DPDPA is now in force in India. Run a free privacy scan on your site. Scan now

๐Ÿ‡ณ๐Ÿ‡ด EEA & Europe (non-EU)

Cookie consent in Norge

Consent and privacy law in Norge

In short
Norway is not an EU member but applies the GDPR through the EEA Agreement, enforced by Datatilsynet. Norwegian cookie rules historically sat in the Electronic Communications Act, which used a softer browser-settings standard, but Norway has been moving toward the EU opt-in model and revised its electronic communications law to require clearer consent. Datatilsynet has been an outspoken regulator, notably issuing a large fine against a dating app over location data sharing. Norwegian guidance requires informed consent, clear information in Norwegian, and an easy reject path. Controllers should keep evidence of consent.
Authority
Datatilsynet
Status

GDPR applies via the EEA Agreement since July 2018, with the national Personal Data Act

Primary law
GDPR
Languages

nb

Who must comply

Any organization that offers goods or services to people in the EU or monitors their behavior, wherever the organization is based.

Penalties

Up to 20 million euros or 4 percent of global annual turnover, whichever is higher

Key obligations

  • Obtain prior, opt-in consent before non-essential cookies
  • Make refusing as easy as accepting
  • Keep records that prove consent
  • Honor withdrawal at any time
  • Respect data subject rights (access, erasure, portability)

Local guidance

  • Apply the GDPR as adopted into the EEA Agreement
  • Follow the revised electronic communications rules moving toward opt-in
  • Provide notices in Norwegian
  • Keep evidence of consent

How ConsentX helps

  • Prior-script blocking for true opt-in
  • Equal-weight Allow and Reject controls
  • Tamper-evident consent receipts and evidence
  • One-click withdrawal trigger
  • Built-in DSAR workflow with 30-day SLA
Get started free
yoursite.com
๐Ÿ‡ณ๐Ÿ‡ด Norway

We value your privacy

We ask for your consent before any non-essential cookie, with the rules that apply in your region.

Allow allReject non-essentialManage preferences

This page is a plain-English summary for general information and is not legal advice. Confirm your obligations with qualified local counsel.

How to comply with Norway using ConsentX

  1. 1

    Scan your website

    Run a free scan to find every cookie and tracker on your site, so you know exactly what needs consent under Norway.

  2. 2

    Show a geo-aware consent banner

    Add the ConsentX banner. It detects each visitor region and shows the consent experience that Norway requires, automatically.

  3. 3

    Block trackers until consent

    Keep non-essential cookies and trackers blocked until the visitor agrees, so nothing fires before consent.

  4. 4

    Record tamper-evident proof

    Every choice is stored as a tamper-evident consent receipt you can produce in a Norway audit.

  5. 5

    Handle data requests on time

    Use the built-in DSAR workflow with SLA timers to answer access, deletion and opt-out requests within the legal deadline.

Frequently asked questions

Does the GDPR apply in Norway?+

Yes. Although Norway is not an EU member, it applies the GDPR through the EEA Agreement, enforced by Datatilsynet, alongside the national Personal Data Act.

Are Norway's cookie rules opt-in?+

Norway historically used a browser-settings standard but has revised its electronic communications law to move toward clearer opt-in consent in line with EU practice.

Governing law

๐Ÿ‡ช๐Ÿ‡บ GDPR

Other countries in EEA & Europe (non-EU)

๐Ÿ‡ฎ๐Ÿ‡ธ รsland๐Ÿ‡ฑ๐Ÿ‡ฎ Liechtenstein๐Ÿ‡จ๐Ÿ‡ญ Schweiz / Suisse / Svizzera