnel file in our archive system. This is where, among other things, the job application is archived/stored. Personnel files must be preserved (i.e. the job application is not deleted or shredded). Personnel files are cleared upon termination of employment.