Privacy Policy for The Nordic Dish

Last updated: [13 December 2025]
Website: thenordicdish.com (“Site”)
Controller: [The Nordic Dish / K. Liintola tmi] (“we”, “us”)

1) Who we are and how to contact us

The data controller responsible for personal data processed via this Site is:

  • Controller name: K. Liintola tmi
  • Business address: Ahjokatu 14-16, 40320 Jyväskylä, Finland
  • Email: hello@thenordicdish.com

If you contact us about privacy, we may ask for information to verify your identity.

2) What this policy covers

This policy explains how we collect, use, share, and protect personal data when you:

  • browse the Site,
  • interact with ads,
  • subscribe to our newsletter,
  • comment,
  • contact us via forms,
  • click affiliate links,
  • view embedded content (Instagram/Pinterest).

3) Personal data we collect

A. Data you provide

  • Newsletter: email address (and optionally name).
  • Contact forms: name, email, message content, and any information you choose to provide.
  • Comments: name (or username), email address, comment text, IP address, and technical metadata (typical for anti-spam and moderation).

B. Data collected automatically

  • Device and usage data: IP address, browser type, device identifiers, approximate location (derived from IP), pages viewed, referral URLs, time on page, and interactions.
  • Cookies and similar technologies: used for site functionality, analytics, advertising, affiliate tracking, and embedded content. (See Cookies section below.)

C. Data from third parties

  • Advertising partners (e.g., Google and/or Mediavine and their partners) may collect data through cookies/SDKs to measure ads and, where permitted, personalize ads.
  • Social platforms (Instagram/Meta; Pinterest) may collect data when their embeds load.

4) Why we use personal data and our legal bases (EU/UK)

Where EU/UK GDPR applies, we process personal data under these legal bases:

  • Consent: for non-essential cookies/trackers (analytics, advertising, many embeds) where required.
  • Contract / steps before contract: to provide services you request (e.g., sending a newsletter you subscribed to).
  • Legitimate interests: site security, fraud prevention, basic analytics in permitted contexts, moderation, and improving the Site (balanced against your rights).
  • Legal obligation: compliance, recordkeeping, and responding to lawful requests.

GDPR requires transparency about controller identity and contact details and other items (purposes, rights, retention, etc.).

5) How we use your data (typical purposes)

  • Operate and secure the Site (including preventing spam/fraud).
  • Respond to messages sent via contact forms.
  • Publish and moderate comments.
  • Send newsletters and manage subscriptions (including unsubscribe handling).
  • Measure site performance via analytics.
  • Display advertising and measure ad performance; where allowed, support ad personalization.
  • Track affiliate referrals and commissions.
  • Enable embedded content (Instagram/Pinterest).

6) Advertising (Google AdSense and Mediavine)

Google AdSense

Third-party vendors, including Google, may use cookies to serve ads based on prior visits and to measure ad performance.
Google requires publishers to clearly display a privacy policy that informs visitors about cookie usage and to comply with applicable laws.

Mediavine (current or future)

If/when Mediavine serves ads on the Site, Mediavine and its partners may collect data via cookies and similar technologies for advertising and measurement. Mediavine provides/uses consent tooling for regions governed by European privacy laws.

Consent requirements for ads in the EEA/UK/Switzerland

If you serve personalized ads to users in the EEA/UK/Switzerland, Google requires use of a Google-certified CMP integrated with the IAB TCF, and you must make disclosures and obtain consent where required.

7) Analytics

We use analytics tools to understand how visitors use the Site (e.g., pages visited, traffic sources, site performance). Depending on your region and settings, analytics cookies may be placed only after consent (where required).

8) Newsletter

We use a newsletter service provider: Mailchimp to:

  • manage subscriptions,
  • send emails,
  • track basic engagement (opens/clicks) depending on provider settings and your consent choices.

You can unsubscribe at any time using the link in each email.

9) Contact forms

When you submit a form, we use the information to respond and provide support. We may store form submissions for recordkeeping and spam prevention.

10) Comments

If you leave comments, we collect the data shown in the comments form, and typically the visitor’s IP address and browser user agent string to help spam detection. Comments and metadata may be retained as long as the post remains published unless you request deletion where applicable.

11) Affiliate links

Some links on the Site are affiliate links. If you click an affiliate link, the affiliate network/merchant may set cookies or use similar tracking to attribute purchases and pay us a commission. This can involve third-party tracking technologies, which are managed via our cookie controls where required.

12) Embedded Instagram/Pinterest content

Pages may include embedded posts or widgets from Instagram (Meta) and Pinterest. When loaded, these services may collect data and set cookies/trackers. Where required, we will load such embeds only after consent or via a user action (e.g., “click to load”).

13) Cookies and similar technologies

We use cookies and similar technologies.

See Cookie Notice below for details and controls.

14) Who we share data with

We may share data with:

  • Service providers (hosting, email delivery, analytics, security/anti-spam, form tools).
  • Advertising partners (Google, Mediavine, and their partners where applicable).
  • Affiliate networks/merchants for tracking referrals.
  • Authorities if required to comply with law.

We do not sell personal data in the ordinary sense of “selling a customer list.” However, some privacy laws define “sale”/“sharing” broadly to include certain advertising or tracking disclosures. Where applicable, we provide opt-out controls via our consent tools.

15) International data transfers

Our service providers (analytics, ads, email, embeds) may process data outside your country (including outside the EU/UK/Australia). Where required, we use appropriate safeguards (e.g., contractual protections) and rely on your consent for certain transfers when applicable.

16) Data retention

We keep personal data only as long as necessary for:

  • the purposes described above,
  • legal, accounting, or reporting requirements,
  • security and dispute resolution.

Typical examples:

  • Newsletter subscription data: until you unsubscribe (then retained as needed to maintain a suppression/unsubscribe record).
  • Contact requests: [e.g., 12–24 months] unless ongoing.
  • Analytics: per tool settings (often 2–26 months).
  • Comments: while the related post remains published (unless removed).

17) Your rights

EU/UK/EEA

You may have the right to request access, correction, deletion, restriction, portability, and to object to certain processing, as well as to withdraw consent at any time (without affecting processing already performed). You also have the right to lodge a complaint with your local supervisory authority.

Australia

Where the Australian Privacy Principles apply, we provide access/correction as required and handle complaints in line with APP expectations.

United States

Depending on your state, you may have rights to access, delete, correct, and opt out of certain targeted advertising or “sale/sharing” as defined by law. We honor requests where applicable and provide cookie/consent controls for advertising preferences.

18) Children

The Site is intended for a general audience and is not directed to children under 13. If you believe a child has provided personal data, contact us and we will take appropriate steps.

19) Security

We use reasonable administrative, technical, and organizational measures to protect personal data. No system is 100% secure; we cannot guarantee absolute security.

20) Changes to this policy

We may update this policy from time to time. The “Last updated” date will reflect changes.

Cookie Notice and Preferences (Addendum)

A) What cookies are

Cookies are small files stored on your device. Similar technologies (pixels, local storage, identifiers) can also be used. UK guidance requires clear information and consent for non-essential cookies, with limited exceptions for strictly necessary cookies.

B) Categories we use

  1. Strictly necessary (no consent required): site security, basic functionality, consent preferences.
  2. Analytics/performance (consent required in many regions): understanding traffic and improving the Site.
  3. Advertising (consent required in many regions): serving and measuring ads, and (where permitted) personalization.
  4. Functionality/embeds (often consent required): Instagram/Pinterest content and related tracking.

C) How to manage cookies

  • Use the Site’s cookie banner / privacy settings to accept, reject, or customize preferences (where available).
  • You can also manage cookies via your browser settings, though that may break some features.
Scroll to Top