Privacy Policy
Last updated: 9 July 2026
This Privacy Policy explains how Agentel collects, uses, stores, and protects personal data when you visit agentel.studio, contact us, or work with us as a client.
We process personal data in accordance with the EU General Data Protection Regulation (GDPR), applicable Norwegian privacy law, and good data protection practice.
1. Who we are
Agentel is a web design and development studio based in Oslo, Norway. For the purposes of data protection law, Agentel is the data controller responsible for personal data described in this policy.
Contact: hello@heptatech.io
Address: Oslo, Norway
2. What data we collect
We may collect and process the following categories of personal data:
Identity and contact data: name, email address, phone number, company name, job title, and postal address.
Communication data: messages you send through contact forms, email, or other channels, including project requirements and enquiries.
Technical data: IP address, browser type, device information, operating system, referral source, and general usage data related to our website.
Project and business data: billing details, contract information, feedback, approvals, and records needed to deliver services.
We do not intentionally collect special category data such as health information or government identity numbers unless you voluntarily provide it and we have a lawful basis to process it.
3. How we collect data
We collect data when you fill in forms on our website, email us, subscribe to updates, enter into a client agreement, communicate with us during a project, or interact with our site.
Some technical data is collected automatically through server logs and essential site infrastructure when you browse our website.
4. Why we use your data and our legal bases
We only process personal data where we have a lawful basis under GDPR:
Contract: to respond to enquiries, prepare proposals, deliver services, manage projects, issue invoices, and fulfil our agreements with you.
Legitimate interests: to operate and improve our website, protect our business and systems, prevent abuse, maintain records, and promote our services in a measured way, provided your rights do not override those interests.
Consent: where required, for example if you opt in to marketing communications or non-essential cookies in the future.
Legal obligation: to comply with tax, accounting, and other legal requirements.
5. How we use your data
We use personal data to communicate with you, provide quotations, deliver design and development services, manage client relationships, process payments, maintain internal records, improve our website and workflows, and comply with legal obligations.
We do not sell your personal data.
6. Cookies and similar technologies
Our website may use essential cookies and similar technologies required for basic functionality, security, and performance. These do not require consent under applicable law.
If we introduce analytics, marketing, or other non-essential cookies in the future, we will update this policy and, where required, request your consent before placing them.
You can control cookies through your browser settings. Blocking essential cookies may affect site functionality.
7. Sharing your data
We may share personal data with trusted service providers who help us operate our business, such as hosting providers, email services, invoicing tools, cloud storage, and development infrastructure. These providers process data only on our instructions and under appropriate safeguards.
We may also disclose data where required by law, court order, or regulatory authority, or where necessary to protect our rights, users, or the public.
If Agentel is involved in a merger, acquisition, or asset sale, personal data may transfer as part of that transaction with appropriate notice where required.
8. International transfers
Some of our service providers may process data outside Norway or the European Economic Area. Where this occurs, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions, in line with GDPR requirements.
9. Data retention
We retain personal data only for as long as necessary for the purposes described in this policy, including to deliver services, maintain business records, resolve disputes, and meet legal obligations.
Enquiry data is typically retained for up to 24 months unless a client relationship is established. Client and accounting records may be retained longer where required by Norwegian law, often up to five years or more for financial documentation.
When data is no longer needed, we delete or anonymise it where practicable.
10. Security
We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure. These measures include access controls, secure hosting practices, and careful handling of credentials and project assets.
No method of transmission or storage is completely secure. While we work to protect your data, we cannot guarantee absolute security.
11. Your rights
Under GDPR, you may have the right to:
request access to your personal data;
request correction of inaccurate data;
request erasure in certain circumstances;
request restriction of processing;
object to processing based on legitimate interests;
request data portability where processing is based on contract or consent and carried out by automated means;
withdraw consent at any time where processing is based on consent;
lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet) at datatilsynet.no.
To exercise your rights, contact hello@heptatech.io. We may need to verify your identity before responding.
12. Children's privacy
Our website and services are not directed at children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us and we will take appropriate steps to delete it.
13. Links to other websites
Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of those sites. We encourage you to read their privacy policies before providing personal data.
14. Changes to this policy
We may update this Privacy Policy from time to time. The latest version will always be available on this page with an updated date. If changes are material, we will take reasonable steps to inform you where appropriate.
15. Contact
For privacy questions or requests relating to your personal data, contact hello@heptatech.io or write to Agentel, Oslo, Norway.