This privacy statement provides general information about our processing of personal data, and explains how websites under the regjeringen.no domain collect and use information about visitors.
It also contains the information to which you are entitled when data is collected from our websites.
Norwegian Government Security and Service Organisation (G.S.S.O.), under the authority of the Director, is the Data Controller for the processing of personal data by the organisation. Visitors to our websites may voluntarily provide personal data in connection with services, such as receiving newsletters or registering for conferences. The legal basis of our data processing is the individual’s consent, unless otherwise specified.
The processing is conducted in accordance with the Norwegian Personal Data Act, including the EU’s General Data Protection Regulation and associated regulations. This includes technical and administrative measures, regulations and employee competence.
This statement contains the information to which you are entitled when your personal data is collected from our websites (section 19 of the Norwegian Personal Data Act), and general information on how we process personal data (section 18, first paragraph, of the Norwegian Personal Data Act).
Personal data exists on our websites in the form of references and descriptions in editorial content, and in various formats, such as:
- Text in HTML files that are in displayable formats
- Text in downloadable documents in various formats
- Text, audio or images in video files
- Audio in downloadable audio files/podcasts
Relevant personal data that is part of the editorial content may consist of names, roles, professions etc. The data is collected from official sources and published in connection with the duty of disclosure, which enables public agencies to elucidate responsibility within the administration. Consent is not necessary for processing personal data which is part of journalistic content or is deemed necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller (Article 6e of the General Data Protection Regulation).
The Prime Minister’s Office and all government ministries have their own editors and an independent responsibility for processing personal data on their websites.
When visitors post comments on a webpage, we store the data provided in the comment form, in addition to the visitor’s IP address and web browser version.
This is done to help avoid irresponsible comments.
After your comment has been approved, your profile picture will be publicly visible along with your comment.
When you register for courses and events, we will ask you to register your name, organisation, address, e-mail, phone number, job position and invoice reference.
With the exception of names and organisations, which will be published on participant lists, this data is not shared with other parties.
The owner of the website is the Data Controller for data collected from registrations for courses and events.
“Did you find what you were looking for?” is a feature we have at the bottom of some of the articles on our websites.
You can use this feature to provide feedback as to whether you found the information you were looking for, or not. We use the feedback to improve the content of our websites.
If you use this feature, a FormCookie (cookies) will be added to your computer. This cannot be used to trace the message back to you.
The information is stored anonymously in our WordPress publishing system. It is not possible for us to answer questions through this feature.
We also encourage you not to submit sensitive personal data about yourself or others through this feature.
The websites may contain various forms for submitting input, sending messages or making contact.
Norwegian Government Security and Service Organisation (G.S.S.O.) stores data from submitted forms.
The owner of the website is the Data Controller for data collected via forms. Get in touch with the owner of the website if you wish to delete your personal data.
A website may hold personal data contained in documents and files in the form of names, titles or workplaces.
In some cases, this may also indicate who has participated in the production of the document.
In principle, such data should not be published. If it is visible, please contact the Data Controller for the relevant section of the website.
If you upload images to the website, you should avoid uploading those which contain location data (EXIF GPS). Visitors to the site can download and retrieve such data from images on the webpage.
Our websites offer the option of subscribing to our newsletters for anyone who wishes to receive them.
For us to be able to send you e-mails, you need to register your e-mail address. This data is not shared with other enterprises and is deleted when upon notice that you no longer wish to receive information from us.
The data will also be deleted if we receive a notification that the e-mail address is no longer active.
Norwegian Government Security and Service Organisation (G.S.S.O.) uses the third party service Mailgun, which is provided by Mailgun Technlogies Inc. and based in the United States, for sending e-mails with links to news articles, in addition to MailPoet.
Registered data consists of:
- E-mails which are not received
- Termination of an e-mail subscription
- Any complaint submissions concerning junk mail
Norwegian Government Security and Service Organisation (G.S.S.O.) has a data processing agreement with MailGun.
Registered data consists of:
- Newsletters which are opened and the number of clicks on links
Norwegian Government Security and Service Organisation (G.S.S.O.) stores data on which keywords are used on our sites through Google Analytics, SearchWP and WordPress search.
The purpose of storing this data is to improve our information service. Search usage patterns are stored in an aggregate form. Only keywords are saved and they cannot be linked to other user data, such as IP addresses.
The websites may use the SearchWP extension or WordPress search as search tools.
The “Share” function can be used to forward links to the website by e-mail or to share the content on social media, such as Facebook or Twitter.
We do not log data concerning the share function. The data is only used to share the content on social media right then and there.
However, we cannot guarantee that the data is not logged by any of these social media platforms. All such services should therefore be used wisely.
If you use the e-mail function, we only use the provided e-mail address(es) to send messages. We will not store this data in any way.
We use a subcontractor, TwentyThree, to save and transfer videos on the websites.
Cookies required for video streaming
- When running a video player, the video stream supplier adds the following cookies: “_visual_swf_referer”, “local_cache_user_id”, “session_referer”, “9890101_u”, “9890101_p” and “uuid”
- Both persistent and session cookies will be deleted or disabled when you leave the website.
- ad_session_id: Used by the system to balance traffic. The cookie “dies” shortly after you close the view.
- uuid: Is a cookie associated with the given view. It creates an anonymous identifier of the visitor. This is used by Analytics to follow the activity level more precisely. Deleted when the view is closed.
- _visual_swf_referer and session_referer: Two cookies associated with the given view. They store “referral traffic” in Analytics. They save the website address that forwarded referral traffic to the video player on the page.
- [site-id]_u + [site-id]_p: Persistent cookies for tracking your profile. The first stores a unique tracking code for the viewer. The second stores the properties the user has added to the view.
Norwegian Government Security and Service Organisation (G.S.S.O.) has a data processing agreement with TwentyThree.
Norwegian Government Security and Service Organisation (G.S.S.O.) collects data about website visitors. The purpose of using statistics is to improve and further develop our websites to be user-friendly. To analyse the data, we use Google Analytics and Google Tag Manager as analytics tools.
The statistics give us answers to questions such as:
- How many people visit different pages?
- How long does the visit last?
- Which websites do visitors come from?
- Which browsers do visitors use?
Cookies are small text files that a website can ask your browser to save on your computer. When you visit the same website again, the browser will submit the cookies along with your request for the page content. This enables the website to recognise a user who visited the page on a previous occasion.
It is entirely up to you if you want to save cookies on your computer, and if they are to be sent back to the website. Cookies are automatically deleted after a certain amount of time specified by the website.
The Norwegian Personal Data Act gives all data subjects the right to see which personal data has been registered about you.
You also have the right for any data that is incorrect, incomplete, or that we are prohibited for processing to be corrected, deleted or supplemented.
If you have any questions regarding our processing of your personal data, please contact Data Protection Officer Cecilie Ramse by e-mail at firstname.lastname@example.org.