Your cart is currently empty!
Oslo Fjord by Sail – Privacy Policy
Last updated: July 21, 2025
Your privacy matters to us. This Privacy Policy explains how Oslo Fjord by Sail AS (“we”, “us”, “our”) collects, uses and safeguards personal data when you visit https://oslofjordbysail.no (the “Site”) or interact with our services. It also describes your rights under the EU General Data Protection Regulation (GDPR) and Norwegian data‑protection law.
1. Who We Are
- Data controller: Oslo Fjord by Sail AS
- Organisation number: 935 862 051
- Postal address: Flåtansvingen 22a, 3413 Lier, Norway
- E‑mail: hello@oslofjordbysail.no
2. Personal Data We Collect & Why
| Category | Data collected | Purpose | Legal basis* |
|---|---|---|---|
| Website visit (analytics) | IP address (anonymised in GA4), device info, pages viewed, events | Measure site performance & improve content | Consent (Art 6 (1)(a)) via cookie banner |
| Contact / Booking forms (WPForms) | Name, e‑mail, phone, message, chosen tour date | Respond to enquiries and manage bookings | Contract (Art 6 (1)(b)) or legitimate interest (Art 6 (1)(f)) |
| Checkout & payment | Name, billing address, phone, e‑mail; payment token (handled by Vipps/Stripe) | Fulfil sailing service & issue invoices | Contract |
| Marketing (Meta/Facebook Pixel) | Pseudonymous browser data & hashed identifiers | Retarget ads and measure campaign performance | Consent via cookie banner |
| E‑mail updates (optional) | Name, e‑mail | Send newsletters & offers | Consent |
*Art 6 refers to GDPR Article 6 legal bases.
Special categories
We do not collect sensitive data (health, religion, etc.). If you provide medical information voluntarily (e.g. reduced mobility), we process it only to ensure your safety aboard (Art 6 (1)(d)—vital interests).
3. Cookies & Tracking Technologies
We use a GDPR‑compliant cookie banner (Complianz) that blocks non‑essential cookies until you give consent.
| Tool | Cookie type | Retention |
|---|---|---|
| Google Analytics 4 | Statistics | 14 months (IP anonymised, Consent Mode) |
| Meta Pixel | Marketing | 90 days |
| WPForms | Functional | Session |
| WooCommerce | Functional | Up to 2 days (cart) |
You can withdraw or change your cookie consent any time via the banner’s “Cookie settings” link.
4. Third‑Party Recipients
- Google LLC (GA4, reCAPTCHA, Google Fonts) – USA †
- Meta Platforms Ireland Ltd (Facebook/Instagram Ads & Pixel) – Ireland / USA †
- Automattic Inc. (WordPress.com services, Jetpack CDN) – USA †
- Vipps AS / Stripe Inc. – Norway / USA
† Data may be transferred to the USA under the EU–US Data Privacy Framework or Standard Contractual Clauses (SCCs) approved by the European Commission.
5. Data Retention
- Booking & invoicing records: 5 years (Accounting Act §13‑1).
- Contact‑form enquiries: 12 months.
- Analytics data: 14 months (GA4 setting).
- Marketing audiences: retained until you withdraw consent or max 180 days of inactivity.
6. Your Rights
Under GDPR you may:
- Access your personal data
- Rectify inaccurate data
- Erase data (“right to be forgotten”)
- Restrict or object to processing
- Data portability
- Withdraw consent at any time (does not affect prior processing)
To exercise rights, e‑mail privacy@oslofjordbysail.no. You also have the right to lodge a complaint with Datatilsynet (www.datatilsynet.no).
7. Security Measures
- SSL‑encrypted connections (HTTPS)
- Server‑level firewall & malware scanning
- Principle of least privilege for admin accounts
- Daily off‑site backups
8. Children
Our services are not directed to children under 6. We do not knowingly process children’s data without parental consent.
9. Changes to This Policy
We may update this Privacy Policy; the “Last updated” date indicates the current version. Material changes will be announced on the Site or via e‑mail.
10. Contact
Questions or concerns? Reach us at hello@oslofjordbysail.no or by post: Oslo Fjord by Sail AS, Exampleveien 1, 0160 Oslo, Norway.