Norvme LogoNorvme
Legal

Privacy Policy

Last updated: March 2025

1. Introduction

Norvme Ltd ("Norvme", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our logistics platform and services.

Our office is located in London, United Kingdom. For the purposes of the UK General Data Protection Regulation (UK GDPR), we are the data controller.

2. Information We Collect

We collect information that you provide directly to us, including:

  • Account information (name, email address, password, company name)
  • Profile information (job title, phone number, profile picture)
  • Travel and logistics data (flight details, itineraries, schedules)
  • Team and collaboration data (team member information, shared documents)
  • Payment information (billing address, payment method details)
  • Communications (support enquiries, feedback, survey responses)

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process transactions and send related information
  • Send technical notices, updates, security alerts, and support messages
  • Respond to your comments, questions, and customer service requests
  • Communicate with you about products, services, offers, and events
  • Monitor and analyse trends, usage, and activities in connection with our services
  • Detect, investigate, and prevent fraudulent transactions and other illegal activities
  • Personalise and improve your experience

4. Legal Basis for Processing

Under the UK GDPR, we process your personal data based on the following legal grounds:

  • Contract: Processing necessary for the performance of our contract with you
  • Legitimate Interests: Processing necessary for our legitimate business interests
  • Consent: Where you have given explicit consent for specific processing activities
  • Legal Obligation: Processing necessary to comply with legal requirements

5. Data Sharing and Disclosure

We may share your information in the following circumstances:

  • With service providers who perform services on our behalf
  • With other members of your organisation or team as authorised by you
  • In response to legal process or government requests
  • To protect our rights, privacy, safety, or property
  • In connection with a merger, acquisition, or sale of assets

We do not sell your personal information to third parties.

6. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. This includes 256-bit encryption for data in transit and at rest, regular security assessments, and access controls.

7. Data Retention

We retain your personal data for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. When determining retention periods, we consider the amount, nature, and sensitivity of the data, the potential risk of harm, and applicable legal requirements.

8. Your Rights Under GDPR

Under the UK GDPR, you have the following rights:

  • Right of Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restriction: Request restriction of processing
  • Right to Portability: Request transfer of your data
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent at any time

To exercise these rights, please contact us at privacy@norvme.com.

9. Cookies and Tracking

We use cookies and similar tracking technologies to collect and use personal information about you. Our use of cookies includes:

  • Essential Cookies: Required for the operation of our platform
  • Analytics Cookies: Help us understand how visitors interact with our site
  • Functional Cookies: Remember your preferences and settings
  • Marketing Cookies: Track your activity across websites for advertising

You can control cookie preferences through your browser settings or our cookie consent banner.

10. International Transfers

Your information may be transferred to and processed in countries other than your country of residence. When we transfer data outside the UK, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the UK Information Commissioner's Office.

11. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected personal information from a child, we will take steps to delete such information.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

  • Email: privacy@norvme.com
  • Data Protection Officer: dpo@norvme.com
  • Postal Address: Norvme Ltd, London, United Kingdom

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe your data protection rights have been violated.