EAT
EAT-LANCET
 

Privacy Policy

Last updated: 25.09.2025

EAT Foundation (“EAT”, “we”, “our”, or “us”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard personal information when you visit our website or engage with our activities.

1. Data Controller

EAT Foundation (Org. no. 916 737 122), Oslo, Norway, is the Data Controller responsible for the processing of your personal data.
Contact: CFO Bjørn Terje Bjerkan, [email protected]

2. What data we collect

We may collect the following categories of personal data:

    • Contact details (name, email address, organisation, position)
    • Food allergies and preferences for events/meetings
    • Information provided through event registrations
    • Communication preferences (e.g. newsletter opt-in)
    • Technical data (cookies, IP addresses, usage statistics)

3. How we use your data

We process your data for the following purposes:

  • To manage event participation and communication
  • To provide newsletters and updates (with consent)
  • To improve our website and services through analytics
  • To comply with legal obligations

4. Legal basis for processing

We process your personal data based on:

  • Consent (e.g. newsletter signup, event registration)
  • Legitimate interest (e.g. analytics, website security)
  • Legal obligation (where applicable)

5. Third-party processors

We work with trusted service providers who act as Data Processors on our behalf, including but not limited to:

  • Google Analytics 4 – for website usage statistics
  • CookieYes – for managing cookie consent
  • Campaign Monitor – for newsletters (name and email)
  • Oiiku – for event registrations (various attendee data; see Oiiku’s Privacy Policy for details)

These providers process data in accordance with GDPR and their own privacy policies.

6. Data retention

We only retain personal data for as long as necessary for the purposes described above, and in line with legal requirements. For event registrations via Oiiku, data is deleted from Oiiku’s servers after the event has been completed and handed over securely to EAT.

7. Your rights

Under GDPR, you have the right to:

  • Request access to your data
  • Request correction or deletion
  • Withdraw consent at any time
  • Object to or restrict processing
  • Request data portability

Requests can be sent to [email protected].

8. Security

We implement appropriate technical and organisational measures to protect your data, including encryption and access restrictions.