Privacy Policy

Privacy Policy

Last Updated: April 2026


This Privacy Policy describes how Navamedic ASA (“we”, “us”, or “our”) collects, uses, and protects personal data obtained through our website navamedic.com and our business operations. We are committed to ensuring that your privacy is protected in accordance with the General Data Protection Regulation (GDPR) and the Norwegian Personal Data Act.

1. Data Controller

Navamedic ASA is the data controller responsible for the processing of personal data as described in this policy.

Navamedic ASA
Henrik Ibsens gate 100
0255 Oslo, Norway
Email: infono@navamedic.com
Phone: +47 67 11 25 40

2. Categories of Personal Data We Collect

We may collect and process the following types of data:

  • Contact Information: Name, email address, and phone number (e.g., when you use our contact forms or sign up for investor alerts).
  • Technical Data: IP address, browser type, and usage patterns collected through cookies and server logs.
  • Professional Information: For healthcare professionals (HCPs) or business partners, we may process job titles and institutional affiliations.
  • Pharmacovigilance Data: Information regarding adverse events reported to us (see Section 6).

3. Purpose and Legal Basis for Processing

Investor relations and regulatory filings

PurposeLegal Basis (GDPR)
Responding to inquiries via contact formsLegitimate Interest (Art. 6(1)(f))
Website optimization and securityLegitimate Interest (Art. 6(1)(f))
Legal Obligation (Art. 6(1)(c))
Pharmacovigilance (Safety reporting)Legal Obligation (Art. 6(1)(c) and Art. 9(2)(i))

4. Cookies and Web Analytics

Our website uses cookies to enhance user experience and analyze traffic. While some cookies are necessary for technical functionality, others require your consent.

Types of Cookies Used:
  • Necessary Cookies: Required for the website to function (provided by CoreTrek AS).
  • Analytical Cookies: Help us understand how visitors interact with the site (e.g., Google Analytics).

You can manage or disable cookies through your browser settings. For more information, visit nettvett.no.

5. Data Retention

We only store personal data for as long as necessary to fulfill the purpose for which it was collected, or to comply with legal requirements. Server logs are typically deleted after 4 weeks, while safety reports (pharmacovigilance) are stored for the duration of the product’s market life plus 10 years, as required by law.

6. Pharmacovigilance (Safety Reporting)

As a pharmaceutical company, Navamedic has a legal obligation to monitor the safety of its products. If you report a side effect, we will process your data to comply with international safety regulations. This data may be shared with national health authorities (e.g., NoMA/Direktoratet for medisinske produkter).

7. Your Rights

Under GDPR, you have the following rights regarding your personal data:

  • Access: The right to request a copy of the data we hold about you.
  • Rectification: The right to correct inaccurate information.
  • Erasure: The right to request deletion of your data (“Right to be forgotten”).
  • Portability: The right to receive your data in a machine-readable format.
  • Objection: The right to object to processing based on legitimate interests.

8. Third-Party Transfers

We do not sell your personal data. We may share data with trusted service providers (data processors) like CoreTrek AS for website operations. If data is transferred outside the EEA, we ensure adequate protection through Standard Contractual Clauses (SCCs).

9. Complaints

If you believe our processing of personal data violates data protection laws, you have the right to lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet): www.datatilsynet.no.