top of page


Privacy Policy

Data Controller

The data controller responsible for your personal data is:

Company name: WayNorth ehf.
Kennitala: 610524-0870]
Address: [Hellisgata 18, 220 Hafnarfjörður]
Email: [Agnesiniceland@gmail.com]
Phone: [354-7665178]

 

Personal Data We Collect

We may collect the following personal data:

Information you provide directly

  • Full name

  • Email address

  • Phone number

  • Address (city, postal code, country)

  • Booking details and travel information

Information collected automatically

  • IP address

  • Browser type and version

  • Pages visited and time spent on website

  • Date and time of access

  • Device and operating system information

 

Cookies and Tracking

Technologies

We use cookies and similar technologies to operate and improve our website.

Types of cookies we use:

  • Essential cookies – required for website functionality and security

  • Preference cookies – remember your settings (e.g. language)

  • Analytics cookies – help us understand website usage

  • Consent cookies – store your cookie preferences

You can disable cookies in your browser settings, but some parts of the website may not function properly.

 

How We Use Your Data

We use your personal data for the following purposes:

  • To process and manage bookings

  • To provide customer support

  • To communicate about your tour or inquiries

  • To fulfill legal and accounting obligations

  • To improve our services and website

  • To send marketing communications (only where permitted or with consent)

 

Legal Basis for Processing

We process your personal data under the following legal bases:

  • Contractual necessity – to deliver booked services

  • Legal obligation – accounting and tax requirements

  • Legitimate interest – improving services and website operations

  • Consent – marketing communications (where applicable)

 

Sharing of Personal Data

We may share your data only when necessary with:

  • Payment processors and booking systems

  • Service providers (e.g. IT, hosting, communication tools)

  • Tour partners or subcontractors involved in your booking

  • Professional advisors (legal/accounting)

  • Authorities, if required by law

All third parties are required to handle your data securely and only for specified purposes.

We do not sell or rent your personal data.

 

Data Retention

We keep personal data only for as long as necessary:

  • Booking and transaction data: retained as required by law

  • Communication data: retained for customer service purposes

  • Analytics data: retained in aggregated or anonymized form where possible

 

Your Rights (GDPR)

You have the following rights under data protection law:

  • Right to access your personal data

  • Right to rectification of incorrect data

  • Right to erasure (“right to be forgotten”)

  • Right to restrict processing

  • Right to object to processing

  • Right to data portability

  • Right to withdraw consent at any time (where applicable)

  • Right to lodge a complaint with the Icelandic Data Protection Authority (Persónuvernd)

How to exercise your rights

You may contact us at any time using the contact details in Section 1.
We aim to respond to all requests within 30 days.

 

Data Security

We use appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, or misuse.

However, no method of online transmission is 100% secure.

Third-Party Links

Our website may contain links to third-party websites.

We are not responsible for their content or privacy practices and recommend reviewing their policies separately.

 

Changes to This Privacy

Policy

We may update this Privacy Policy from time to time.

Any changes will be posted on this page with an updated “Last updated” date.

Untitled-1_edited.png
bottom of page