Flyt's privacy declaration
The EU General Data Protection Regulation which came into force in the summer of 2018. The GDPR is designed to be a common framework for data protection laws in the EU, as well as clarifying the rules on transparency around companies' processing of personal data. The new Norwegian privacy law will incorporate the new requirements.
The purpose of the Personal Data Act is to protect against the violation of privacy.
This declaration applies to Flyt AS.
The purpose of the declaration is to provide information about why and how we process your personal data, what information we process, who is responsible for the processing of your data, how we protect your privacy.
The declaration uses the term "contract customers" for customers with AutoPASS agreements.
The declaration applies to use of our products and services, and visits to our website from 01.05.2021 and forward.
Flyt AS processes personal data on the legal basis of Article 6 (1) c of the GDPR to collect payments from passages by vehicles with an AutoPASS contract. The basis for the processing of personal data is in Article 6 (1) c described as the processing is necessary to fulfil a legal obligation that is required by the controller, included in section 20 of the Issuer Regulations. The legal basis applies to all processing activities related to toll collection and will also apply to all our suppliers.
In addition, we also process personal data in order to meet the terms and conditions in our contract with our customers. We also process personal data collected through our website. This is to provide better service online.
The CEO of Flyt AS is responsible for ensuring that the company's processing of personal data takes place in accordance with applicable laws and regulations.
As a registered customer, you have the right to knowledge about what personal information we store and handle in our systems and you have the right to claim incorrect information corrected or supplemented. You also have the right to request to have your personal data disclosed or deleted. Deleting information assumes that it does not conflict with other laws, such as retention of accounting information.
To collect payments, we process information about the vehicle owner. As a AutoPASS contract customer, we use the information you have given us. We handle information as your name, address, e-mail address, telephone number, contract number, tag number, date of birth and information about time and date for passing through the toll station.
In order to make collection and handling efficient, we record payments, payment history, invoice history, agreement form and information related to customers support chat, phone and email inquiries.
Examples of what we collect are:
Should any other information be collected, we will inform you of what information we collect and what the information may be used for followed by your consent.
Information creations and scripts are used through the following third parties
In the work of collecting payments, meeting contractual conditions, and providing websites and self-service solutions, Flyt AS employs subcontractors and partners. These may process your personal data on behalf of Flyt AS. To ensure that your personal data is not used for purposes other than those described above, Flyt AS enters into data processing agreements with all its subcontractors and partners.
In some cases, we are required by law to disclose your personal data, for example to law enforcement or tax authorities.
Access to personal data is granted only to persons with tasks that require this. All systems have access control with personal ID and password. All changes and actions are traceable. Flyt AS has data processing agreements with anyone who processes personal information on behalf of Flyt AS.
Passing information is deleted according to fixed criteria depending on whether the pass has been paid or not. The passing information are transferred to the AutoPASS Central System and deleted according to the current rules established by the Norwegian Public Roads Administration. The data is stored as long as the controllers need them to collect tolls and process complaints, manage the ICT system and prepare aggregated statistics for tolls (anonymized statistics). Personal data that is subject to bookkeeping is stored in accordance with Section 13 of the Norwegian Bookkeeping Act.
Personal data collected through cookies and scripts on our website:
With your consent, cookies will be stored on your device to enable the collection of anonymized statistics and history. This data will be stored in our or third-party systems for the lifetime of the Service. This means that generic information about the use of websites and newsletters is stored until the website or newsletter is discontinued. This is information that cannot be associated with you as an individual. Cookies are stored for as long as you wish. This is controlled through your browser. You can remove cookies in your browser at any time.
If you have previously given your consent and wish to withdraw it, you can do so by clicking on the following link:
Please note that you must delete existing cookies in your browser if you wish. Below you will find links to instructions for the most frequently used browsers.
If you wish to access the personal data Ferde AS holds about you, or would like to have information about you corrected, disclosed or deleted, please log in to “My page”: https://minside.autopass.no/, or contact us via the contact form on our website.
We may need to update the Privacy Declaration over time. We do this if our operations and services develop, while also having to follow the data protection authority's rules. We encourage you to check regularly if there have been any updates on this page.