Terms of use


Terms of use Chr. Michelsen Institute
Terms of use are about how Chr. Michelsen Institute (hereafter CMI) collects, processes and uses personal data from registration and participation in our e-learning courses. All users must accept the terms of use before they can use CMI's e-learning courses and learning platform.

Responsible for processing
CMI is responsible for processing of personal data. Efaktor AS, who hosts and maintains the course site, is a data processor. CMI and Efaktor AS have signed a data processing agreement.

What personal data we collect and process
We process the personal data you provide; name, e-mail address, place of work/job role, as well as an overview of course certificates and course and grade history and IP address. The purpose of the processing is to offer the users training and document completed training, as well as evaluation afterwards. The personal data is collected when you yourself register on the course site. 

Registering with the necessary personal information is necessary for the creation of a user account for course participation. Further we process the personal data in order to keep anonymous user statistics. The statistics help us to see how many, and which user groups participate in the courses.

We do not share, sell, transfer or otherwise hand over personal information to other organizations. Course administrators only have access to the personal information associated with the course they are responsible for. Only Efaktor AS, which operates the solution, and persons in CMI who, by virtue of their position, have access to all personal data.

Your personal information is processed in Norway only.

Legal basis for collecting and processing personal data
Personal data such as name, name, e-mail address, place of work/job role, course certificates and course and grade history and IP address are used to fulfill a training agreement and the legal basis for this processing is Article 6, no. 1 letter b of the General Data Protection Regulation (GDPR).

Storage and deletion of personal data
CMI will delete users when they request to be deleted.

Your data protection rights
If you are a resident of the European Union (EU) or the European Economic Area (EEA), you have certain data protection rights. If you wish to be informed what personal data we hold about you and if you want them to be deleted from our systems, please contact us. You can contact the data protection manager via your profile page or at email rachael.tufft@cmi.no to have your rights executed.

In certain circumstances, you have the following data protection rights:
Your rights include the right to:

  • get information on how your personal information is processed
  • to demand access to your own personal information
  • to demand correction or deletion of your personal data
  • to demand that the processing of your personal data be restricted
  • data portability
  • to oppose automatic decisions, including profiling
  • to complain to the appropriate local data protection authority

You can contact the Data Protection Officer via your profile page or at rachael.tufft@cmi.no to exercise your rights.

Security measures
Necessary technical, physical and organizational security measures have been implemented to protect personal data covered by this agreement against unauthorized or illegal access, alteration, deletion, damage, loss or inaccessibility.

Use of cookies
The solution, Moodle, hosted by Efaktor AS, use the following cookies:

    MoodleSession is used to hold the session created when you log in to Moodle. This cookie expires in one hour, unless you have logged out or the portal administrator has set a shorter time for inactivity in the portal settings.

    _cfuid is used to remember the last username you logged in with. This cookie is stored for one year, as long as you do not empty temporary internet files on your computer before this. The cookie contains no sensitive information.