Privacy and cookies

Port of Bergen aims to treat all personal data with respect and caution.

Fundamental Principles

All information shall be processed lawfully, fairly, accurately, and transparently.

  • It shall be treated as confidential, protected against unintentional alteration, and made accessible
  • It shall be collected for specified purposes and not further processed in a manner that is incompatible with those purposes
  • It shall only be used for the specific purpose and not stored longer than necessary or required
  • It shall be kept up to date

Legal Basis for Processing Personal Data

To process personal data, there must be a legal basis.

These can be based on a legal obligation, consent, or the performance of a contract.

If the processing is based on consent, the individual has the right to withdraw it at any time.

For legal grounds, the individual may, in certain cases, object to the processing.

There are situations where there is a legal or contractual requirement to provide personal data.

The Personal Data Act and the General Data Protection Regulation (GDPR) Articles 6-11 and 21 provide further information.


As a general rule, everyone has the right to access the information we process or store about them. They also have the right to information about the processing.

To obtain access, the individual must contact Port of Bergen directly. They can request a copy of the registered information.

The basis for access is found in the Personal Data Act and the GDPR Articles 12 and 15.

Right to Rectification of Inaccurate Personal Data

If information about a person is incorrect, they have the right to have it corrected. This also applies to incomplete information.

The procedure is the same as for access.

The Personal Data Act and the GDPR Articles 12 and 16 have detailed rules for this.

Right to Restriction of Processing

In certain cases, restriction of processing may be requested.

For example, when the personal data is inaccurate and it will take time to assess this.

This can be done by contacting Port of Bergen directly.

Reference is also made to the Personal Data Act and the GDPR Articles 12 and 18.

Data Portability

For certain processing activities, individuals have the right to data portability. This means they can request the transfer of their personal data to others. This right has several exceptions. It does not apply, for example, when we process personal data to perform a task in the public interest or exercise official authority.

Rules on this can be found in the Personal Data Act and the GDPR Articles 12 and 20.

Right to Erasure of Personal Data

Everyone has the right to have their information deleted. However, this right also has exceptions. For example, it does not apply to information that is subject to archiving obligations or necessary to assert or defend legal claims.

Record of Processing Activities

Port of Bergen is required to keep a record of processing activities of personal data.

Disclosure of Personal Data to Others

On certain occasions, personal data may be disclosed to others. This may include service providers or others who need access to the collected information to perform their tasks.

In such cases, Port of Bergen must always ensure that the exchange is based on a legal basis, that confidentiality provisions are respected, and that any necessary agreements are entered into.

Privacy by Design and Default

We will ensure that all personal data is well protected technically. We will also consider the risks associated with the processing. If something goes wrong, we will have contingency plans for this.


Our websites may use cookies to provide customized online services and enhance the user experience. A cookie is a small text file stored on your computer.

Data Protection Officer

Port of Bergen has its own data protection officer. The officer shall help ensure compliance with regulatory requirements and act as a liaison between the public and Port of Bergen, providing assistance regarding rights.

The Data Protection Officer can be contacted via e-mail:

This is a concise privacy statement with main rules. If there is a conflict between this statement and privacy legislation or other regulations, the latter takes precedence.