Privacy Notice – Laerdal Innovation Network
Privacy Notice – Laerdal Innovation Network
March 2026
Introduction
We at Laerdal take your privacy seriously. This Privacy Notice sets out essential details relating to the collection and processing of your personal information by Laerdal in connection with Laerdal Innovation Network (L.I.N.) activities. The goal of this Privacy Notice is to:
- Help you understand what personal information we collect about you, for what reason, and how we share it.
- Explain how we handle your personal information and how we protect your privacy.
- Inform you about your rights and choices in relation to your personal information we collect and process.
Please note that participation in all L.I.N. activities, as well as sharing of your personal information, is completely voluntary and can be withdrawn anytime. These activities are not directed to individuals under the age of 18, and we do not knowingly collect personal information from individuals under the age of 18.
Who is making decisions on what personal information to collect and how to use it?
The party responsible for the processing of your personal information is:
Laerdal Medical AS
Tanke Svilands gate 30
4007 Stavanger
Norway
(hereinafter “Laerdal”, “us” “we”)
How and why we collect your personal information
We gather your personal information directly from you upon your interaction with the Laerdal Innovation Network either in person, online, or offline including the following instances: We gather your personal information directly from you upon your interaction with the Laerdal Innovation Network either in person, online, or offline including the following instances:
- When you sign up for LIN and submit the registration form
- When you respond to inquiries from Laerdal researchers
- When you participate in virtual or in-person research, such as interviews, focus groups, workshops, surveys, or other methods.
- When you visit Laerdal offices and premises, or Laerdal visits your workplace locations.
Why are we processing your personal information and what are we processing?
The chart below specifies a) purposes for your personal information processing; b) types of personal information we process; and c) our legal basis under data protection laws for processing your personal information.
Processing Purpose |
Categories of Personal Information |
Legal Basis |
|
To inform product, service, and market research and development |
IIdentification Data (e.g., first and last name, title, location, field of work, organization, age bracket), Contact Information (email), Feedback on Laerdal Products and Services (e.g., list of familiar products) |
Legitimate Interest – GDPR, Article 6(1)(f) Legitimate Interest: identify product and service improvement opportunities in order to 1) improve and develop products and services that align with customers and end-users' needs and expectations; 2) improve your experience when using Laerdal products and services; 3) grow our business. |
| Add you to the Laerdal Innovation Network in order to contact and inform you about the opportunities to participate in activities relating to research, development and improvement of Laerdal’s products and services | Identification Data (e.g., first and last name, title, location, field of work, organization, age bracket), Contact Information (email), Feedback on Laerdal Products and Services (e.g., list of familiar products) |
Consent – GDPR, Article 6(1)(a) |
Who we share your personal information with?
We do not share personal information we collect about you, except as described in this Privacy Notice. We might share or disclose your personal information with the following groups of recipients:
Service Providers - In order to conduct the activities e.g. interviews and analyze the obtained information in the form of photography, video or audio recording we collaborate with service providers. They perform certain tasks on our behalf, such as storing or processing of personal information in connection with user interviews. For example, these are companies such as Microsoft that help us record the interviews or Dovetail that allows us to efficiently extract the value from the interviews. We have concluded contracts with our Service Providers to ensure a high level of security and data protection. Your personal information will only be used for the identified purposes above and Service Providers are explicitly prohibited from using personal information for their own benefit.
Laerdal Group Companies and Partners – We might share your personal information with affiliates and subsidiaries within the Laerdal group companies and selected partners in order to fulfill the processing purposes identified above.
International data transfers
Please note that we may transfer your personal information outside of your country of residence in order to fulfill the above-mentioned processing purposes. Those countries we transfer your personal information may have different privacy and data protection laws from the country where personal information was originally provided. One way in which this may occur is where your personal information is stored in a controlled access repository in the cloud. “In the cloud” refers to servers in a data center that are managed by a third party and accessible through the Internet, and that data center may be in a country other than your own. Whenever we transfer your personal information to other countries, we have taken appropriate safeguards to ensure that your personal information remains protected in accordance with this Privacy Statement, and that any transfers to countries other than the country of your location are carried out in compliance with applicable legal requirements.
In the event your personal information is transferred outside the European Economic Area, we will rely on the European Commission’s 2021 Standard Contractual Clauses, or other applicable data transfer mechanisms. We may also transfer your personal information to countries that have been determined by the European Commission to have an adequate level of data protection (the list of the adequate countries can be found here.
We also have equivalent provisions in relation to data being transferred from the United Kingdom (such as the International Data Transfer Addendum to the EU Standard Contractual Clauses) and Switzerland as required by the laws applicable in those jurisdictions. For personal information transfers between our group of companies, we have implemented an intra-group agreement based on the European Commission’s 2021 Standard Contractual Clauses (with any modifications required by local laws). These also include implementation of appropriate data processing agreements and safeguards with third parties, where relevant. If you would like to obtain a copy of the safeguards, we use to transfer personal information outside of your jurisdiction, please contact us at [email protected]
How long do we keep your personal information?
We will keep your personal information only for as long as it is necessary to fulfill the processing purpose described in this Privacy Notice. Once those purposes are met, we will delete or de-identify the data. You may request earlier deletion of your personal information at any time by contacting us at [email protected].
Your rights in relation to the personal information processing we perform
The General Data Protection Regulation (hereinafter “GDPR”) and California Consumer Privacy Act (hereinafter ”CCPA”) give a number of rights to individuals in relation to their personal information. You have the following rights in relation to your personal information that you can exercise any time:
· Right to Withdraw Consent – Where we process your personal information based on your consent, you have the right to withdraw that consent at any time. This will not affect the lawfulness of any processing carried out prior to the withdrawal. Following a withdrawal request, we will stop processing your information for the purposes to which the consent applied. In limited cases, it may not be technically feasible to remove your data from all systems, including backups. Where deletion is not possible, we will ensure that appropriate safeguards are in place to prevent further use. Please note that we may continue to retain certain personal information if required to comply with legal or regulatory obligations (such as tax or accounting laws) or where necessary to establish, exercise, or defend legal claims.
· Right of Access – You have the right to request confirmation as to whether we process your personal information, and, where we do, to access that personal information and receive a copy of it
· Right to Rectification – You have the right to request that we correct any inaccurate personal information we hold about you and, where applicable, complete any incomplete information
· Right to Erasure – You have the right to request the deletion of your personal information in certain circumstances, for example, when the information is no longer necessary for the purposes for which it was collected, or if you withdraw your consent
· Right to Restriction of Processing – You have the right to request that we restrict the processing of your personal information in certain situations, such as when you contest the accuracy of the data or object to our use of it.
· Right to Data Portability – You have the right to request that we transfer the personal information you provided to us to another organization or directly to you, where technically feasible. Please note that this right typically applies only when processing is based on your consent or on a contract — and not when processing is based on our legitimate interests.
· Right to Object to Processing – You have the right to object to our processing of your personal information at any time, on grounds relating to your particular situation. We may continue processing your information if we can demonstrate compelling legitimate groundsknowle that override your interests, rights, and freedoms.
Please note that this list may not be exhaustive. This means that you may have additional rights in accordance with your local laws.
Use of Artificial Intelligence (AI)
Within L.I.N., we may use artificial intelligence (“AI”) to support basic tasks, such as organizing participant information, helping our teams manage communications, or producing summaries that make our research work more efficient. AI is not used to make any decisions that have legal or significant effects on you.
In L.I.N., AI may be used in limited and well-defined ways to support research activities and routine administrative tasks:
· Purpose: To expedite our services internally, AI may be used for transcription, analytics, decision-support, or workflow assistance. These features are intended to support and enhance user experience, not to replace professional judgment or human oversight.
· Personal Information: If personal information is processed through AI-enabled features, it is handled in accordance with this Privacy Statement. We apply strict technical and organizational safeguards, and, where AI processing involves third-party providers, we ensure contractual protections are in place to secure your personal information.
· Control: In most cases, AI features are optional and can be disabled by system administrators. Where this is the case, you will be informed by your organization or given the choice to opt in.
· No Automated Decisions with Legal Effect: We do not use AI to make decisions that have legal or similarly significant effects on individuals without human involvement.
Our approach to AI is guided by principles of mission, trust, fairness, compliance, and sustainability. We continuously evaluate our AI-enabled features to ensure that they are safe, reliable, and used in ways consistent with our mission to help save lives.
How to contact us?
If you would like to exercise any of your rights or if you have a privacy or data protection concern, complaint, question or perhaps the information provided in this notice is not sufficient, please contact us at [email protected] or submit your request via our privacy portal. We will not discriminate against any consumer for exercising their rights under the CCPA or any other applicable law. In case you are not satisfied how we handle your personal information, you have the right to lodge a complaint to the Norwegian Data Protection Authority (Datatilsynet) or to your local data protection authority.
If you would like to learn more about our privacy practices, please visit our general Privacy Statement.