Privacy Policy
Privacy Policy
This website is operated by Tom Jensen and provides professional information related to advisory services, operational governance, critical infrastructure and technical documentation.
Privacy and responsible handling of personal data are taken seriously. Personal data is processed in accordance with applicable privacy legislation, including the EU General Data Protection Regulation (GDPR) and the Norwegian Personal Data Act (Personopplysningsloven).
1. Data Controller
The data controller responsible for processing personal data related to this website is:
Tom Jensen
Norway
Email:
tom@tomjensen.no
2. Purpose of the Website
tomjensen.no is a professional informational website presenting experience, advisory areas, operational methodologies and documentation examples.
The website is not intended as a consumer platform, social platform or public discussion forum.
3. Personal Data Processed
This website does not use public user registration, comments, advertising systems, behavioral profiling or marketing tracking.
Personal data may nevertheless be processed in limited situations, including:
- Email communication initiated by visitors
- Protected-access authentication requests
- Security and infrastructure logging
- Operational and technical access logs
Depending on the interaction, processed information may include:
- Name
- Email address
- Message content
- IP address
- Browser and device information
- Authentication-related metadata
- Access timestamps and security logs
4. Legal Basis for Processing
Personal data is processed on one or more lawful bases under GDPR Article 6, including:
- Legitimate interest in maintaining secure professional communication and protecting infrastructure
- Processing necessary to respond to professional inquiries or requests
- Consent where explicitly required
- Compliance with legal obligations where applicable
5. Email Communication
If you contact me by email, the information you choose to provide will be processed for the purpose of responding to your inquiry and, where relevant, maintaining professional communication.
Email correspondence may be retained where necessary for operational, professional, legal or documentation purposes.
6. Infrastructure and Third-Party Providers
This website is delivered using third-party infrastructure providers, including:
- Cloudflare
- GitHub Pages
These providers may process technical data such as IP addresses, TLS information, access metadata and security-related logs as part of website delivery, authentication, protection and availability.
Processing performed by such providers is subject to their own applicable privacy policies and security practices.
7. Cookies and Tracking
This website does not intentionally use advertising cookies, marketing pixels or behavioral tracking technologies.
Strictly necessary technical cookies or security-related session mechanisms may nevertheless be used by infrastructure providers to maintain secure website functionality and access protection.
8. Protected Access Areas
Certain areas of the website may require authentication using identity verification services.
Authentication systems may process limited identity and access information necessary to verify and protect access rights.
9. Retention of Data
Personal data is retained only for as long as reasonably necessary to fulfill the purpose for which it was collected, including:
- Professional communication
- Operational follow-up
- Security monitoring
- Legal compliance
- Documentation and audit purposes
10. Your Rights
Subject to applicable law, you may have the right to:
- Request access to personal data
- Request correction of inaccurate data
- Request deletion of personal data
- Object to certain processing activities
- Request restriction of processing
- Request data portability where applicable
Requests may be submitted using the contact information listed above.
11. Complaints
If you believe personal data is processed in violation of applicable privacy legislation, you may file a complaint with the relevant supervisory authority.
In Norway, the supervisory authority is:
Datatilsynet
www.datatilsynet.no
12. No Professional Reliance
Information, templates and operational examples published on this website are provided for general informational purposes only.
Publicly available documentation examples are intentionally generalized and simplified and should not be relied upon as operational, engineering, legal or regulatory instructions for any specific environment.
13. Updates
This privacy policy may be updated periodically to reflect legal, operational or technical changes.
Last updated: May 2026