Privacy Policy
Learn how we collect, process, and protect your personal data in compliance with GDPR and Norwegian data protection law.
Optional free newsletter. Unsubscribe anytime by contacting us. We do not sell personal data. See our Privacy Policy.
Last updated: June 9, 2026
This Privacy Policy describes how Forceecoflexible.ddd ("we," "us," or "our") collects, uses, stores, and protects your personal data when you visit our website or contact us. We comply with:
- The General Data Protection Regulation (GDPR) (EU) 2016/679, as incorporated into Norwegian law through the EEA Agreement
- The Norwegian Personal Data Act (Personopplysningsloven)
- The Norwegian Personal Data Regulations (Forskrift om behandling av personopplysninger)
- The Marketing Control Act (Markedsføringsloven) regarding electronic marketing
1. Data Controller
The data controller (behandlingsansvarlig) responsible for your personal data is:
- Company: Forceecoflexible.ddd
- Organisasjonsnummer: 929 847 215
- Address: Safirvegen 50, 3931 Porsgrunn, Norway
- Email: question@forceecoflexible.world
- Phone: +47 911 41 079
We have not appointed a Data Protection Officer (DPO), as we do not meet the statutory threshold requiring one under Personopplysningsloven. For all privacy enquiries, contact us using the details above.
2. Personal Data We Collect
We may collect the following categories of personal data:
- Contact form data: Name, email address, and message content when you submit our contact form (voluntary).
- Newsletter subscription: Email address when you actively subscribe via our homepage form (voluntary, requires consent).
- Technical data: IP address, browser type, device information, pages visited, and timestamps collected through server logs and, with your consent, analytics cookies.
- Cookie preferences: Your consent choices stored in your browser's local storage.
- GDPR consent records: Timestamp and category selections when you submit our contact form consent checkbox.
We do not collect special categories of personal data (sensitive data) as defined in GDPR Article 9, unless you voluntarily include such information in a free-text message.
3. Purposes and Legal Basis for Processing
Under Personopplysningsloven § 6 and GDPR Article 6, we process personal data on the following bases:
- Responding to inquiries — Legal basis: Legitimate interest (Art. 6(1)(f) GDPR) to handle customer communication. You may object to this processing.
- Newsletter delivery — Legal basis: Consent (Art. 6(1)(a) GDPR and Markedsføringsloven § 15). We send marketing emails only to addresses that have actively subscribed. Every email includes an unsubscribe option.
- Website analytics — Legal basis: Consent (Art. 6(1)(a) GDPR and Ekomloven § 2-7b). Activated only when you accept analytics cookies.
- Website security and operation — Legal basis: Legitimate interest (Art. 6(1)(f) GDPR) to maintain security, prevent abuse, and store cookie consent records.
- Legal compliance — Legal basis: Legal obligation (Art. 6(1)(c) GDPR) when required by Norwegian law, including accounting or regulatory requirements.
4. Data Retention
We retain personal data only as long as necessary for the purposes described, in accordance with Personopplysningsloven § 8:
- Contact form submissions: up to 12 months after your inquiry is resolved, then deleted or anonymized.
- Newsletter subscriptions: until you unsubscribe or withdraw consent, plus up to 30 days to process the unsubscribe request.
- Analytics data: up to 26 months, anonymized where possible.
- Server logs: up to 90 days for security and troubleshooting purposes.
- Cookie consent records: 12 months, after which consent is requested again.
5. Data Processors and Sharing
We do not sell your personal data. We may share data with data processors (databehandlere) who process data on our behalf under written data processing agreements compliant with GDPR Article 28:
- Web hosting and infrastructure providers (EEA-based where possible)
- Email service providers for newsletter delivery (only with consent)
- Analytics providers (only when you have consented to analytics cookies)
We may also disclose data to public authorities when required by Norwegian law, including upon lawful request from Datatilsynet, politiet, or courts.
Transfers outside the EEA occur only with appropriate safeguards, such as EU Standard Contractual Clauses (SCCs) or adequacy decisions by the European Commission.
6. Your Rights Under GDPR and Personopplysningsloven
As a data subject, you have the following rights under Chapter III of the GDPR and Personopplysningsloven Chapter 3:
- Right of access (Art. 15) — obtain confirmation and a copy of your personal data.
- Right to rectification (Art. 16) — request correction of inaccurate or incomplete data.
- Right to erasure (Art. 17) — request deletion where no legal basis for continued processing exists.
- Right to restrict processing (Art. 18) — request limitation of processing in defined circumstances.
- Right to data portability (Art. 20) — receive data you provided in a structured, machine-readable format where processing is based on consent or contract.
- Right to object (Art. 21) — object to processing based on legitimate interest, including profiling.
- Right to withdraw consent (Art. 7(3)) — withdraw consent at any time without affecting the lawfulness of prior processing.
- Right not to be subject to automated decisions (Art. 22) — we do not use automated decision-making or profiling that produces legal effects.
To exercise any of these rights, contact question@forceecoflexible.world. We will respond without undue delay and within 30 days, as required by Personopplysningsloven § 15. We may extend by a further 60 days for complex requests, with notice to you.
7. Data Security
Pursuant to Personopplysningsloven § 22 and GDPR Article 32, we implement appropriate technical and organizational measures including HTTPS encryption, access controls, password protection, and regular review of security practices. No transmission over the Internet is completely secure; we cannot guarantee absolute security.
8. Children's Privacy
Under Personopplysningsloven § 5, the age of consent for information society services in Norway is 13 years. Our website is not directed at children under 13. We do not knowingly collect personal data from children under 13 without verified parental consent. If you believe we have collected data from a child under 13, contact us immediately and we will delete it promptly.
9. Marketing and Electronic Communications
Under Markedsføringsloven § 15, we may send electronic marketing (email newsletters) only with your prior, explicit, and documented consent. You may opt out at any time by contacting us or using the unsubscribe link in any marketing email. Opt-out requests are processed without undue delay.
10. Supervisory Authority and Complaints
If you believe your data protection rights have been violated, you have the right to lodge a complaint with:
- Datatilsynet (Norwegian Data Protection Authority)
Postboks 458 Sentrum, 0105 Oslo, Norway
Phone: +47 22 39 69 00
Website: www.datatilsynet.no
You may also lodge a complaint with a supervisory authority in the EU/EEA country of your habitual residence, place of work, or place of the alleged infringement.
11. Related Policies
See also our Cookie Policy, Terms & Conditions (Vilkår), and Right of Withdrawal (Angrerett).
12. Changes to This Policy
We may update this Privacy Policy to reflect changes in legislation, technology, or our practices. Material changes will be posted on this page with an updated date. Where required by law, we will seek renewed consent for processing that requires it.






