Privacy Policy

1. Who We Are

This website and webshop are operated by:

Mörkekraft DA
Organisation number: 983612962

For the purposes of applicable data protection law, we are the data controller for the personal data collected through this website and webshop.

2. What This Policy Covers

This Privacy Policy explains how we collect, use, store, and protect personal data when you:

  • visit our website,
  • place an order,
  • contact us,
  • sign up for newsletters or updates,
  • interact with our webshop or related services.

3. What Personal Data We Collect

Depending on how you use the site, we may collect the following types of personal data:

a. Order Information

When you place an order, we may collect:

  • name
  • billing address
  • shipping address
  • email address
  • phone number
  • order details
  • payment status and transaction reference

We do not store full payment card details ourselves. Payments are processed by third-party payment providers.

b. Account and Customer Service Information

If you contact us, we may collect:

  • your name
  • email address
  • phone number
  • the contents of your message
  • any order-related information needed to help you

c. Newsletter and Marketing Information

If you subscribe to our newsletter or updates, we may collect:

  • your name
  • email address
  • your subscription preferences

d. Technical and Usage Information

When you visit the website, we may collect technical information such as:

  • IP address
  • browser type
  • device type
  • referring website
  • pages visited
  • date and time of visit

This may be collected through cookies or similar technologies, depending on the tools used on the site.

4. Why We Process Your Personal Data

We process personal data for the following purposes:

  • to process and deliver orders,
  • to communicate with you about your order,
  • to provide customer service,
  • to manage returns, complaints, and refunds,
  • to send newsletters or promotional emails where you have signed up or where permitted by law,
  • to improve the website, webshop, and user experience,
  • to prevent fraud, misuse, and technical abuse,
  • to comply with legal and accounting obligations.

5. Legal Bases for Processing

Under the GDPR, we must have a lawful basis for processing personal data. Depending on the situation, we rely on one or more of the following:

  • Performance of a contract – when we need your information to process and deliver your order.
  • Legal obligation – when we must keep records for accounting, tax, or consumer law purposes.
  • Consent – where you have actively signed up for newsletters or accepted optional cookies.
  • Legitimate interests – where necessary to operate and improve the website, prevent misuse, or handle customer service in a reasonable and proportionate way.

Privacy notices should explain the lawful bases used and the rights people have, including where consent can be withdrawn.

6. Cookies and Similar Technologies

We may use cookies and similar technologies to make the website function properly, remember preferences, analyze traffic, and improve performance.

Some cookies may be strictly necessary for the website and webshop to function. Other cookies, such as analytics or marketing cookies, should only be used where permitted and, where required, based on your consent.

You can manage cookie preferences through our cookie banner or your browser settings.

7. Who We Share Personal Data With

We only share personal data where necessary to operate the webshop and website, including with:

  • payment providers
  • shipping and postal providers
  • website hosting providers
  • webshop and technical service providers
  • email marketing providers
  • analytics or cookie tools used on the website
  • accountants, auditors, or public authorities where required by law

These service providers may act as data processors on our behalf, meaning they process personal data according to our instructions and for defined purposes.

We do not sell your personal data to third parties.

8. International Transfers

Some of our service providers may process personal data outside Norway or the EEA.

Where personal data is transferred outside the EEA, we will take appropriate steps to ensure that the data is protected in accordance with applicable data protection law, for example through legally recognised transfer mechanisms where required.

9. How Long We Keep Personal Data

We keep personal data only for as long as necessary for the purpose for which it was collected, unless a longer retention period is required by law.

Examples:

  • order and transaction records may be kept for as long as required by accounting and bookkeeping laws,
  • customer service correspondence may be kept for as long as relevant to the issue,
  • newsletter data is kept until you unsubscribe or ask us to delete it,
  • technical logs and analytics data are kept for a limited period depending on the tools used.

10. Your Rights

Under data protection law, you may have the right to:

  • request access to your personal data,
  • request correction of inaccurate data,
  • request deletion of your data,
  • request restriction of processing,
  • object to certain processing,
  • request data portability where applicable,
  • withdraw consent at any time where consent is the basis for processing,
  • lodge a complaint with a supervisory authority.

These rights are part of the GDPR framework for individuals.

To exercise any of your rights, contact us at email below.

11. Complaints

If you have concerns about how we process personal data, we encourage you to contact us first so we can try to resolve the matter.

You also have the right to lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet). GDPR-based privacy information should tell people how they can complain if they have concerns.

12. Data Security

We take reasonable technical and organisational measures to protect personal data against unauthorised access, loss, alteration, misuse, or disclosure.

However, no internet transmission or storage system can be guaranteed to be completely secure.

13. Third-Party Services and Links

This website may contain links to third-party websites, platforms, or services such as payment services, social media platforms, streaming platforms, or external stores.

We are not responsible for the privacy practices of third-party websites or services. We encourage you to read their privacy policies separately.

14. Children

Our webshop and website are not specifically directed to children, and we do not knowingly collect personal data from children without an appropriate legal basis.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect legal, technical, or operational changes.

The latest version will always be published on this page with the updated effective date.

Effective date: March 28, 2026

16. Contact

If you have any questions about this Privacy Policy or how we process personal data, please contact:

Mörkekraft DA
Email: order@morkekraft.com
Phone: +47 905 04 738
Address: Vestheiveien 28, 4550 Farsund Norway