1. Data Controller
The data controller responsible for personal data processed through nuanceintel.com and Nuance Intel's training and consulting services is:
Oslo, Norway
Organisation number: [PLACEHOLDER: Norwegian organisation number — check Brønnøysundregistrene]
Email: abdibasid@nuanceintel.com
Phone: [PLACEHOLDER: contact phone number if applicable]
All enquiries regarding personal data, access requests, or complaints should be directed to the address above.
2. Data We Collect
2.1 Data you provide directly
When you contact Nuance Intel, submit an enquiry, request a programme proposal, or register for training, we may collect:
- Full name
- Professional email address
- Phone number (where provided)
- Organisation name and role
- The content of your message or enquiry
- Any documents or attachments you send us voluntarily
2.2 Data collected automatically
When you visit nuanceintel.com, our hosting infrastructure and analytics tools (where you have given consent) may collect:
- IP address (anonymised in Google Analytics)
- Browser type and version
- Operating system
- Pages visited and time spent
- Referring URL
- Device type and screen resolution
- General geographic location (country/city level only; derived from anonymised IP)
2.3 Data we do not collect
Nuance Intel does not collect sensitive personal data (Article 9 GDPR categories) such as racial or ethnic origin, health data, biometric data, or data relating to criminal convictions unless you explicitly provide such information in the context of a specialised programme with relevant professional safeguards in place.
3. Legal Bases for Processing
Nuance Intel processes personal data only where a lawful basis under Article 6 GDPR applies.
3.1 Legitimate interests (Article 6(1)(f))
We process contact and enquiry data on the basis of legitimate interests: specifically, to respond to professional enquiries, assess whether Nuance Intel's programmes are suitable for a prospective client, and maintain records of business communications. We have conducted a legitimate interests assessment confirming that this processing does not override the rights or freedoms of data subjects, given the professional context of all enquiries we receive.
3.2 Consent (Article 6(1)(a))
Where you accept analytics cookies, we process usage data on the basis of your freely given, specific, informed, and unambiguous consent. You may withdraw consent at any time by clicking . Withdrawal of consent does not affect the lawfulness of processing carried out prior to withdrawal.
3.3 Contract performance (Article 6(1)(b))
Where Nuance Intel has an agreement with a client organisation to deliver training, we process participant data to the extent necessary for programme delivery, attendance recording, and certification.
3.4 Legal obligation (Article 6(1)(c))
We retain certain records as required under Norwegian accounting and tax law.
4. Cookies and Tracking Technologies
4.1 Necessary cookies
These cookies are required for the site to function. They do not track you and do not require your consent. They include session-management and security tokens where applicable.
4.2 Analytics cookies (consent required)
If you accept analytics cookies, we use Google Analytics 4 to understand how professionals navigate the site. Data is anonymised: IP addresses are masked before storage, and no data is linked to an identifiable individual. Analytics data is used solely to improve site content and structure.
Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Data processing agreement: in place under GDPR Article 28.
Data transfer mechanism: EU Standard Contractual Clauses.
4.3 Marketing cookies (consent required)
We may use LinkedIn Insight Tag and Meta Pixel to understand which professional audiences engage with our services. These are only activated with your consent. They are subject to the respective providers' data processing terms.
4.4 Managing your preferences
You can review or withdraw your cookie consent at any time by clicking . Your preference is stored in your browser's local storage under the key niConsent. Clearing your browser data will reset your preference.
4.5 Cookie retention
| Cookie / Tool | Purpose | Duration |
|---|---|---|
| niConsent (localStorage) | Stores your cookie preference | Until cleared by user |
| _ga (Google Analytics) | Distinguishes unique users | 2 years |
| _ga_* (Google Analytics) | Session state | 2 years |
| _hjSession (Hotjar) | Session tracking | 30 minutes |
| li_fat_id (LinkedIn) | Conversion tracking | 30 days |
5. Third-Party Processors
Nuance Intel uses the following third-party processors. Where data leaves the EEA, appropriate safeguards under Chapter V GDPR are in place.
| Processor | Purpose | Location | Safeguard |
|---|---|---|---|
| Netlify, Inc. | Website hosting and CDN | USA (CDN global) | SCCs |
| Google Analytics 4 | Website analytics (consent only) | EEA / USA | SCCs, IP anonymisation |
| Hotjar Ltd. | Session analytics (consent only) | Malta / EEA | DPA in place |
| Meta Platforms Ireland | Marketing analytics (consent only) | Ireland / USA | SCCs |
| LinkedIn Ireland | B2B marketing (consent only) | Ireland / USA | SCCs |
| [PLACEHOLDER: email service provider — e.g. Mailchimp, Outlook 365] | Email communication | [PLACEHOLDER] | [PLACEHOLDER] |
SCCs = EU Standard Contractual Clauses (Commission Decision 2021/914). DPA = Data Processing Agreement.
6. International Data Transfers
Nuance Intel is based in Norway, which applies the GDPR as part of the EEA Agreement. Some processors are based in the United States or operate global CDN infrastructure. Where personal data is transferred outside the EEA, Nuance Intel ensures appropriate safeguards are in place, primarily through EU Standard Contractual Clauses as approved by the European Commission.
Nuance Intel also serves clients in the MENA/GCC region and East Africa. Where personal data is shared with client organisations in these regions for programme delivery purposes, this is done on the basis of explicit contractual necessity (Article 49(1)(b) GDPR) or, where applicable, with your explicit consent.
7. Retention Periods
Nuance Intel retains personal data only as long as necessary for the purpose for which it was collected, or as required by law.
- Enquiry and contact data: Retained for [PLACEHOLDER: e.g. 24 months] from the date of last contact, unless a contract is entered into, in which case retention is extended to the duration of the engagement plus [PLACEHOLDER: e.g. 5 years] for accounting purposes.
- Programme participant records: Retained for [PLACEHOLDER: e.g. 5 years] following programme completion for certification and quality assurance purposes.
- Analytics data: Retained in Google Analytics for [PLACEHOLDER: set in GA4 admin — default 14 months; confirm and state].
- Accounting and invoicing records: Retained for 5 years as required under Norwegian bookkeeping law (Bokføringsloven § 13).
At the end of a retention period, data is securely deleted or anonymised.
8. Your Rights as a Data Subject
Under GDPR, you have the following rights. Nuance Intel will respond to all verified requests within one calendar month.
8.1 Right of access (Article 15)
You have the right to request confirmation of whether Nuance Intel processes personal data about you, and if so, to receive a copy of that data and information about how it is used.
8.2 Right to rectification (Article 16)
You have the right to have inaccurate personal data corrected without undue delay.
8.3 Right to erasure (Article 17)
You have the right to request deletion of your personal data where there is no compelling reason for continued processing. This right is subject to exceptions — for example, where we are required to retain data under a legal obligation.
8.4 Right to restriction of processing (Article 18)
You have the right to request that we limit the processing of your personal data in certain circumstances — for example, while accuracy is being contested.
8.5 Right to data portability (Article 20)
Where processing is based on your consent or on a contract, and is carried out by automated means, you have the right to receive your personal data in a structured, commonly used, machine-readable format.
8.6 Right to object (Article 21)
You have the right to object to processing based on legitimate interests. Where we process your data for direct marketing purposes, you have an unconditional right to object and we will stop immediately.
8.7 Right to withdraw consent (Article 7(3))
Where processing is based on your consent, you may withdraw that consent at any time without affecting the lawfulness of prior processing. For analytics cookies, withdraw consent via . For other consent-based processing, contact abdibasid@nuanceintel.com.
To exercise any of these rights, contact us at abdibasid@nuanceintel.com with a clear description of your request. We may need to verify your identity before processing the request.
9. Data Security
Nuance Intel implements appropriate technical and organisational measures to protect personal data against unauthorised access, loss, destruction, or disclosure. These include:
- HTTPS enforced across nuanceintel.com with HSTS
- Security response headers (Content-Type, X-Frame-Options, Referrer-Policy, Permissions-Policy)
- Data minimisation: we collect only what is necessary for the stated purpose
- Restricted internal access to personal data on a need-to-know basis
- Processor due diligence: all processors listed in Section 5 operate under formal data processing agreements
In the event of a personal data breach that is likely to result in a risk to the rights and freedoms of individuals, Nuance Intel will notify the relevant supervisory authority within 72 hours as required by Article 33 GDPR.
10. Children's Data
Nuance Intel's services are directed exclusively at working professionals. We do not knowingly collect personal data from individuals under the age of 18. If we become aware that personal data of a minor has been submitted, we will delete it promptly. If you believe a minor's data has been submitted, contact us at abdibasid@nuanceintel.com.
11. Complaints and Supervisory Authority
If you believe Nuance Intel has handled your personal data unlawfully, you have the right to lodge a complaint with the Norwegian Data Protection Authority:
Postal address: Postboks 458 Sentrum, 0105 Oslo, Norway
Website: datatilsynet.no
Phone: +47 22 39 69 00
Email: postkasse@datatilsynet.no
We would ask that you contact us first at abdibasid@nuanceintel.com so that we can attempt to resolve any concern before escalation.
12. Changes to This Policy
Nuance Intel may update this privacy policy from time to time to reflect changes in our practices, services, or applicable law. The date at the top of the policy reflects the most recent revision. Where changes are material, we will take reasonable steps to inform affected individuals.
13. Contact
For all privacy and data protection enquiries:
Founder & Lead Trainer, Nuance Intel
Oslo, Norway
abdibasid@nuanceintel.com