Bergen Fjord Safari logo - link to homepage
← Back to home

Privacy Policy

Last updated: 20 April 2026

Bergen Fjord Safari AS ("we", "us", "our") takes your privacy seriously. This policy explains what personal data we collect when you visit our website or book a tour with us, how we use it, who we share it with, and the rights you have under the EU General Data Protection Regulation (GDPR) and Norwegian data protection law.

If you have questions about this policy or how we handle your data, contact us at post@bergenfjordsafari.com.

1. Who we are

The data controller for personal data collected through this website and our services is:

Bergen Fjord Safari AS

Strandkaien 16

5013 Bergen, Norway

Organisation number: 935 996 007

Email: post@bergenfjordsafari.com

Phone: +47 473 48 911

Bergen Fjord Safari AS is majority-owned by Guided Fjord Tours AS (organisation number 923 177 795).

We have not appointed a Data Protection Officer. For any privacy-related inquiries, please contact us directly at the details above.

2. What data we collect

We collect personal data in the following situations:

When you book a tour:

  • Name
  • Email address
  • Phone number
  • Number of guests and age categories
  • Payment information (processed by Stripe via Bókun — we do not store card details)
  • Any special requests or dietary information you share

When you submit a contact or quote request form:

  • Name
  • Email address
  • Phone number (if provided)
  • Message content
  • Details relevant to your inquiry (preferred date, group size, charter type, etc.)

When you visit our website:

  • Technical data: IP address, browser type, device information, referring URL
  • Usage data: pages visited, time spent, click patterns
  • Cookies and similar technologies (see Section 7)

When you contact us by email or phone:

  • Any information you choose to share in your communication

We do not knowingly collect data from children under 16. If you believe a child has provided data to us, contact us and we will delete it.

3. Why we use your data

We process your personal data for the following purposes and legal bases:

PurposeLegal basis (GDPR Art. 6)
Processing bookings and providing toursPerformance of a contract
Responding to inquiries and quote requestsPre-contractual steps / legitimate interest
Accounting and meeting legal obligationsLegal obligation (Norwegian Bookkeeping Act)
Improving our website and servicesLegitimate interest
Analytics and marketing via cookiesConsent
Preventing fraud and protecting our businessLegitimate interest

4. Who we share data with

We only share your personal data with service providers ("data processors") that help us operate our business. These include:

Booking and payment:

  • Bókun (Tripadvisor LLC, Iceland) — our booking platform, processes reservations and customer records
  • Stripe (Stripe, Inc., USA) — payment processor, handles card transactions via Bókun

Website and hosting:

  • Netlify (Netlify, Inc., USA) — hosting provider for this website
  • Webhuset AS (Norway) — domain and email hosting

Analytics and marketing (only with your consent):

  • Google LLC (USA) — Google Analytics 4, Google Tag Manager, Google Ads
  • Meta Platforms, Inc. (USA) — Meta Pixel for Facebook and Instagram advertising

Website features:

  • Elfsight (Elfsight LLC, USA) — reviews widget
  • Weglot (Weglot SAS, France) — translation service

We do not sell your personal data to anyone, ever.

We may also share data with public authorities when legally required (e.g. tax authorities, law enforcement with a valid legal basis).

5. International transfers

Some of our service providers are based outside the European Economic Area (EEA). When we transfer your data outside the EEA, we rely on the following safeguards:

  • EU-US Data Privacy Framework — for transfers to certified US providers including Google, Meta, Stripe, and Netlify
  • Standard Contractual Clauses (SCCs) approved by the European Commission — for transfers to providers not covered by the Data Privacy Framework

You can request a copy of the relevant safeguards by contacting us.

6. How long we keep your data

We keep your personal data only as long as necessary for the purposes it was collected for:

Data typeRetention period
Booking records5 years after the tour date — required by the Norwegian Bookkeeping Act
Contact form submissions12 months after last contact, unless the inquiry led to a booking
Email correspondenceUp to 3 years, unless related to a booking (then 5 years)
Analytics data (Google Analytics)14 months
Marketing consentUntil you withdraw it
Cookie consent records12 months, after which we ask again

After these periods, we delete or anonymize the data.

7. Cookies and tracking

We use cookies and similar technologies on this website. For a full list of cookies we use and how to manage your preferences, see our Cookie Policy.

You can change your cookie preferences at any time by clicking "Manage cookies" in the website footer.

We use Google Consent Mode v2, which means that when you decline analytics or marketing cookies, those tracking systems operate in a limited, anonymized mode that does not store personal data on your device.

8. Your rights

Under the GDPR, you have the following rights regarding your personal data:

  • Right of access — Request a copy of the personal data we hold about you.
  • Right to rectification — Correct data that is inaccurate or incomplete.
  • Right to erasure — Request deletion of your data ("right to be forgotten"), subject to legal obligations we must comply with.
  • Right to restriction — Ask us to limit how we use your data.
  • Right to data portability — Receive your data in a structured, commonly used format.
  • Right to object — Object to processing based on legitimate interest or for direct marketing.
  • Right to withdraw consent — Withdraw consent at any time for processing based on consent (such as marketing cookies).
  • Right to lodge a complaint — Complain to a supervisory authority.

To exercise any of these rights, contact us at post@bergenfjordsafari.com. We will respond within 30 days.

9. How to complain

If you believe we have not handled your personal data properly, please contact us first — we take these concerns seriously and will work to resolve any issues.

You also have the right to lodge a complaint with the Norwegian Data Protection Authority:

Datatilsynet

P.O. Box 458 Sentrum, 0105 Oslo

Phone: +47 22 39 69 00

Website: datatilsynet.no

10. Security

We take reasonable technical and organizational measures to protect your personal data from unauthorized access, loss, or misuse. These include:

  • Encrypted connections (HTTPS) across the website
  • Access controls and authentication for internal systems
  • Secure, vetted service providers with documented security practices
  • Regular review of our data handling processes

No system is ever 100% secure. If a data breach occurs that is likely to result in a high risk to your rights and freedoms, we will notify you and the Data Protection Authority as required by GDPR.

11. Automated decision-making

We do not use automated decision-making or profiling that produces legal or similarly significant effects on you.

13. Changes to this policy

We may update this policy from time to time. When we make material changes, we will:

  • Update the "Last updated" date at the top of this page
  • Notify you via the website banner or email for significant changes
  • Ask you to renew your cookie consent if the changes affect how we use cookies

14. Contact us

For any questions about this policy or how we handle your personal data:

Email: post@bergenfjordsafari.com

Phone: +47 473 48 911

Address: Strandkaien 16, 5013 Bergen, Norway