Omega Privacy Statement

Omega is committed to protecting your privacy and securing your data. We process your personal information with confidentiality, integrity, and compliance with applicable privacy laws and security standards.

Published: 10. April 2023 Updated: 25. September 2025

This privacy statement describes what personal information we collect, how we treat this information, who we might share it with, and what rights you have as an individual when it comes to how we use the information we have about you.

Identity and Contact Details

Omega AS, located at Kvassanesvegen 4, 5582 Ølensvåg, Norway, is responsible for processing your personal data. Our Data Protection Officer (DPO), Karina Hovden Stava, oversees our data protection strategy and compliance. You can contact her at karina@omega365.com.

Personal Data Types and Sources

We collect and process the following types of personal data depending on your relationship with us:

  • General Personal Identification Information: Name, surname, contact details (email address, telephone number)
  • Recruitment information: Information in CV: education, experience, ID, profile picture, courses/certificates, references, diplomas, address
  • Employment Information: Nationality, Social Security number, Marital Status, Bank Account Number, Next of kin's, Employment Contracts, Salary information, Sick leave notifications, follow-up plans, and correspondence related to social services, Number of children and their age (optional)
  • Other Relevant Information: User activity (activities performed in the solution), Employer

Personal data is collected directly from you or, in some cases, from third parties such as recruitment agencies or public records.

Purpose of Processing

We process personal data to:

  • Provide and improve our services.
  • Fulfill contractual obligations.
  • Support employment and payroll functions.
  • Facilitate job applications and candidate assessments.
  • Comply with legal and regulatory requirements.

Lawful Basis for Processing

The lawful bases for processing your personal data include:

  • Contractual Necessity: To fulfill our obligations under contracts, in accordance with GDPR art 6 letter b, for employment contracts, payroll functions, job applications and candidate assessments. 
  • Legal Obligation: To comply with applicable laws and regulations, GPDR art. 6 e.
  • Legitimate Interests: To improve our services and ensure efficient operations, GDPR art. 6 b.
  • Consent: For specific purposes, such as sharing CV details with clients or partners, GDPR art. 6 a.

Data Sharing

We may share your personal data with:

  • Clients or partners, with your consent, for project or employment purposes.
  • Regulatory authorities, to comply with legal obligations.
  • Service providers, who process data on our behalf under strict confidentiality agreements.

Who Can Access Your Personal Data

Access to your personal data is restricted to authorized personnel who require it to perform their duties. This includes:

  • Employees of Omega companies who are responsible for providing services or fulfilling contractual obligations.
  • Service providers and partners who process data on our behalf under strict confidentiality agreements.
  • Regulatory authorities where required by law.

In Omega.omega365.com we have a contact register of all employees. Here, as an employee, you can search for your colleagues in Omega and find their phone number. We have an option to exclude your phone number from this list in your "My profile".

Data Retention

We retain your personal data only as long as necessary to fulfill legal, contractual, or operational requirements. Once no longer needed, data is securely deleted.

Your Rights

You have the following rights regarding your personal data:

  • Right to Be Informed: Receive clear information about how your data is used.
  • Right of Access: Request access to your personal data.
  • Right to Rectification: Correct inaccurate or incomplete data.
  • Right to Erasure: Request deletion of your data, subject to legal obligations.
  • Right to Restriction of Processing: Limit how your data is processed.
  • Right to Data Portability: Obtain and reuse your data for other services.
  • Right to Object: Object to data processing based on legitimate interests.
  • Rights Related to Automated Decision-Making: Challenge decisions made solely by automated means, including profiling.

To exercise your rights regarding your personal data, you can submit a request using [this form].

Data Transfers to Third Countries

If personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards, such as standard contractual clauses, are in place to protect your data.

Use of Cookies

Omega uses cookies to personalize web content, analyze site traffic, and improve user experience. You can manage your cookie preferences through your browser settings.

Complaints and Supervisory Authority

If you have concerns about our data processing practices, you can contact our DPO at karina@omega365.com. You also have the right to lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet). Contact details:

Updates to This Policy

This Privacy Statement is reviewed periodically. Any significant changes will be communicated, and further consent may be requested if necessary.