Privacy Statement
The University of Bergen (UiB) is responsible for the processing of personal data as described in this privacy statement. In this privacy statement, we explain what kind of personal data we store, how we process it, and how long it is kept.
Last updated: 22.08.2022
For questions related to this privacy statement, or to exercise your data protection rights (access, correction, deletion, restriction of processing, etc.) please contact us at personvernombud@uib.no.
Personal data we collect and process
We process the following categories of personal data:
- Basic information: name, age, education, role, gender
- Contact details: address, email address
- Account and profile information: settings, preferences
- Customer activity: reading and action history from websites or the electronic communication we send out, as well as technical information about the devices you use.
- Cookies: see our information on cookies
In most cases, the personal data is collected directly from you or it is generated in connection with you using our services and products. When we retrieve personal data from other sources, we collect personal data from the following sources: Feide
How we use personal data
Service delivery
We use your personal data to fulfil our agreements with you, i.e. when you have ordered a product or a service from us. The legal basis for processing personal data for this purpose is that the processing is necessary to fulfil an agreement with you.
Analysis, business development, and service improvement
We continuously work to develop and improve our services and products. A lot of this work involves analysing various forms of personal data, such as customer activity, customer history, and account and profile information. The legal basis for processing personal data for this purpose is our legitimate interest.
Customised user experience
We adapt the user experience to our customer relationship with us, e.g. by showing how far you've progressed in a course, and we use personal data for this. The legal basis for processing personal data for this purpose is our legitimate interest.
System monitoring, debugging, etc.
We monitor our systems for errors and problems. Part of these processes involves the storage and processing of personal data. The legal basis for processing personal data for this purpose is our legitimate interest.
Your rights
Right to access your information
You can request a copy of all the information we process about you. Please use the email address above to exercise your right to access.
Right to correct personal data
You have the right to ask us to correct or supplement information that is incorrect or misleading.
Right to delete personal data
You have the right to have your personal data deleted without undue delay. Therefore, you can ask us to delete information about yourself at any time. Do note that information that we are required to keep due to other legal obligations (like the bookkeeping legislation) will not be deleted.
Restriction on processing of personal data
In some situations, you can also ask us to limit the processing of your information. You do this by managing consents or reservations in our solutions.
Object to processing of personal data
If we process information about you based on our tasks or based on a balance of interests, you have the right to object to our processing of information about you. You do this by managing consents or reservations in our solutions.
Data portability
You have the right to receive your personal data in a structured, commonly used, and machine-readable format. Please contact us using the email address above to receive your personal data.
You can complain about our processing of personal data
We hope you will let us know if you think we are not complying with the Personal Data Act. Please inform us first through the contact or channel you have already established with us. You can also complain about our processing of personal data to the Norwegian Data Protection Authority (Datatilsynet).