Privacy Policy

Data controller: Haugastøl Turistsenter AS

Org. no.: 931 039 849

Address: Haugastølvegen 200, 3595 Haugastøl

Email: mail@haugastol.no

Phone: 32 08 75 64

A) Data you give us directly

• Name, email, phone and message content when you submit forms or enquiries.

B) Technical data (when using the website)

• IP address (often shortened/technically processed), browser type, device, language, timestamps, page views, referring page (referrer), and events on the site (clicks/scroll/outbound links, etc.).

C) Marketing/measurement data (only with consent)

• Events used for measurement and advertising (e.g. "page view", "click", booking-related events, campaign parameters). This is set up via tags/pixels and may be used for targeting/remarketing when you have consented.

We process personal data to:

1. Deliver and secure the website (operation, troubleshooting, security).

2. Respond to enquiries and follow up requests.

3. Understand use of the website (statistics and improvements).

4. Measure and improve marketing (conversion measurement, remarketing) – only with consent.

We base processing on:

• Legitimate interest: operation, security and necessary troubleshooting (minimal and proportionate).

• Contract/request: when you contact us to book or obtain information.

• Consent: for statistics cookies and marketing cookies/pixels. Consent must be voluntary and can be withdrawn at any time. (This is in line with Norwegian guidance on cookies and consent practice.)

What are cookies?

Cookies are small text files stored in your browser. Some are necessary for the website to function, while others are used for statistics and marketing.

Consent and choices

We use a cookie/consent solution where:

• Necessary cookies may be used without consent.

• Statistics and marketing are activated only after you have consented.

• You can change or withdraw consent at any time via

A) Google Tag Manager (GTM)

Used to load and manage tags (such as Analytics and Pixel) based on consent.

B) Google Analytics 4 (GA4) (Statistics – requires consent)

Used to understand traffic and usage patterns (which pages are used, what is clicked, etc.). You may be measured across pages via cookies/identifiers when you consent. GA4 also has data retention settings that we configure in GA.

C) Meta Pixel (Facebook/Instagram) (Marketing – requires consent)

Used for conversion measurement, ad optimisation and remarketing (e.g. to show ads to people who have visited the site). The pixel may send events about actions on the website.

We may share personal data with suppliers who help us deliver the website and measurement, typically:

• Hosting/operations supplier (website/infrastructure)

• Analytics and tag suppliers (e.g. Google)

• Marketing suppliers (e.g. Meta)

We retain personal data for as long as necessary for the purposes:

• Enquiries: normally 12 months after the dialogue has ended, unless otherwise required (e.g. documentation).

• Analytics/marketing data: according to the settings in the tools and as short as practically possible for the purpose. (GA4 has its own retention settings.)

You may have the right to:

• access, rectification and erasure

• restriction and objection

• data portability (where relevant)

• withdraw consent (without affecting the lawfulness of processing before withdrawal)