Privacy Policy

A published, accurate Privacy Policy is a legal prerequisite for operating any commercial website that handles personal data under GDPR and the Norwegian Personal Data Act. Without it, the sales website cannot lawfully collect leads, track analytics, or run a booking form. Prospective organization customers - many of whom are public-sector or non-profit entities with strict procurement requirements - will evaluate the policy as part of their due diligence before signing a contract. A clear, well-structured policy builds trust, reduces legal risk, and demonstrates that Norse Digital Products takes data protection seriously. It also reduces inbound legal queries from prospects, lowering sales friction.

The page is a static or server-rendered Next.js route at `/privacy-policy`. Content should be authored in a structured format (MDX or CMS-backed) to allow legal updates without code deployments. The page must include a visible last-updated date and a version identifier so customers can track changes. All personal data collected via the demo booking form and any analytics tools must be disclosed explicitly. Cookie usage must align with the separate Cookie Policy. The page should be linked from the site footer on every page, the demo booking form, and the cookie consent banner. WCAG 2.2 AA compliance applies: sufficient contrast, readable font sizes, and logical heading structure.