PRIVACY POLICY FOR NFH (Norwegian Fashion Hub)

This privacy policy explains how NFH and NF&TA collect, use, and process personal data. We are committed to protecting your privacy in accordance with applicable regulations.

NF&TA processes personal data on behalf of NFH, as the organizations share administrative functions, and data processing is therefore handled by NF&TA.

Data Controller
NF&TA – Norwegian Fashion & Textile Agenda
Website: www.nfta.no
Contact: via contact form or direct email to our employees

When do we collect personal data?
We collect and process personal data when you:

  • Register for events

  • Subscribe to our newsletter

  • Fill out the contact form on our website

  • Participate in projects managed by us

  • Send emails directly to NFTA employees

What personal data do we process?
We process the following types of personal data:

  • First and last name

  • Email address

  • Phone number

  • Job title

  • Company

  • Project-related data such as timesheets (hours worked on a project)

Purpose of processing
Personal data is used for the following purposes:

  • Sending newsletters and relevant information

  • Planning and executing events and projects

  • Membership and partnership administration

  • Accounting reporting and project documentation

  • Responding to inquiries and follow-up communication

Legal basis for processing
The processing of personal data is based on:

  • GDPR Article 6(1)(a) (consent), for newsletters and certain events

  • GDPR Article 6(1)(b) (contract), for membership or project agreements

  • GDPR Article 6(1)(f) (legitimate interest), for communication and coordination

Who do we share data with?
We do not share personal data with third parties unless necessary for our services. We use the following providers:

  • Salesforce (CRM and contact management)

  • Dropbox (storage and archiving)

  • Scrive (document management and electronic signing)

All data processors are bound by data processing agreements and store data within the EU/EEA or in accordance with approved transfer mechanisms.

Storage and security
Personal data is stored in Salesforce. Access is limited to NFTA employees with a service-related need. We use secure systems and have procedures in place to protect data from unauthorized access.

How long do we retain your data?
NFTA currently does not have established deletion routines. Data is stored as long as necessary for the purposes for which it was collected. Upon request, we can delete your data unless we are legally required to retain it (e.g., for accounting purposes).

Your rights
You have the right to:

  • Request access to the data we hold about you

  • Request correction or deletion

  • Object to the processing

  • Request restriction of the processing

  • Withdraw your consent when consent is the basis for processing

To exercise your rights, please contact us via the contact form at www.nfta.no or directly through one of our employees.

Changes to this policy
This privacy policy may be updated. In the event of significant changes, we will provide clear notification on our website.

Last updated: May 14, 2025