Book Your Next Stay

Data Protection

1. Introduction
The protection of your personal data is an important concern for us. These privacy policies inform you about how we process your personal data in accordance with the Norwegian Personal Data Protection Act (Personopplysningsloven) and the General Data Protection Regulation (GDPR).
2. Data Controller

The entity responsible for the collection, processing, and use of your personal data is:
BLACOON RETREATS AS
Managing Director: Erik Puzig
Address: Rondanevegen 518, 2670 Otta, Norway
Phone: +47 98 67 12 77
Email: retreats@blacoon.com
Organization Number: 934054806

3.Collection and Processing of Personal Data

We collect and process personal data exclusively within the framework of legal regulations. The categories of data affected include:

  • Contact details (e.g., name, address, email, phone number)

  • Payment information (e.g., for orders in the Support Shop)

  • Usage data (e.g., visited pages, IP address, browser type)

  • Communication data (e.g., inquiries via email or phone)

4. Purpose of Data Processing

We use your personal data for the following purposes:

  • Processing of orders and donations

  • Provision of services and customer service

  • User account management

  • Fulfillment of legal obligations

  • Analysis and improvement of our services

5. Legal Basis for Processing

The processing of your personal data is based on the following legal grounds:

  • Performance of a contract (Art. 6 para. 1 lit. b GDPR)

  • Fulfillment of legal obligations (Art. 6 para. 1 lit. c GDPR)

  • Legitimate interest (Art. 6 para. 1 lit. f GDPR)

  • Consent (Art. 6 para. 1 lit. a GDPR, if required)

6. Disclosure of Data to Third Parties​

We only share your data if this is necessary for the performance of the contract or if there is a legal obligation to do so. Service providers acting on our behalf (e.g., payment providers, shipping companies) only receive the necessary data and are contractually obligated to comply with data protection regulations

7. Data Retention and Deletion

Your personal datYour personal data will only be stored for as long as it is necessary for the respective processing purposes or as required by law. After the retention period expires, the data will be deleted or anonymized.a will only be stored as long as it is necessary for the respective processing purposes or as required by legal retention obligations. After the retention period has expired, the data will be deleted or anonymized.

8. Your Rights

You have the following rights under the GDPR and Norwegian data protection law:

  • Right to information about stored data (Art. 15 GDPR)

  • Right to rectification of inaccurate data (Art. 16 GDPR)

  • Right to erasure (“right to be forgotten”, Art. 17 GDPR)

  • Right to restriction of processing (Art. 18 GDPR)

  • Right to data portability (Art. 20 GDPR)

  • Right to object to processing (Art. 21 GDPR)

To exercise these rights, please contact us using the contact details provided above.

9. Data Security
We implement technical and organizational security measures to protect your data from unauthorized access, loss, or misuse. Our security measures are regularly reviewed and adapted to technological developments.
10. Changes to the Privacy Policy

We reserve the right to update this privacy policy as needed. The most current version can be found on our website.
​As of February 30, 2025

Book Now