IMPORTANT: This Privacy Policy is a draft provided for discussion and legal review only. It does not constitute legal advice and must be reviewed and approved by qualified legal counsel before publication.
1. Introduction
This Privacy Policy describes how OneTrip Technologies AS (“OneTrip”, “we”, “us”, or “our”) collects, uses, and protects personal data when you visit our website or use the Adventure Hub platform.
OneTrip is committed to protecting personal data in accordance with applicable data protection laws, including the EU General Data Protection Regulation (GDPR).
2. Data Controller
OneTrip Technologies AS is the data controller for personal data collected through the OneTrip website and related marketing activities.
For personal data processed through the Adventure Hub platform on behalf of customers, OneTrip acts as a data processor, and the customer is the data controller.
3. Personal Data We Collect
We may collect the following categories of personal data:
– Contact information (name, email address, company, phone number)
– Information submitted through contact forms or inquiries
– Technical data such as IP address, browser type, device information, and usage data
– Cookies and similar tracking technologies
We do not intentionally collect sensitive personal data through our website.
4. How We Use Personal Data
Personal data is used for the following purposes:
– Responding to inquiries and requests
– Providing and improving our website and services
– Communicating about our products and services
– Ensuring security and preventing misuse
– Complying with legal obligations
5. Legal Basis for Processing
We process personal data based on one or more of the following legal grounds under GDPR:
– Consent
– Performance of a contract or steps taken prior to entering into a contract
– Compliance with legal obligations
– Legitimate interests, such as improving our services and ensuring security
6. Data Sharing and Processors
We may share personal data with trusted third-party service providers acting as data processors, including hosting providers, analytics services, and customer communication tools.
Personal data is not sold or shared for commercial purposes unrelated to the provision of our services.
7. International Data Transfers
Where personal data is transferred outside the European Economic Area (EEA), appropriate safeguards are implemented in accordance with GDPR requirements.
8. Data Retention
Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected, unless a longer retention period is required or permitted by law.
9. Data Security
We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, or misuse.
However, no system can be guaranteed to be completely secure.
10. Cookies
Our website uses cookies and similar technologies to improve functionality and user experience.
You can control or disable cookies through your browser settings. Further details may be provided in a separate Cookie Policy if required.
11. Your Rights
Under GDPR, you have the right to:
– Access your personal data
– Rectify inaccurate data
– Request deletion of personal data
– Restrict or object to processing
– Request data portability
– Withdraw consent at any time
– Lodge a complaint with a supervisory authority
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. The latest version will always be available on our website.
13. Contact Information
OneTrip Technologies AS
Oslo, Norway
Email: contact@onetrip.tech