Privacy Policy
Data Controller
OnNet CRM is the data controller for personal data collected and processed through this platform. Contact details for the business are shown at the bottom of this page.
Data We Collect
We collect the following categories of personal data:
- Contact information (name, email address, phone number)
- Business information (company name, organisation number, address)
- User and system data (role, sign-in activity, device and browser information, visit and activity timestamps)
Purpose and Legal Basis
We process personal data to deliver and administer the CRM service (performance of a contract, GDPR Article 6(1)(b)), manage subscriptions and payments via Stripe (contract, point b), comply with bookkeeping and tax obligations (legal obligation, point c), safeguard security, troubleshooting and operations (legitimate interest, point f), and handle optional analytics and marketing purposes where you have consented to this (consent, point a).
Third Parties
We only share data with third parties where necessary to deliver the service or comply with legal obligations. This may include Stripe for payment processing, Google for analytics and consent-based tracking, the Brønnøysund Register Centre for business information lookups, and other processors or subprocessors that support secure operation of the platform. Relevant processors are bound by data processing agreements where required.
Cookies and Tracking
We use essential cookies for authentication, session management and security measures. We may also use optional analytics and marketing cookies via Google Tag Manager when you have given consent. You can change or withdraw your consent at any time via the cookie banner.
Retention
Personal data is not stored longer than necessary for the purpose for which it was collected. Active user accounts are retained for the duration of the customer relationship, invoice and accounting records are retained in line with statutory requirements, technical logs are kept as long as needed for security and troubleshooting, and deleted accounts are removed or anonymised within a reasonable period after the customer relationship ends unless legal obligations require further retention.
Your Rights (GDPR)
You have the right to access, rectify, erase, restrict processing, data portability, and to object to processing in accordance with the GDPR. Where processing is based on consent, you may withdraw that consent at any time. Requests can be sent using the contact details below. You also have the right to lodge a complaint with the relevant supervisory authority.
Information Security and Transfers
We continuously work with technical and organisational security measures to protect personal data against unauthorised access, alteration, loss and misuse. If data is processed outside Norway, this will be done on a valid legal basis and with the necessary safeguards in place.
Contact
OMNII INTELLIGENCE AS
Org. nr. 9370833512
Hovdenakvågen 2, SKÅLA, 6456, NO
E-post: info@onnet.tech