Go Back Up

Privacy Policy

Last updated: 31.08.2025

Midnight Hill AS (“we”, “our”, “us”) (NO835934292) is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, and safeguard information when you visit our website https://midnighthill.no or interact with us.

1. Data Controller

The data controller responsible for processing your personal data is:

Midnight Hill AS
Lyngneskroken 16
4018 Stavanger
Norway

2. What Personal Data We Collect

We may collect and process the following categories of personal data:

  • Information you provide: when you contact us via email, contact forms, or social media (e.g. name, email address, phone number, company details).
  • Technical information: IP address, browser type, operating system, and usage patterns (through cookies and analytics tools).
  • Contractual data: if you engage our services, we may process billing details, contracts, and communication records.

We do not collect special category data (sensitive personal information) unless required by law.

3. How We Use Personal Data

We use personal data for the following purposes:

  • To respond to inquiries and provide requested information.
  • To deliver and manage our services.
  • To improve our website and user experience.
  • To comply with legal obligations.
  • For security and fraud prevention.

We will never sell or misuse your personal data.

4. Legal Basis for Processing

We process personal data based on:

  • Legitimate interests (e.g., responding to inquiries, marketing).
  • Contractual necessity (when delivering services).
  • Legal obligations (e.g., accounting, compliance).
  • Consent (e.g., use of cookies or newsletters).

5. Sharing of Data

We only share your data with trusted third parties where necessary, such as:

  • IT and hosting providers (for website and email services).
  • Professional advisors (e.g., accounting, legal).
  • Authorities, when required by law.

Data processing agreements bind all processing partners and are compliant with the GDPR.

6. Storage and Retention

We store personal data only as long as necessary to fulfil the purpose of collection:

  • Inquiries: up to 12 months after last contact.
  • Contracts and financial data: up to 5 years (in line with Norwegian accounting law).
  • Cookies/analytics: according to cookie settings and consent.

7. Your Rights

Under GDPR and Norwegian law, you have the right to:

  • Access your personal data.
  • Correct or update inaccurate data.
  • Request deletion (“the right to be forgotten”).
  • Restrict or object to processing.
  • Data portability (receive a copy in machine-readable format).
  • Withdraw consent (e.g., cookies, newsletters).
  • File a complaint with the Norwegian Data Protection Authority (Datatilsynet).

Requests may be sent to our mailing address listed in this privacy policy.

8. Cookies

Our website uses cookies to improve functionality and analyze traffic.

  • Necessary cookies are essential for the website to function correctly.
  • Analytics cookies (if enabled) help us improve our services.

You can manage or disable cookies in your browser settings.

9. Data Security

We use appropriate technical and organizational measures to protect your data against loss, misuse, unauthorized access, disclosure, or alteration.

10. Changes to This Policy

We reserve the right to update this Privacy Policy from time to time. Updates will be posted on this page, accompanied by a revised “Last updated” date.

11. Contact Information

If you have questions about how we process your personal data, please contact:

Midnight Hill AS
Lyngneskroken 16
4018 Stavanger
Norway