Skip to main content

Privacy Policy

PRIVACY POLICY FOR THE NORWEGIAN AFGHANISTAN COMMITTEE

Updated 31.01.2025

This privacy policy describes how the Norwegian Afghanistan Committee (“NAC”) uses and processes personal data and describes our obligations and your rights in this regard.

NAC is the data controller for the processing described here.

The term “personal data” refers to any information relating to a physical person. “Processing” of personal data refers to any use of personal data, whether by automated means or not, such as collection, structuring, storage and erasure.

 

  1. OUR PROCESSING

 Donors

If you support us with an amount between NOK 500 and NOK 25 000 in a year, you can provide us with your national identity number to receive a tax deduction based on the amount of your donation. NAC is required by law to collect national identity numbers for such tax deductions, and we only use national identity numbers to ensure that our donors receive tax deductions for their donations. We do not communicate national identity numbers to anyone other than the tax authorities.

This processing is necessary for compliance with a legal obligation.

Membership

If you are a member, we collect your name, address, telephone number, date of birth and e-mail address. This information makes the basis for reporting on the number of members in order to receive public grants for the operation of the organization. In addition, we need contact information from our members to be able to provide an adequate membership service and information related to the membership. When you join the organization, you give consent to each individual area you allow the organization to use personal data for, such as newsletters, invitations to events, etc.

We collect your e-mail address and/or your phone number so we can send you a confirmation that your donation has been received – and to inform you of the work we do for the money we collect.

Processing of personal data in order to administer our memberships is either necessary for compliance with a legal obligation, necessary for the performance of a contract with the member or necessary for the purposes of the legitimate interests pursued by us.

E-mail

You may e-mail us, but keep in mind that you shouldn’t e-mail sensitive content. We process your personal data in order to respond to your inquiry.

The legal basis for such processing is our legitimate interest in answering requests from members and others.

Newsletter

As a member with us, you can sign up as a recipient of our newsletter. In order for us to be able to send you newsletters, you must register your e-mail address with us. This is stored in a separate database, is not shared with others and the email address is deleted when it is no longer in use.

The legal basis for such processing is your consent, and you can withdraw your consent at any time by using a link in our news letters or through the contact information provided below.

 Registration for events, courses, etc.

When registering for events, we ask for your name, phone number and e-mail. This information is only used for planning the event. Such information will be deleted when the event is finished.

The legal basis for such processing is our legitimate interest in organizing and administering such events.

Use of Facebook, Instagram and LinkedIn

We have our own business pages on Facebook, Instagram and LinkedIn where we share news, articles and other content. We manage these pages, including the comment and chat features.

In order to visit our Facebook, Instagram or LinkedIn page you must create a user account for that specific service, subject to separate privacy terms and terms of use.

 

  1. DISCLOSURE OF PERSONAL DATA TO OTHERS

We do not disclose personal data to others unless there is a legal basis for such disclosure.

We use digital third-party solutions/data processors to collect, store or otherwise process personal data on our behalf. In such cases, we have entered into data processing agreements to safeguard privacy and information security in all stages of the processing.

NAC uses data processors such as:

  • ProFundo (customer relations management)
  • Google Analytics (website statistics)
  • Google Tag Manager (organisation and scripts on website)
  • Facebook Insights (advertising)
  • Mailchimp (newsletters)

Some of these data processors may process personal data outside of the EU/EEA. We also have collaboration partners (e.g. donors) who may process personal data outside of the EU/EEA. If processing of personal data takes place outside the EU/EEA area, we ensure that the transfers of personal data takes place in accordance with privacy regulations, for example by using the EU’s standard contractual clauses.

 

  1. ERASURE

NAC will process and store your personal data for as long as it is necessary to fulfil the purposes for which it was collected, as detailed in this privacy policy.

We may need to retain certain information for longer periods in order to comply with legal obligations, such as record-keeping or reporting, or for other legitimate reasons like enforcement of legal rights, fraud prevention, etc. If you would like more information, please contact us at organisasjon@nacaf.org.

  1. YOUR RIGHTS

Privacy regulations provide rights related to the processing of your personal data. You can request more information about how we process information about you, by contacting us using the contact information at the bottom of the page.

You have the right to request access to your personal data. You also have the right to request that we correct any information which is inaccurate and that we complete information which is incomplete. Under certain conditions, you have the right to request erasure of your personal data. Furthermore, you may have the right to restrict our processing and to object to our processing of personal data. You also have the right to receive your personal data in a structured, commonly used and machine-readable format.

You have the right to complain about our processing of personal data to the Norwegian Data Protection Authority (Datatilsynet), but we ask you to contact us first so that we can take your objections into consideration and/or possibly resolve misunderstandings.

There may be exceptions to the rights mentioned above. If you wish to invoke your rights, you can contact us by using the contact information below, and we will respond to your inquiry as soon as possible and normally within 30 days.

 

  1. DATA PROTECTION OFFICER AND CONTACT DETAILS

If you have any inquiries or concerns about our processing of your personal data, you may email our Data Protection Officer Silje Olssøn at silje.olsson@nacaf.org.

NAC has the discretion to update this privacy statement at any time. We encourage you to frequently check this page to stay informed about any changes to how we protect and process the personal information we collect. If necessary, we will inform you of major changes.