AtB AS (henceforth «AtB») is a mobility company for the public transport in Trøndelag County. AtB is responsible for planning, organizing, purchase and marketing of public transport services. AtB is registered as a limited company and is fully owned by Trøndelag County Authority.
2. About the Agreement
The agreement satisfies the requirements in Norway as of 2018 in accordance to the data protection regulation (GDPR) and industry norm for the processing of personal data in regard to electronic ticketing (henceforth referred to as the “industry norm”).
The agreement contains information the customer has a right to review according to articles 12-14 of the data protection regulation, and general information about AtB treats your personal data.
In addition you will find information about how you can access personal data AtB has collected about you and how you can proceed if you want us to correct or delete your information.
3. General Information About Processing of Personal Data by AtB
3.1. Data Controller
AtB's CEO has the overall responsibility for the processing of the customers personal data according to the Personal Data Act and is thereby defined as the data controller. AtB will ensure that the customers personal data will be treated following the personal data act and other regulations at any time.
3.2. Mobillett processes the following information about you
Phone number and password: This information is required in your user profile to provide a service with a secure and verified log in. The phone number is also necessary to ensure that you can access your active period tickets or receipts for your purchases in case you lose your phone. The phone number is your unique user identification in the app and is the only personal data that is required in your user profile.
Name and associated users: It is optional to register your name in the app. This is an offer for those who wish to create associated users for their Mobillett account. Associated users can choose to pay their ticket with the money that is charged on your Mobile account. The only thing required to connect an associated user to your Mobile account, is the phone number. If you wish to do so, you can add a name or a nickname to the associated user(s) to make it easier to keep track of the different associated users. The names of the associated users will also be visible in Mobillett Web where you can log in and get a complete overview for all purchases that are paid with your Mobillett account in the last 20 months.
Email address: It is optional to register your email address in your profile. Your email address is only necessary if you wish to get your receipts for your purchases sent to you by email.
Sales documents: All sales documents are saved in accordance to the Norwegian Bookkeeping Act. Information about your trips that can be extracted from your purchases will only be accessed as personal data when it is initiated by the person registered, e.g. in case of a complaint or other inquiries that require to take a closer look at all details connected to a specified purchase.Information about method of payment:
Credit card – To be able to pay by credit card there is an interface towards the payment service that enables the registration of a credit card via the Mobillett app without saving all card details in Mobillett. Even if you choose to save one or more credit cards in your profile, your full card details will only be accessible by the payment service. Only the six first and the last four digits of your card number and the expiration date will be saved in connection to the app. This is required to enable the customer to recognize his or her registered card, to generate necessary details that are required for a receipt, and to ensure a customer’s possible claim of reimbursement.
Phone number – Your phone number will be transmitted to the payment service of your mobile provider, Strex, if you wish to pay with your phone bill.
Details for Mobillett account – With a Mobillett account you can charge a chosen amount of money which you or an associated user can use to pay tickets with. The system processes information about balance and transactions on your Mobillett account, including recharging history, purchases, reimbursements and credits.
Technical information: When you use the Mobillett app or Mobillett Web, your IP-address, time of request, information about browser or mobile phone, and version number and mobile platform for the app, including the chosen language, will be logged in an application log. This information is required to enable the function of the service on the given platform/mobile phone and will be logged for the service to function as intentioned. This also gives us necessary information to solve a problem that may occur in case of a malfunctioning of the system. We do not use any form of analytics (e.g. Google Analytics) that collects data about or logs patterns of identifiable users. The only related functions are crash reports via HockeyApp that provide fully anonymized crash reports and are considered as an aid to secure fast correction of errors in case the app should crash.
Journey data: By accepting that the app can access to the phones GPS, position data will only be used locally on the phone. No position data will be logged in the app and transmitted to backend. The only journey data that will be processed is the information about the chosen departure location/-zone and destination/-zone that is necessary to document purchases and calculate the correct prize. The journey data that is connected to your purchase will be saved and anonymized together with other data in the sales documentation.
3.3. Sources of personal data
All the personal data that are processed in connection to Mobillett are created or registered by yourself. We do not collect information from external sources or services:
- Please note that your phone number is connected to your user. To change your phone number, you can reset the app and create a new user.
- You can always access the app settings to correct or change other personal data entered by yourself.
3.4. Access to personal data
Personal data will only be accessible to authorized personnel with a professional interest through the public transport provider and their subcontractors, including ticket inspection companies, payment service providers, WTW AS and operators.
In some cases, AtB can provide personal data to the police or other public authorities. This requires a legal basis or a court order. In addition to this, AtB will provide the Travel Complaint Handling Body (Transportklagenemnda) with personal data if an inquiry for our travel guarantee or a fine is appealed by the customer after AtB has rejected the inquiry or the complaint.
3.5. Purpose of processing personal data
AtB's overall purpose with the processing of different personal data connected to the use of Mobillett, is to be able to provide good and effective products to our customers when providing public transport services. In addition, AtB wants to create the prerequisites to effectively serve the customers, as well as enable the ticket inspectors to verify valid tickets.
It is optional to use Mobillett. If you choose not to use the service, you can choose to buy tickets in alternative ways, such as AtB's homepage, in the service center, aboard the vehicle or means of transport, by SMS, from retailers or ticket and parking machines in Trondheim city center.
Information used in statistics is anonymized and can therefore not be traced to you as a person. Furthermore, statistics are used to improve and develop our services towards our customers. Examples for when statistics come to good use is when we need to know the number of passengers travelling between specific zones, the number of tickets sold in each category and the number of tickets bought on each mobile platform (Android or iOS). AtB collects information from the tickets purchased in the Mobillett app.
3.6. Treatment basis
AtB's treatment of personal data is based upon the customers registration of a user that enters an agreement with AtB when buying a product. AtB will save these data for as long as the customer maintains a customer profile with a registered user in Mobillett. The customer can then buy a new product at any time. The basis of agreement is pursuant point (b) of Article 6 (1) of the personal data regulation, providing treatment when treatment is necessary to fulfill an agreement the registered person is a part of, or to implement actions on behalf of the registered person prior to entering an agreement.
Treatment for statistical purposes is pursuant point (e) of Article 6 (1) of the personal data regulation and § 8 of the Norwegian Personal Data Act, since it is necessary for statistical purposes in the interest of the public.
3.7. Information security and secure saving of personal data
AtB follows the requirements for information security in chapter 2 of the personal data regulation and the regulations of the industry norm.
AtB can use travel data together with customer data when it is initiated by yourself. This can occur in case of a complaint on the travel guarantee, complaints on fines or other inquiries on your behalf.
AtB will not use travel data together with customer data to create statistics, when charging business partners and usually not when troubleshooting.
3.8. Approach to access requests, correction or deletion
You have the right to access personal data about yourself and you can demand correction of wrong or incomplete information about yourself. Furthermore you can demand deletion of unnecessary information about yourself.
If you wish to access or correct/delete your personal data saved by AtB, you will have to request this in written form – either to: firstname.lastname@example.org, by mail or in person at our service center in Prinsens gate 41.
When contacting us by mail, please use the following address:
AtB AS v/ Kundesenteret
Prinsens gate 39
Errors in your personal data treated by AtB can easily be corrected if you contact the service center.
If you wish to delete your customer relationship together with your personal data, you can do this too by contacting the service center.
The phone number to the AtB service center is: +47 478 02 820
AtB will answer your request as soon as possible and within 30 days. We will ask you to confirm your identity or to provide further information before you can claim your rights towards us. We do this to make sure that we only grant access to your personal data to yourself and not to someone claiming to be you.
3.9. Other rights
You have the right to object against the treatment of personal data. At any given time, due to reasons of your specific situation, you can object against treatment of personal data about yourself. The treatment must be pursuant point (e) or (f) of Article 6 (1), including profiling according to the mentioned regulations. AtB can no longer treat your personal data unless the company can prove important and rightful reasons to treat your data that overgo your interests, rights or freedom, or to define, claim or defend legal claims.
You have the right to data portability, the right have the personal data transmitted from one company to another as stated in article 20 of the personal data regulation. The registered person shall have the right to receive personal data about him or her that AtB has received in a structured, commonly used and machine-readable format and has the right to transmit those data to another data controller without hindrance from the data controller to which the personal data have been provided. This requires that the processing is based on consent pursuant point (a) of Article 6 (1), point (a) of Article 9 (2) or an agreement pursuant point (b) of Article 6 (1) in the personal data regulation. The processing is to be carried out by automated means.
To exercise your rights, the approach will be as described above in point 3.7.
If you experience that our processing of personal data does not adhere to our description here or that we do not adhere to the Data Protection Act in other ways, we ask you to contact us. If needed, you can file a complaint to the Norwegian Data Protection Authority (DPA). You can find information about how to contact the DPA on their website: www.datatilsynet.no
3.10. Use of Data Processors
AtB may share your personal data with «Data Processors». Data processors are subcontractors that process personal data on behalf of AtB, as stated in the Data Protection Act §2. This applies to suppliers of ticketing and other systems where you as a customer may enter your personal data. Either in the form of a user profile connected to your journeys or when complaining about a rejected inquiry for our travel guarantee or a fine where AtB will have to proceed a case after you have made an inquiry.
AtB will only make use of data processors located in Norway, EU/EEA countries or countries that have sufficient privacy laws.
The following subcontractor is used for all of AtB's services and products connected to Mobillett:
Vestre Rosten 78
4. Automatic Registration of Customer Information When Visiting Our Website
Common data being recorded is information about browser and operating system in use, and the domain or IP-address you are connected to. This information is used to create statistics about visitors use of the site and will be deleted continuously. Such customer information is anonymous. AtB does not store information that can give away the customers identity.
5. Storage, Duration and Deletion
Both the controller, AtB, and its data processors are following the principles for embedded privacy protection and privacy protection as a standard setting. This includes, among other things, that your personal data shall not be stored longer than necessary to fulfill the purpose of the service.
Profile information: Your profile information will be stored for as long as you remain an active user of Mobillett. Profile information of inactive users will be deleted after three years. A user is considered inactive if there have been no purchases or other activities from the user or their sub-users in the app, and their Mobillett account is empty.You can at any time ask for your user to be deleted from the Mobillett service. To be able to use the service again later, you will first have to register for the service again. Your phone number will be verified during the first log in on a new device. If you have entered other personal information in the app, you can at any time change it in your profile in the settings.
Transaction history and sales documentation: All the sales documentation will be stored for 5 years after the end of the fiscal year, in accordance to the accounting legislation, including the Bookkeeping Act with its regulations. The receipts of your last purchases will always be accessible through the app. In accordance with demands from the payment services, AtB is obliged to give you access to the sales documentation form all your purchases of services, with an expiration within the last 20 months, carried out by your user or connected to your Mobillett account. You can extract this information yourself by logging in on Mobillett Web. After 20 months, the sales documentation will be archived and anonymized in a way that it will not be possible for you or for someone with professional access to the Mobillett service to extract this information connected to your user.
Technical information and transaction logs: Different parts of the transaction log are stored for a sufficient timeframe to ensure the service to function as intended and to ensure that customers receive the service they are entitled to. Normally, the details of the application log will be deleted or anonymized after 104 days. In case of complaints based on errors in the service, the storage time for the transaction log can be increased to cover a necessary timeframe to process the case.
All communication between the service and the application on the phones of end users is encrypted. Access to the system on the web is encrypted. All data transfer between the parts within the system is encrypted. Access to extract data is possible solely through API encrypted and secured with access keys. Access to data through AtB's interface is defined by role, personal and events are logged to ensure traceability. The administration interface for the service is designed with different access levels to limit access only to persons from AtB or WTW on a need to know basis.