Skip to content

Personvern­erklæring

privacy-notice.green
Innhold
laster inn...

Privacy Policy

1. Introduction

When using products owned by Mystore, personal data about you is processed. This Privacy Statement is made to help you understand what personal data is collected, why it is collected and how Mystore handles, protects, stores, exports, and deletes your personal data. 

Personal data is any information relating to an identified or identifiable natural person, such as an email address, street address, phone number, etc.

2. Mystore as a Processor

For the personal data you enter into the Mystore application and that is processed there, your employer/school is the data Controller. Mystore does in such cases act as a data Processor and processes the data on behalf of and according to instructions given by the employer or school.

If you have any requests regarding deletion of your personal data, correction of the personal data or insight to what personal data that are processed about you, you should contact your employer/school. 

3. Mystore as a Controller

In some cases, Mystore will be the data Controller for your personal data. This is when Mystore determines the purposes and means of the processing of personal data, for example for improving the application, marketing and security purposes. 

When Mystore is the Controller for your personal data in this application, the sections below apply. 

4. Information about processing of personal data where Mystore is the controller

4.1 What personal data do we process?

The type of personal data that Mystore processes about you may be:
  • Basic personal information such as name, address, telephone number, email and demographic information
  • User and web traffic information such as login ID, username, and IP address
  • Statistics that show how the users use our software and consume content we offer
  • Financial information such as invoice-related information
  • Content you have uploaded or provided such as photos, comments, articles and videos
  • Information provided through job applications


4.2 How is personal data collected?

In general, Mystore collects personal data directly from you or other persons linked to our Customer. If the Customer purchases Mystore products or services via a Mystore partner company, we may collect information about you from the partner company.

We will also use cookies and other tracking technologies when you use our applications/services, in order to optimise your experience of Mystore and our products. 


4.3 Why do we process personal data?

This Privacy Statement applies when Mystore process your personal data for various purposes when you interact with us, such as:

Buy and deliver

  • Facilitate customer orders, agreements, payments
  • Offer services directly to you, such as e-learning, webinars, reports, etc.
  • Provide requested offers on products and services to Customers
  • Create and facilitate accounts for users of our services

Support and improvement of services

  • Improve and develop the quality, functionality and user experience of our products
  • Offer customer support of our products and services
  • Operate user communities to educate and enable interaction between users and Mystore

Security

  • Detect, mitigate and prevent security threats and abuse, and perform maintenance and debugging

Marketing

  • Manage and send marketing preferences and content
  • Create interest profiles in order to promote relevant products and services (profiling)

Analysis

  • Device Information. We collect device-specific information, such as the hardware
    model, operating system version, unique device identifiers and language. We use
    this for support and development reasons.
  • Feedback. To improve our service (we constantly strive to improve our service based on information & feedback we receive from you)


Recruiting

  • Manage recruitment processes and process job applications
  • Evaluate submitted documentation, conduct interviews and call references


Information regarding how personal data is processed in one of our many services is outlined in the respective data processing agreement for that service. Mystore does in such cases act as a data processor and processes the data on behalf of and according to instructions given by the Customer. For more information regarding this, please contact customer support for that specific service.

4.4 What is the legal basis for processing your personal data?


We process data based on several legal grounds.

Agreement with you

We process your personal data on the basis of a legal binding contract with you. This will typically be when you apply for a job in Mystore. Processing your personal data such as CV, application and references is necessary for Mystore to handle jobseekers requests before a contract is entered into.

Your consent

Mystore might process your personal data based on consent. You will always be able to withdraw your consent, after you have given the consent. This is used when collecting feedback on the product and using web pages and services connected to Mystore. 

Legitimate interest

Mystore has a legitimate interest when we process your data for security, support, marketing, analysing and improvement purposes. Your personal data is processed from a business perspective in a manner that we believe does not conflict with your privacy rights or freedoms.

Read more about how Mystore processes your personal data for marketing purposes based on legitimate interest and your rights when we process your personal data for such purposes under section 4.9 below.

4.5 How is your personal data shared?

As Mystore is a part of Visma, which consists of many different subsidiaries, it is important for us that we provide the best possible overall experience for you. In order to maintain an overview and insight, Mystore may share your personal data across companies in the Visma Group. 

Mystore may also share your personal data with external third parties in the following contexts:

Business partners
Mystore may share your personal information with our partners in the event this is legitimate from a business perspective and according to applicable privacy legislation. 

Public authorities
The police and other authorities may request access to personal information from Mystore. In these cases, Mystore will only provide the data if there is a court order etc. to do so.

4.6 Use of processor

When using processors, Mystore will enter into a data processing agreement in order to safeguard your privacy rights. If processors are located outside the EU/EEA, Mystore ensures legal grounds for such international transfers on your behalf, hereunder by using the EU Model Clauses.

You are always welcome to request an overview and more detailed information on Mystore’s processors. For how to contact Mystore, please see the last section of this statement.

4.7 How long is your data stored?

Mystore will only store your personal information for as long as necessary to fulfil the purpose of processing, but in most cases never longer than 3 years since your last registered activity.

Your personal data may be subject to different retention policies based on the type of data and the purpose of collecting it. For further information regarding deletion, feel free to contact Mystore (see contact information in the last section of this statement).

4.8 What are your rights?

You can invoke the following rights in relation to our processing of your personal data:

  • Access. You have the right to request a copy of personal data we process about you.
  • Rectification. You also have the right to request Mystore to rectify inaccurate personal data concerning you. If you have an account with Mystore, this can usually be done through the appropriate "your account" or "your profile" sections on the applicable Mystore Site or service.
  • Deletion. You can request Mystore to delete personal data relating to you. 
  • Restriction. You may ask us to restrict the processing of your personal data
  • Portability.  You may ask us to provide you or others with your personal data in a structured, commonly used and machine-readable format.
  • Object. On grounds relating to your particular situation, you have the right to object to our processing of your personal data on the basis of legitimate interests or for direct marketing purposes. You also have the right to object to our processing of your personal data for the performance of tasks carried out in the public interests or in the exercise of official authority or based on legitimate interests. 

Please note that there may be certain exceptions or limitations to the abovementioned rights which could apply depending on the specific circumstances of your situation. In such cases, we will provide you with detailed information about the applicable exception or limitation and help you exercise your rights to the fullest extent possible, in accordance with applicable laws and regulations.

Please use privacy@mystore.no to file requests as mentioned in this section.

Finally, you also have a right to file a complaint to the data protection authorities with regards to our processing of your personal data. 

4.9 Marketing and profiling

As part of using the application, Mystore will be processing your personal data based on legitimate interest. One of Mystore's legitimate interests is the processing of personal data for direct marketing purposes.

Mystore uses your personal data to provide relevant content to you through direct marketing on social media platforms and emails, webpages or in a Mystore service, based on your preferences. The personal data processed are aggregated details about you such as IP address, interests (where you have clicked, etc.), username and device. This is done through technologies like cookies and is called profiling. Mystore will also be able to combine this information with information about the customer relationship we may have with your company.

Mystore uses email as a tool to communicate marketing, however only if you have consented in accordance with national marketing legislation (if needed). If you have consented, you will always have the possibility to opt out as described below, or when you receive an email containing marketing. 

You have the right to opt out of receiving marketing communications from Mystore and be subject to profiling. You can do this by either:

  1. Following the instructions for opt-out in the relevant marketing communication
  2. Changing preferences under the relevant edit account section if you have an account with Mystore
  3. Contacting us via e-mail at nadia.lilleng@visma.com

Please note that even if you opt out from receiving marketing communications, you may still receive administrative communications from Mystore, such as order confirmations and notifications necessary to manage your account or the services provided to Customers.

5. How to contact us

If you have any questions regarding our processing of your personal data, please contact our data protection manager Nadia Katrine Lilleng at nadia.lilleng@visma.com or by phone +47 98 46 07 77. 


Cookie Policy

General

This cookie policy describes Mystore`s (“we”, “us”, “our”) use of cookies when you visit our website. If you have any questions about our use of cookies that are not answered by the information below, please contract us on. 

What are cookies and why do we use them?

Cookies are small text files that are stored on your device when you visit our website. Cookies help the website remember information about your visit to improve the website`s functionality and display more personalized and useful content. 

When you visit our website, we install certain cookies on yout device that are necessary for the functionality of the website. Subject to your consent, we may also use cookies or other tracking tools to collect information about your device and your interactions with our website. Currently, we use non-essential cookies for the following purposes:

  • Improving the functionality of the website
  • Analysing the use of our website
  • Marketing

At the bottom of this cookie policy, you will find a complete list of the cookies we use and the purposes we use them for. 

Does our use of cookies involve processing of personal data?

Depending on which cookies you have given us your permission to store on and retrieve from your device, our use of cookies may include processing of your personal data. All processing of personal data is subject to security and privacy standards enshrined in the applicable data protection legislation. You can read more about our processing of you personal data in our Privacy Policy above.  

How can you manage or delete cookies?

Your can, at any time, withdraw your consent to our use of cookies that are not strictly necessary for the functioning of the website. Please note that cookies allow us to give you the best possible experience on our website and that blocking cookies will affect the website`s performance. 

If you want to withdraw your consent, or otherwise manage your cookie preferences, you can easily do so managing you cookies the webbrowser (depending on which browser you use - and follow their instructions).

What cookies do we use?


Strictly necessary cookies

Strictly necessary cookies make our website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies. 

Cookie Key

Domain

Cookie type

Expiration

Description

__cf_bm

.hubspot.com

Third -party

30 minutes

This cookie is used to distinguish between humans and bots. This is beneficial for the website, in order to make valid reports on the use of their website

JSESSIONID

.nr-data.net

Third -party

Session

General purpose platform session cookie, used by sites written in JSP. Usually used to maintain an anonymous user session by the server.

_hjAbsoluteSessionInProgress

.mystore.no

First- party

30 minutes

The cookie is set so Hotjar can track the beginning of the user's journey for a total session count. It does not contain any identifiable information.

OptanonConsent

.www.mystore.no

First- party

1 year

This cookie is set by the cookie compliance solution from OneTrust. It stores information about the categories of cookies the site uses and whether visitors have given or withdrawn consent for the use of each category. This enables site owners to prevent cookies in each category from being set in the users browser, when consent is not given. The cookie has a normal lifespan of one year, so that returning visitors to the site will have their preferences remembered. It contains no information that can identify the site visitor.

__cfruid

.hs-sites.com

Third -party

Session

Cookie associated with sites using CloudFlare, used to identify trusted web traffic.

__cf_bm

.mystore.no

First- party

30 minutes

This cookie is used to distinguish between humans and bots. This is beneficial for the website, in order to make valid reports on the use of their website.

_hjFirstSeen

.mystore.no

First- party

30 minutes

The cookie is set so Hotjar can track the beginning of the user's journey for a total session count. It does not contain any identifiable information.

__cfruid

.mystore.no

First- party

Session

Cookie associated with sites using CloudFlare, used to identify trusted web traffic.

 

Functional cookies

Functional cookies enable our website to remember information that changes the way the website behaves or looks; for example, your preferred language or the region that you are in.

Cookie Key

Domain

Cookie type

Expiration

Description

hubspotutk

www.mystore.no

First- party

6 months

User authentication. As a persistent rather than a session cookie it cannot be classified as Strictly Necessary.

 

 

 

 

Analytical cookies

Analytical cookies allow us to analyse traffic sources so we can measure and improve the performance of our website. Analytical cookies enable us to see how visitors move around the website. All information there cookies collect is aggregated and therefore anonymous. 

Cookie Key

Domain

Cookie type

Expiration

Description

_ga_ZK1S1S2BMD

.mystore.no

First- party

1 year 1 month

This cookie is used by Google Analytics to persist session state.

__hssc

www.mystore.no

First- party

30 minutes

This cookie name is associated with websites built on the HubSpot platform. Used for website analytics.

_ga

.mystore.no

First- party

1 year 1 month

This cookie name is associated with Google Universal Analytics - which is a significant update to Google's more commonly used analytics service. This cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. It is included in each page request in a site and used to calculate visitor, session and campaign data for the sites analytics reports.

_gid

.mystore.no

First- party

1 day

This cookie is set by Google Analytics. It stores and update a unique value for each page visited and is used to count and track pageviews.

_gat

.mystore.no

First- party

1 minute

This cookie name is associated with Google Universal Analytics, according to documentation it is used to throttle the request rate - limiting the collection of data on high traffic sites.

__hstc

www.mystore.no

First- party

6 months

This cookie name is associated with websites built on the HubSpot platform. Used for website analytics.

__hssrc

www.mystore.no

First- party

Session

This cookie name is associated with websites built on the HubSpot platform. Used for website analytics.

 

Marketing cookies

Marketing cookies are used to build a profile of your interests to show you relevant adverts on this and other websites. The intention is to display ads that are relevant and engaging for you. If you do not allow these cookies, you will experience less targeted advertising and personalised content.

Cookie Key

Domain

Cookie type

Expiration

Description

MUID

.clarity.ms

Third -party

1 year

This cookie is widely used my Microsoft as a unique user identifier. It can be set by embedded microsoft scripts. Widely believed to sync across many different Microsoft domains, allowing user tracking.

IDE

.doubleclick.net

Third -party

1 year

This cookie is set by Doubleclick and carries out information about how the end user uses the website and any advertising that the end user may have seen before visiting the said website.

MR

.c.bing.com

Third -party

7 days

This is a Microsoft MSN 1st party cookie which we use to measure the use of the website for internal analytics.

SM

.c.clarity.ms

Third -party

Session

This is a Microsoft MSN 1st party cookie which we use to measure the use of the website for internal analytics.

SRM_B

.c.bing.com

Third -party

1 year

This is a Microsoft MSN 1st party cookie that ensures the proper functioning of this website.

_fbp

.mystore.no

First- party

3 months

Used by Meta to deliver a series of advertisement products such as real time bidding from third party advertisers

CLID

www.clarity.ms

Third -party

1 year

This cookie is usually set by Dstillery to enable sharing media content to social media. It may also gather information on website visitors when they use social media to share website content from the page visited.

test_cookie

.doubleclick.net

Third -party

15 minutes

This cookie is set by DoubleClick (which is owned by Google) to determine if the website visitor's browser supports cookies.

MUID

.bing.com

Third -party

1 year

This cookie is widely used my Microsoft as a unique user identifier. It can be set by embedded microsoft scripts. Widely believed to sync across many different Microsoft domains, allowing user tracking.

MR

.c.clarity.ms

Third -party

7 days

This is a Microsoft MSN 1st party cookie which we use to measure the use of the website for internal analytics.

YSC

.youtube.com

Third -party

Session

This cookie is set by YouTube to track views of embedded videos.

_gcl_au

.mystore.no

First- party

3 months

Used by Google AdSense for experimenting with advertisement efficiency across websites using their services

messagesUtk

.mystore.no

First- party

6 months

This cookie is used to recognize visitors who chat with you via the chatflows tool. If the visitor leaves your site before they're added as a contact, they will have this cookie associated with their browser.

ANONCHK

.c.clarity.ms

Third- party

10 minutes

This cookie carries out information about how the end user uses the website and any advertising that the end user may have seen before visiting the said website.

VISITOR_INFO1_LIVE

.youtube.com

Third- party

6 months

This cookie is set by Youtube to keep track of user preferences for Youtube videos embedded in sites;it can also determine whether the website visitor is using the new or old version of the Youtube interface.

The expiration time is calculated from the last time you visited the website. The cookie is deleted automatically after the expiry of the time.

Denne personvernerklæringen gjelder alle forretningsprosesser i Mystore.no AS og alle Mystore-nettsteder, domener, mobilløsninger, skytjenester, samt Mystore-merkede nettsteder (for eksempel på Facebook). Eventuelle spesifikke vedlegg for våre skytjenester finnes i vilkårene for bruk eller tilsvarende for den aktuelle tjenesten.

Erklæringen gir informasjon om databehandling utført av Mystore.no AS og bestemmer formålet og virkemidlene for behandlingen samt databehandling vi gjør på vegne av våre kunder basert på deres instruksjoner.

Behandling av personlige data er nødvendig for at vi skal kunne ivareta våre kontraktsforpliktelser og betjene deg som kunde. Personlig data kan også benyttes til følgende formål: Salg, kontakt med kundeservice, markedsføring, informasjon, bokføring.

Ved å gi oss dine personlige opplysninger, godtar du praksis og vilkår som er beskrevet i denne personvernerklæringen.

Om du har innsigelser med hensyn til vår behandling av personvern har du også anledning å klage til Datatilsynet.

BEHANDLINGSANSVARLIG
Mystore.no AS
Stakkevollveien 41
9010 Tromsø
E-post: privacy@mystore.no
Telefon: +47 21 98 24 74

PERSONVERNOMBUD
E-post: privacy@mystore.no
Telefon: +47 21 98 24 74

OPPLYSNINGER SOM INNHENTES
Opplysninger kan registreres og lagres når du registrerer deg på 
www.mystore.no, når du er i kontakt med salg og support enten via e-post, chat eller når du bruker våre skytjenester.

HVOR LAGRER VI INFORMASJON OM DEG - OG HVOR DELER VI INFORMASJON OM DEG MED ANDRE?
Om du benytter Mystore.no AS sine tjenester vil informasjon lagres i våre interne systemer, samt hos våre IT-leverandører som er nødvendig for å drive våre tjenester.
 

1. UNDERLEVERANDØRER VI BENYTTER

Atlassian Jira
Jira er et prosjektstyringsverktøy som utviklerne våre benytter til å holde oversikt over pågående prosjekter og innmeldte saker.
Wootric
Wootric er en tjeneste som vi benytter til å spørre våre kunder om hvor sannsynlig det er at de vil anbefale Mystore til venner eller kollegaer. Informasjonen benyttes til å måle kundetilfredshet og til legge hjelpe oss med å forbedre våre tjenester.
Amazon Cloud Services (AWS)
All informasjon som lagres i våre skybaserte tjenester ligger på datasenter operert av Amazon Web Services (AWS) i Irland.
Kibana
Kibana er et verktøy for å overvåke trafikk/trender/loggfiler. I Kibana vil blant annet følgende være logget: Ip-adresse, nettleser, operativsystem og hvilke sider som besøkes. En person kan ikke identifiseres, men IP-adressen kan identifiseres.
Postmark, Wildbit, LLC
Postmark benyttes for å sende alle transaksjonsbaserte e-poster fra våre skyløsninger. Dette inkluderer blant annet ordrebekreftelser, oppdaterte ordrebekreftelser, e-post om ny brukerkonto, endret passord, ol.
BIME Analytics (Zendesk, Inc)
Bime er et analysesystem for utarbeidelse av statistikk. Data kan deles med BIME for å utarbeide statistikk. All statistikk som utarbeides er anonymisert.
Adyen
Håndterer kredittkortbetaling og betalingsinnløsning ved bruk av Mystore Payments enten online eller ved bruk av betalingsterminal i butikk.
Vipps
Ved bestilling av Vipps vil informasjon som e-postadresse og navn deles med Vipps for å sette i gang en bestillingsprosess.
Klarna
Ved bestilling av Klarna Checkout vil informasjon som e-postadresse/navn/telefonnummer deles med Klarna for å sette i gang en bestillingsprosess.
Gsuite by Google
Gsuite by Google benyttes blant annet til håndtering av e-post, dokumenter (G Disk). Informasjon lagres i disse systemene og e-postkorrespondanse eller dokumenter kan være lagret hos Gsuite by Google
Intercom
Intercom benyttes for chat i kontrollpanel og på Mystore.no, samt oppfølging av butikker i demoperioden. Navn, e-post og IP-adresser kan deles og lagres hos Intercom.
Mailchimp
Mailchimp benyttes for e-postmarkedsføring eller utsendelse av nyhetsbrev. Navn og e-post kan deles med Mailchimp.
Google Analytics
Google Analytics benyttes for analyse av trafikk. IP-adresser og besøksmønster lagres.
Visma AS
Mystore.no sin største eier er Visma. Mystore deler data med flere systemer eid av Visma konsernet, blant annet Tripletex og E-conomic for bokføring.
Slack (USA)
Nettbasert kommunikasjonsplattform. Benyttes blant annet for internkommunikasjon.
Digital Ocean INC
Vår nettside www.mystore.no ligger på Digital Ocean sine servere i USA. Informasjon som registreres på www.mystore.no vil lagres hos Digital Ocean INC.
Hubspot
I vårt arbeid med å følge opp og organisere tilbakemeldinger fra våre kunder benytter vi verktøyet Hubspot. Vi vil også ta i bruk Hubspot som kommunikasjonsverktøy for blant annet nyhetsbrev. Hubspot lagrer sine data i USA.
Zendesk
Vårt kundesenter benytter verktøyet Zendesk for å følge opp og organisere tilbakemeldinger fra våre kunder på epost- og chat-korrespondanse. Alle innkommende og utgående e-poster samt chat-dialoger lagres hos Zendesk.
Hotjar
I deler av vårt arbeid med teste nye funksjoner og tjenester bruker i vi samarbeid med enkelte av våre kunder verktøyet Hotjar. Hotjar er et system for analysere trafikkdata og brukeratferd.
Microsoft Clarity
I deler av vårt arbeid med teste nye funksjoner og tjenester bruker i vi samarbeid med enkelte av våre kunder verktøyet Microsoft Clarity. Dette er et system for analysere trafikkdata og brukeratferd.

2. KOMMUNIKASJON GJENNOM E-POST

Vi benytter e-post til markedsføring og kommunikasjon. Som kunde av Mystore.no AS vil du med jevne mellomrom motta viktig informasjon samt nyhetsbrev. Det er mulig å  melde seg av nyhetsbrev ved å klikke på avmeldingslinken i e-postene.

3. INNSYN OG RETTING

Du har krav på innsyn i de opplysninger som er registrert om deg. Innsyn kan også fås ved å sende en henvendelse til kundeservice@mystore.no. Dersom de registrerte opplysninger ikke er riktige eller er ufullstendige, kan du kreve at opplysningene korrigeres i henhold til personopplysningsloven.

4. OPPBEVARING OG SLETTING

Opplysninger som ikke lenger er nødvendig for det formål de er laget for, slettes fra våre systemer. 

5. INFORMASJON OM BRUK AV INFORMASJONSKAPSLER

En informasjonskapsel (cookie) er en liten tekstfil som lagres på din datamaskin.
Vi bruker informasjonskapsler blant annet til å huske din innlogging, passord i kryptert form, til å forbedre brukeropplevelsen og som en del av vår markedsføring mot nye kunder.
Når du besøker våre tjenester, setter vi både midlertidige og varige informasjonskapsler. En midlertidig informasjonskapsel slettes ofte automatisk når du lukker nettleseren din, mens varige kan ligge på din maskin i opptil ett år.
Om du ønsker å lære mer om informasjonskapsler kan http://www.aboutcookies.org benyttes.

6. INFORMASJONSKAPSLER BRUKT I VÅRE TJENESTER

I henhold til norsk lov har du automatisk samtykket i at vi lagrer informasjonskapsler på din datamaskin dersom du tillater dette gjennom innstillingene i din nettleser.

Bruk av /kontrollpanel i din butikk
For å kunne benytte våre tjenester benytter vi informasjonskapsler for å identifisere deg slik at du ikke må logge inn hver gang en side lastes.
Bruk av våre butikkløsninger
Vi benytter informasjonskapsler til blant annet å huske deg som kunde og huske innhold i din handlekurv. Uten informasjonskapsler vil ikke en nettbutikk kunne fungere.
Bruk av Klarna Checkout
Når våre butikkløsninger benyttes sammen med Klarna Checkout settes det informasjonskapsler fra Klarna. Mer informasjon på https://www.klarna.com/no/cookies/.
Zendesk Chat / Hjelpesenter
På våre nettsider tilbyr vi en chatløsning og hjelpesenter fra Zendesk. Zendesk benytter informasjonskapsler for å identifisere en økt og din bruker-id.
Google Analytics
Google Analytics benytter informasjonskapsler for analyse av trafikk.
Google Ads (tidligere AdWords)
Vi benytter oss av annonsering gjennom Google sin plattform. Informasjonskapsler benyttes slik at annonsering kan målrettes basert på besøksmønster.
Facebook Pixel
Vi benytter oss av annonsering gjennom Facebook sin plattform. Informasjonskapsler benyttes slik at annonsering kan målrettes basert på besøksmønster.
Hubspot
I arbeidet med organisering av tilbakemeldinger fra våre kunder og chat-funksjon på Mystore.no, benytter verktøyet Hubspot informasjonskapsler.