Privacy policy

Vi i Big Enough Global tar personvern på alvor. Personvernerklæringen viser hvordan vi behandler personopplysninger.  Vi oppdaterer erklæringen vår når det kommer ny informasjon vi må legge til. Sist oppdatert: 30.06.2022

The responsible person in our company is Kimiya Sajjadi. If you have any requests regarding our privacy policy you can send an e-mail to Kimiya@bigenoughglobal.com.

Juridicial name: Big Enough Global

Organization number: 925 361 356

The purpose behind restoring personal data, the legal basis, and deleting of personal data 

We are obligated to inform about how we process personal data, on which legal basis and when these are deleted.

Signing up for events 

When you sign up for our events we ask for your e-mail, adress, name, telephone, and if you have any special needs. The purpose is to inform you before and after the event. The purpose of asking about special needs, is to make sure our event is suitable for special needs. This can be sensitive information. To take care of your privacy in these cases, we ask you to provide this information through e-mail so we can delete it right away.

The legal basis here is consent cf. GDPR article 6 nr 1(a), because we ask for your consent when you sign up for the news letter. We dele the participation list for the events within one month after the event. If you are a part of the network, you can ask to be removed by sending an e-mail to our contact person

We delete your information within one month after the event. 

Signing up for Big Enough Global´s newsletter

When you sign up for our news letter through the home page, we ask about your e-mail. The purpose is to do marketing of our services, and to share knowledge around diversity & inclusion. We need your e-mail do send this information to you. Det legal basis here is consent fr. GDPR article 6 nr. 1 (a), because we ask for your consent when you sign up. consent cf. GDPR article 6 nr 1(a), because we ask for your consent when you sign up.

We use mailchimp to send out our new letter, and we can use mailchimp to see how many people have seen the news letter, and clicked on the links. We cannot see your IP-adress, and just look at the information in a way that is not identifiable with you. 

We dele data after 6 months, this is to use the information to improve our news letters. The deleting of the data does not removes you from our subscription base. You can remove yourself whenever you would like to, by clicking the "unsubscribe" button at the end of our e-mails. 

Signing up for Kimiya Sajjadi´s news letter on Linkedin

When you sign up for Kimiya Sajjadi´s news letter on Linkedin, you name gets automatically saved in a list created by Linkedin. This makes it possible for us to see your name, profile picture, job description etc. based on what you have allowed Linkedin to show. When we send a news letter, you will get a notification on Linkedin and on E-mail. This happens automatically. If you do not want the notifications you must turn it off in your settings.

The purpose of the news letter is to do marketing of our products, and spread knowledge around diversity and inclusion. The legal basis here is consent cf. GDPR article 6 nr 1(a), because we ask for your consent when you sign up. You can unsubscribe whenever you like to, by going to the page and clicking the button.

Signing up for out career network for multicultural people 

Når du melder deg på karrierenettverket for flerkulturelle ber vi om din e-post adresse, navn, telefonnummer, hvor du er i yrkesreisen, og om du er på utkikk etter jobb. Formålet er at vi skal kunne lage nettverkstreff som er relevante for medlemmene, samt at vi skal kunne kontakt deg i forbindelse med arrangementer. Vi deler ditt navn og etternavn med Thommessen, ettersom de trenger dette for å føre regnskap over utgifter til arrangementet.

The legal basis here is consent cf. GDPR article 6 nr 1(a), because we ask for your consent when you sign up for the news letter. We dele the participation list for the events within one month after the event. If you are a part of the network, you can ask to be removed by sending an e-mail to our contact person

Job applicants 

When you apply for a job at Big Enough Global, we ask for your CV and an application. This can contain your name, age, e-mail and other personal data you share with us. The purpose of this is for us to see if you are the right candidate. If you want us to save your information to contact you for further opportunities, we will keep your data. If not, we will delete it right after the process. 

If you communicate with us through phone, e-mail, or our contact forms, we can restore information like you name, e-mail, Ip-adress, and other information you choose sending to us. The purpose of having this information is for us to reply to you, and have history of our conversations.

Communication with us 

If you communicate with us through phone, e-mail, og contact form we can restore personal information like your name, e-mail, phone number and IP-adress (depends on what you have sent us). The purpose to have this information is for us to reply you, and have data for future contact. 

The legal basis here is legitimate interest cf. gdpr article 6 nr. 1(f) as we need this information to reply you, and have history for future inquries. 

We delete this information every third year. 

Homepage 

Today our home page is using plug-ins, that are not GDPR consent. This has been those delivering our home page installing, without us knowing it was not GDPR consent. Now we are working hard to replace our plug-ins with legal ones. We also work to get a verified cookie system.

Customers and collaboration partners 

When you collaborate with us we can get personal data like name, signature, IP-adress, and account number. The purpose of having this data is for us to fulfill the legal obligations of our agreement. The legal base here is necessary to fulfill an obligation cf. gdpr article 6 nr. 1 (f).

We delete this data 3 years after the agreement is over. This is to ensure that we have necessary information if occurs any problems. 

Potential customers

When we have a sales meeting with you, or contact you in relation to a sale we put your name and the company you are in, into a register. The purpose is for us to know who we have contacted, and what the result was. In this way we can know when to contact you again, or if to not contact you again. The legal base here is legitimate interest jfr. personvernforordningen artikkel 6 nr. 1 (f), ettersom vi trenger informasjonen for å kunne holde orden på salgsarbeidet vårt.  Vi sletter alle disse opplysningene senest hvert 3. år.

Google analytics

Informasjon kommer snart.

Who do we share your personal data with?

  1. Our accountant 
  2. Public authorities 
  3. Data processors 
  4. Samarbeidspartnere i det aktuelle prosjektet, disse er enten nevnt over eller så blir du opplyst i forkant av arrangementet

Fremover skal vi inngå databehandleravtaler med de som vi deler dine opplysninger med. Gjennom behandlingsprotokollen forsøker vi også å forsikre oss at databehandlerne overholder GDPR lovgivning. Dersom du ønsker innsikt i de ulike databehandlerne vi bruker, og databehandleravtalene kan du ta kontakt på e-post adressen skrevet over. 

Here is a list of when we use data processors: 

  1. Home page and plug-ins 
  2. Sign up form 
  3. E-mail 
  4. Calendar 
  5. Make documents 
  6. Online meetings 
  7. News letter 
  8. Create payment 
  9. Bank 
  10. Analyse the use on our home page 
  11. Når vi har arrangementer, og samarbeider med andre

What are your rights?

You have several protected by law. Here you can see your rights. 

  • You can ask for a copy of all the information we restore of you. Contact our main person to make use of this right.

  • *Right to correct/change data we have on you.You have the right to ask us to correct or change information that are wrong about you.

  • Right to dele personal data You have the right to get your personal data deleted. You can ask us whenever to delete your information, and we will have to reply shortly after.

  • Limit the personal data we restore In some cases you are allowed to ask us to limit the data we restore about you. You can do this by administrating approvals or reservations where it is possible.

  • Protest on our restore of your personal data If we restore personal data about you, based on our interest or our tasks, you have the right to protest.

  • Dataportability. You have the right to get your personal data in a structured, and understandable format. Contact our contact person to get this information.

  • Right to complain of the way we have restored your personal data. We hope that you let us know, if you think that we do not respect GDPR. Let us know through our contact person. We will reply within 30 days. You can also complain about the way we have restored your personal data. You can do this to Datatilsynet.

The information above, under "your rights" are translated from the article “Gdpr control”.

Transferring data to a party in a country outside of EU 

Some of our data processors transfers data to countries outside of EU. GDPR demands that these have qualified guarantees for restoring data outside of EU. 

  • Mailchimp:  https://mailchimp.com/help/mailchimp-european-data-transfers/ ​​
  • As we understand it Wordpress.org do not collect any personal data about our users, therefor we have understood it that way, that they do not need a guarantee. 


We have also understood that microsoft restores data for EU users, in EU. We have also started using a google version which says that it restores data within EU. We therefor understand that we do not need a guarantee in this cases either.