Close
What are you searching for?

Privacy Policy

Privacy statement for SAGA Corporate Finance AS

 1 About SAGA Corporate Finance 

Thank you for using the services offered by SAGA Corporate Finance and its website (https://sagacorporate.no/) (“Website”). 

The website is owned by SAGA Corporate Finance AS, a limited liability company located in Norway under registration number 985 226 776, with the principal place of business Tjuvholmen allé 3, 0252, Oslo Norge. 

When you visit our Website or use our services provided by SAGA Corporate Finance AS, including its affiliated companies (“SAGA”, “we”, “us”, “our”), SAGA will collect, use and process your personal data. SAGA takes your privacy seriously and processes your personal data in a secure and confidential manner. 

This Privacy Statement (“Privacy Statement”) explains what personal data we process, how we process it, for what purposes and on what basis data is processed. The Privacy policy also explains what rights you have and how you can exercise them with respect to our processing of your personal data. 

When you buy SAGA’s services or use the Website, SAGA is responsible for processing your personal data (data controller). This means that SAGA is responsible for determining the purposes of the processing of personal data and for complying with personal data protection legislation. If you wish to contact SAGA regarding the processing of personal data, please use the contact information included at the bottom of this Privacy Statement. 

 

2 Purpose and legal basis for processing personal data 

2.1 Mandate administration 

The contact information for the client and the client’s representative(s) will be used in the communication with the client. Some assignments require access to personal data regarding parties or other individuals. Such information may be found in documents that the client sends us or any other correspondence of relevance to the mandate. In most cases, however, we process a minimal amount of personal data. Data processing in connection with mandates for business clients is based on GDPR Article 6 (1) (f) (balancing of interests). 

2.2 IT and security 

Personal data stored in our IT systems will be available to us or our contractors in connection with system updates, implementation or following up on security measures, error recovery or other maintenance. The legal basis for the processing is GDPR Article 6 (1) (c), cf. GDPR Articles 32 and 6 (1) (f) (balancing of interests). 

2.3 Invoicing and accounting 

Contact information received from business clients is used to mark invoices sent to the company. The legal basis for the processing is GDPR Article 6 (1) (f) (balancing of interests) for business clients. 

2.4 The Website 

We collect personal data through our website. This includes data collected by cookies, and it also includes, for example, online surveys and similar services where you freely provide us with personal data. In certain cases, we store email and IP address information for the purpose of analyzing relevant information requested by data subjects through our services, compiling customer statistics, including analyzing usage patterns to further develop and customizing the customer experience. The basis for processing is GDPR article 6 no. 1 letter f (balancing of interests) where we have received data from customer who have requested our services. See also the chapter detailing cookies below. 

2.5 Feedback and customer service 

We appreciate your feedback. In order for us to assist you with feedback and questions, we process your personal information to identify you and provide you with customer service. You can contact us by e-mail or phone using the contact information you find here. Depending on the help you need, we may ask you to submit additional personal data to provide you with proper customer service. The legal basis for processing personal data as described in this section is to fulfill your explicit request, to perform the contract with you and our legitimate interest in improving our services. 

2.6 Marketing 

We want to help you get the most out of our services. Therefore, we will send you, or otherwise alert you to, various offers and activities by e-mail, for example in the form of newsletters, marketing material or information about other special offers. For this purpose, we will process your e-mail address as well as your previous preferences. The basis for the processing is GDPR Article 6 (1) (f) (balancing of interest) where we have received the e-mail address in connection with an assignment and the Marketing Act Section 15 (3) allows for using the e-mail address for marketing. In other instances, the marketing is based on consent from the individual, cf. GDPR Article 6 (1) (a). 

The legal basis for processing personal data for marketing purposes is your consent and our legitimate interest in informing you about our service and ensuring that you get the maximum benefit from the services. You can withdraw you consent to such processing at any time by contacting us using the e-mail address we have provided at the bottom of this Privacy Statement. Withdrawing your consent will not affect the lawfulness of the processing before you withdrew your consent. 

 

3 Access to personal data 

Our IT service providers might have access to personal data if the personal data are stored with the subcontractor or otherwise made available to the subcontractor. The subcontractors act in accordance with the data processing agreement and our instructions. The subcontractor may only use the personal data for the purposes determined by us and as described in this privacy statement. 

We will not disclose personal data in other situations or in any other ways than described in this privacy statement unless the client explicitly requests so or consents to this. 

3.1 Third-party service providers 

SAGA uses several third-party service providers that process personal data on SAGA’s behalf. The use of third party service providers includes, among others:

Name 

Description 

Microsoft Office 365 

Various Microsoft products 

Embassi AS 

Xsale (CRM) og Virosafe (Antivirus) 

Box 

Cloud storage 

Google Analytics 

Google Analytics and Play (analytics), Google Storage (content) 

Doubleclick 

Advertising platform 

DigitalOcean 

Website hosting platform 

RunCloud 

Server hosting management panel 

 

3.2 Transfers to third countries 

SAGA may need to transfer your personal data to countries outside the EU/EEA (“Third Country”) through the use of the aforementioned third-party service providers, if such service providers are located in a Third Country or use sub-processors located in a Third Country. SAGA will not transfer personal data to third countries outside the EU/EEA that do not offer adequate protection, unless appropriate safeguards are in place, for example, entering into EU standard contractual clauses. 

 

4 Data security 

We handle your personal data with care, in a secure manner. We have established procedures that satisfy the requirements set out in relevant personal data legislation. The security measures are technical, contractual and organizational in nature. We regularly assess the security of all key systems used for handling personal data. We have also entered into agreements with our subcontractors who process personal data on our behalf, requiring them to ensure appropriate information security regarding the services they provide to us. 

 

5 Deletion 

We will delete personal data when it is no longer a need to store the data for the purposes for which it was collected, see chapter 3. Please note that certain types of information may be retained for longer periods if such retention is necessary to resolve disputes, enforce SAGA user agreements, or comply with technical and legal requirements or limitations related to the security, integrity, and operation of the services. 

Moreover, accounting legislation requires us to store certain accounting documents. When certain purposes imply storage for a particular period, we will ensure that the personal data is used solely for the relevant purpose during this period. 

 

6 Your rights 

You have a number of rights in relation to SAGA’s processing of your personal data. If you have any questions or wish to exercise your rights, we encourage you to contact us using the contact information included at the bottom of this Privacy Policy. 

Below you can see what rights you have at any time: 

  • Request access: You are entitled to access the personal data we have registered about you unless professional secrecy impedes this. In order to ensure that personal data is delivered to the right person, we may request that access requires is provided in writing or that your identity is otherwise verified. 
  • Request rectification or deletion: You may request that we correct incorrect information that we have about you or ask us to delete personal data. We will to the extent possible comply with a request to delete personal data, but we cannot do that if there are important reasons for not deleting them, e.g. that we have to store the information for documentation purposes. 
  • Withdrawal of consent: If you have consented to receive our newsletters, you may at any time withdraw this consent. We have arranged for an easy way to opt out of this kind of enquiry by including a link to a deregistration form in each communication. If you have consented to other data processing, you may at any time withdraw your consent with regard to that processing by directing an enquiry to us. 
  • Data portability: In some cases, you have the right to request a copy of personal data that you have provided to us in order to transfer the data to another law firm, etc. If it is technically feasible, such data can be transferred directly to the other company. 
  • Complain to supervisory authorities: If you disagree with the way in which we process your personal data, you may lodge a complaint with the Norwegian Data Protection Authority. We hope you choose to direct an enquiry to us first. 

7 Cookies 

The Website uses cookies and similar technologies, for example, beacons or tick codes. A cookie is a small text file stored in your web browser or device that causes a web page to recognize your web browser or device each time you use the Site. Web beacons or pixel tags have similar functions to cookies. They are electronic “signs”, often not visible to an end-user, that allow SAGA to identify users who have visited certain pages or viewed certain advertisements. Both the Website and the Collaboration Partners may use information capsules and similar technologies. 

Information capsules contain, among other things, information about navigation, visit time, net reading etc., and will be collected for marketing purposes and to give you a better user experience.

We use the following information capsules on the Website: 

Name 

Description 

Google reCAPTCHA 

Marketing/Tracking, Functional 

Google Ads 

Marketing/Tracking 

Complianz 

Functional 

Google Analytics 

Statistics 

GA Audience 

Marketing/Tracking 

Adobe Typekit 

Tag managers, privacy notices, etc. 

 

8 Consent to our use of cookies 

When you visit our website for the first time, we will show you a preview window with an explanation about cookies. As soon as you press “Accept all”, you agree that we use the categories of cookies and plug-ins you selected in the preview window, as described in this cookie statement. 

If you do not want information capsules or other similar technologies to be stored, you can change the settings in your web browser or device. You can also delete existing information capsules and similar technologies. If you choose to delete or not accept information capsules, you may experience reduced functionality. 

Each web browser or device has instructions on how to handle information capsules and related technologies through privacy and security settings: 

Use this link if you use Chrome 

Use this link if you use Internet Explorer 

Use this link if you use Safari

Use this link if you use Firefox 

Use this link if you use Opera 

Use this link if you use Microsoft Edge 

 

9 Changes to this privacy policy 

SAGA may make changes to this privacy policy. You will always find the latest version on 

sagacorporate.no/en/privacypolicy. We will notify you in a practical and available way in case of material changes to the privacy policy. 

 

10 Contact information 

If you have any questions or comments regarding this Privacy Statement or how SAGA processes personal data, please contact us at post@sagacorporate.no. 

 

11 Coookie Policy