Norway Holidays

Privacy policy

Last updated: 1 May 2026

Summary

Norway Holidays does not collect personal data, does not use Google Analytics, does not share data with advertising networks or other third parties. The site can be used freely without cookie banners.

If you send a message via the contact form, we forward it as email — this is explained below.

1. Data controller

Name: Peeter Link
Legal status: private individual
Location: Tallinn, Estonia
Contact for privacy questions: via the contact form on /en/about/

2. What data is collected

2.1 Automatic technical data (logs)
The site’s technical infrastructure (Cloudflare) briefly registers per visit: IP address, request timestamp, URL, browser User-Agent and referrer. This data is used for security and operational stability (DDoS protection, load balancing, debugging). Cloudflare’s privacy policy defines the retention period. These logs are not used for marketing or analytics.
2.2 Visit statistics (Cloudflare Web Analytics)
We use Cloudflare Web Analytics — server-side visit statistics that do not use cookies and do not store anything in the user’s browser. Data collected: visits per page, country (IP-based, generic level), browser type, referrer. Not stored: IP address, unique user ID, browser fingerprint.
2.3 Contact form
When you send a message via the contact form, we collect: name (for correspondence), email address (for reply), message content, IP address (anti-spam, 24h).
The message is forwarded via a Cloudflare Worker to the data controller as email. The reply goes to the email address you provided in the form. The site itself does not store the message content. The IP address is kept in Cloudflare KV for 24 hours (rate limiting), then automatically deleted.
2.4 What we do NOT collect
  • Google Analytics — not used
  • Google AdSense or other ad networks — not used
  • Facebook / Meta Pixel — not used
  • Retargeting cookies — not used
  • Newsletter / subscription list — does not exist
  • User accounts / login — does not exist

3. Third parties

3.1 Cloudflare Inc.
Role: data processor (hosting, CDN, DDoS protection, web analytics, email forwarding). Location: San Francisco, California, USA + EU servers. Privacy policy.
3.2 Cloudflare Workers + Email Routing
Role: forwarding contact-form messages to the data controller as email. What it sees: form content + sender IP. Storage: the email passes through Cloudflare’s servers, no storage (forwarding only).
3.3 Other third parties
None. No other external services are involved in operating the site.

4. Your rights

Under the EU General Data Protection Regulation (GDPR, Regulation 2016/679) you have the following rights:
  • Right of access — be informed of what data is held about you
  • Right to rectification — correction of incorrect data
  • Right to erasure ("right to be forgotten")
  • Restriction of processing
  • Data portability
  • Right to object
  • Right not to be subject to automated decisions (not applicable — no automated decisions are made)
To exercise these rights, please contact us via the contact form. We will respond within one month.

5. Cookies

The site itself sets no cookies. No functional, analytical or advertising cookies.
The browser may locally store a LocalStorage entry or cookie: the user’s theme preference (light/dark). This information is not sent to the server.

6. Supervisory authority

In Norway the supervisory authority is Datatilsynet (the Norwegian Data Protection Authority), where you can lodge a complaint about the processing of personal data:
Website: https://www.datatilsynet.noEmail: postkasse@datatilsynet.noAddress: Postboks 458 Sentrum, 0105 Oslo
Norway is a member of the EEA and has adopted GDPR into Norwegian law via the Personal Data Act (Personopplysningsloven, 2018-06-15 no. 38).

7. Changes to this policy

When the privacy policy is updated, the "Last updated" date above is changed. Substantial changes are clearly described.
Policy history: first version published 1 May 2026.