Last updated: May 21, 2026
1. Introduction
This Privacy Policy describes how IOT Solutions AS ("we", "us", "our", "the Company") collects and processes data when you visit our corporate website at iotsolutions.no (the "Website").
We are committed to protecting your privacy and processing any data in accordance with the EU General Data Protection Regulation (GDPR), the Norwegian Personal Data Act (Personopplysningsloven), and other applicable data protection legislation.
Data Controller: IOT Solutions AS Address: Lumberveien 27, 4621 Kristiansand, Norway Contact: support@iotsolutions.no
2. What Data We Collect
This Website is a static informational site. We do not require you to create an account, log in, or submit any personal information to browse the site.
2.1. Data Collected Automatically
When you visit the Website, the following data may be collected:
| Data | Collected by | Purpose |
|---|---|---|
| Cookie consent preference | First-party cookie (cookie_consent) | Remembering whether you accepted or declined analytics |
| Page views, referrer URL, browser type, device info, country | Vercel Analytics (always active) | Understanding traffic patterns and Website performance |
| Session recordings, heatmaps, clicks, scrolling, interaction patterns | Microsoft Clarity (only if you accept cookies) | Understanding how visitors use the Website to improve content and layout |
| IP address, browser type, device info, referrer URL | Vercel (hosting provider) and Microsoft Clarity | Standard HTTP request data; security and analytics |
2.2. Data We Do Not Collect
- We do not collect names, email addresses, phone numbers, or any other personally identifiable information through this Website.
- We do not have user accounts, login functionality, or contact forms on this Website.
- We do not use Sentry, Google OAuth, or any other tracking tools beyond Vercel Analytics and Microsoft Clarity.
3. Legal Basis for Processing
We process data under the following legal bases (GDPR Article 6):
| Legal Basis | Applies To |
|---|---|
| Consent (Art. 6(1)(a)) | Microsoft Clarity analytics — only activated after you click "Accept" in the cookie banner |
| Legitimate interest (Art. 6(1)(f)) | Vercel Analytics (privacy-friendly, cookieless page view analytics) and standard server logs maintained by our hosting provider (Vercel) |
4. Cookies and Similar Technologies
4.1. Consent Cookie
| Cookie | Purpose | Duration |
|---|---|---|
cookie_consent | Stores your cookie preference ("accepted" or "declined") | 1 year |
This is a first-party cookie set by our Website. It is necessary for remembering your consent choice.
4.2. Vercel Analytics
Vercel Analytics is loaded on all pages regardless of your cookie preference. It is a privacy-friendly, cookieless analytics service that collects:
- Page views and navigation paths
- Referrer URL
- Browser type, operating system, and device type
- Country-level geolocation (derived from IP, not stored)
Vercel Analytics does not set cookies, does not track individual users across sessions, and does not collect personally identifiable information. Data is aggregated and anonymous.
For more information, see Vercel's privacy policy.
4.3. Microsoft Clarity
If you accept cookies, Microsoft Clarity is loaded and may set its own cookies to track your browsing session. Clarity collects:
- Mouse movements, clicks, scrolls, and touch events
- Page navigation and session duration
- Screen resolution, viewport size, browser type, operating system, and device type
- Anonymous session and user identifiers (cookie-based)
- Behavioral signals such as "dead clicks" and "rage clicks"
Clarity does not collect keystrokes or text you type. Content in form fields is masked by default.
For more information, see Microsoft Clarity's privacy policy.
If you decline cookies, Microsoft Clarity is not loaded and no analytics cookies are set.
4.4. Fonts
Fonts are loaded from Google Fonts at build time and served locally by the Website. No runtime requests are made to Google when you visit the site.
5. How We Use Your Data
We use data collected through this Website solely for:
- Improving the Website: Understanding which pages visitors view, how they navigate, and where they encounter issues, so we can improve content and user experience.
- Security: Standard server-side logging by our hosting provider to protect against abuse.
We do not use data collected through this Website for advertising, profiling, or automated decision-making.
6. Data Sharing and Third-Party Services
6.1. Third-Party Service Providers
| Service | Provider | Purpose | Data Region |
|---|---|---|---|
| Vercel Analytics | Vercel, Inc. | Cookieless page view analytics | Global |
| Microsoft Clarity | Microsoft Corporation | UX analytics, session recordings | Global |
| Vercel | Vercel, Inc. | Website hosting | Global |
| Supabase | Supabase, Inc. | Image hosting for article content | EU |
6.2. When We Share Data
We do not sell, rent, or share your data with third parties for marketing purposes. Data is shared only with the service providers listed above, as necessary for hosting and analytics.
6.3. International Data Transfers
Our third-party providers (Microsoft, Vercel, Supabase) may process data outside the EU/EEA. Where such transfers occur, they are protected by:
- EU Standard Contractual Clauses (SCCs)
- The EU-US Data Privacy Framework (where applicable)
- Other appropriate safeguards under GDPR Chapter V
7. Data Retention
| Data Type | Retention Period |
|---|---|
| Cookie consent preference | 1 year (stored in your browser) |
| Microsoft Clarity analytics data | Per Microsoft's retention policies |
| Hosting/server logs (Vercel) | Per Vercel's retention policies |
8. Data Security
- Encryption in transit: All communication uses HTTPS/TLS encryption.
- Static site: The Website does not have a database, user accounts, or server-side data storage. Content is pre-rendered and served as static files.
- Consent-gated analytics: Microsoft Clarity only loads after you explicitly accept cookies.
9. Your Rights Under GDPR
As a visitor, you have the following rights regarding any data processed through this Website:
9.1. Right of Access (Article 15)
You may request information about what data we hold about you. Since we do not collect personally identifiable information, this is limited to any data held by Microsoft Clarity associated with your browser cookies.
9.2. Right to Erasure (Article 17)
You can clear the cookie_consent cookie and any Clarity cookies by clearing your browser data. This effectively removes all locally stored data from the Website.
9.3. Right to Object (Article 21)
You can decline analytics at any time by clicking "Decline" in the cookie banner or clearing your cookies. Microsoft Clarity will not be loaded.
9.4. Right to Withdraw Consent (Article 7(3))
You may withdraw your cookie consent at any time by clearing your browser cookies. On your next visit, the cookie banner will appear again and you can choose to decline.
9.5. Right to Lodge a Complaint
You have the right to lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet):
- Website: datatilsynet.no
- Email: postkasse@datatilsynet.no
10. Children's Privacy
This Website is not directed at children under 18 years of age. We do not knowingly collect personal data from children.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Changes will be effective upon posting the revised policy on this page. We encourage you to review this Privacy Policy periodically.
12. Contact
If you have questions about this Privacy Policy or your data, contact us at:
- Email: support@iotsolutions.no
- Address: IOT Solutions AS, Lumberveien 27, 4621 Kristiansand, Norway