Privacy Policy

This privacy policy explains how fusionvexis AS ("we," "us," or "our") collects, uses, and protects your personal information when you visit our website or use our services.

Last updated: 15 January 2026

Data Controller Information

fusionvexis AS is the data controller responsible for your personal data. We are registered in Norway with registration number 462853917 and VAT number NO463928175MVA. Our registered address is Bogstadveien 147, 5047 Bergen, Vestland, Norway.

Data We Collect

We collect various types of personal data when you interact with our website and services. The data we collect includes:

• Contact Information: Your name, email address, phone number, and company details when you contact us or request our services.
• Website Usage Data: Information about how you use our website, including pages visited, time spent, and interactions with content.
• Technical Data: Your IP address, browser type, device information, and operating system for website functionality and security purposes.
• Communication Records: Records of our correspondence with you, including emails, phone calls, and meeting notes.
• Marketing Preferences: Your consent preferences for marketing communications and newsletter subscriptions.

How We Use Your Information

We use the personal data we collect for the following purposes, based on legitimate business interests and your consent where required:

• Service Delivery: To provide our beauty brand marketing analytics services and respond to your enquiries.
• Customer Support: To provide technical support, answer questions, and resolve issues with our services.
• Business Communication: To communicate with you about our services, updates, and important notices.
• Marketing: To send you relevant marketing communications about our services, with your consent.
• Website Improvement: To analyse website usage and improve our online presence and user experience.
• Legal Compliance: To comply with legal obligations and protect our legitimate business interests.

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about the cookies we use, please refer to our Cookie Policy.

Legal Basis for Processing

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

• Consent: For marketing communications and non-essential cookies.
• Legitimate Interests: For business operations, customer support, and website analytics.
• Contract Performance: To deliver our services and fulfil our contractual obligations.
• Legal Obligation: To comply with applicable laws and regulations.

Data Sharing and Disclosure

We do not sell your personal data to third parties. We may share your information in the following circumstances:

• Service Providers: With trusted third-party service providers who help us operate our business, such as email services, analytics platforms, and cloud hosting providers.
• Legal Requirements: When required by law, regulation, or legal process.
• Business Protection: To protect our rights, property, or safety, or that of our clients or the public.

International Data Transfers

As we operate across the European Union, your data may be transferred to and processed in different EU member states. All transfers are conducted in accordance with GDPR requirements and appropriate safeguards are in place to protect your data.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected and to comply with legal obligations. Generally, we retain:

• Contact and communication records for up to 7 years after our last interaction
• Website analytics data for up to 26 months
• Marketing consent records until you withdraw consent or for 3 years after last contact
• Technical logs and security data for up to 12 months

Your Rights

Under GDPR, you have the following rights regarding your personal data:

• Right of Access: Request a copy of the personal data we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data in certain circumstances
• Right to Restrict Processing: Request limitation of how we process your data
• Right to Data Portability: Request transfer of your data to another service provider
• Right to Object: Object to processing based on legitimate interests or for direct marketing
• Right to Withdraw Consent: Withdraw consent for processing where consent is the legal basis

Data Security

We implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, secure servers, access controls, and regular security assessments.

Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information.

Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "last updated" date.

Contact Information

If you have any questions about this privacy policy, wish to exercise your rights, or need to contact us about data protection matters, please reach out to us:

Supervisory Authority

You have the right to lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet) if you believe we have processed your personal data in violation of applicable data protection laws.