Use of cookies on lanekassen.no

Lånekassen uses cookies in our services to make them better, safer and easier to use. 

Cookies are small text files that are stored on your device when you visit a web page. Most websites use cookies. 

Our services include

  • Lanekassen.no
  • Dine sider (logged in services)
  • Statistics and analysis
  • Parental signing
  • Information for educational institutions
  • Interface (Arbeidsflate) for educational institutions
  • Applications 

Why do we use cookies?

We use cookies on both public pages and logged-in pages on lanekassen.no. Cookies are necessary to make our services better, more secure, and easier to use. 

Some cookies are essential for the website to function properly and cannot be disabled. To help us improve our website and services, we also use cookies from statistical and analytical tools. By accepting these, you support our efforts to develop user-friendly websites and services. 

Accept or reject cookies 

The first time you visit our website, you can choose whether to accept all cookies or only the necessary ones. If you accept all cookies, we will delete the optional cookies after 90 days and ask you again. 

You can change or withdraw your consent at any time. 

A link to manage your cookie preferences is also available in the menu at the bottom om lanekassen.no. 

You can use your browser settings to reject the use of cookies. Please note that disabling all cookies may affect how our services function and provide you with a less optimal experience. 

Which cookies do we use? 

Cookies for statistical and analytical purposes 

Lånekassen uses Siteimprove as an analytics and statistics tool. We use it identify and fix errors and shortcomings, analyse website visits and track how you navigate the service. 

When Lånekassen uses cookies for analytics and statistics purposes, we do not store data that can be used to personally identify you. The data is processed in an anonymised and aggregated form. Anonymisation means that we cannot trace the information we collect back to you. We anonymise IP addresses and cannot link usage to individual IP addresses. 

Siteimprove uses the following cookies:

  • nmstat: this cookie appears in the browser settings as having a duration of 1000 days. This setting is not controlled by Lånekassen, but Lånekassen overrides it and deletes the cookie earlier if you do not consent. The purpose of this cookie is to collect information about the user’s visits to the website. The content of the cookie is a randomly generated ID used to recognise the web browser when a user visits a website. The cookie does not store any personal data and is used solely for statistical purposes related to website usage.
  • AWSALBCORS: This cookie is retained for seven days. It will ensure that all analytics data for a single visit (user session) is sent to the same endpoint. It is used to compile the sequence of an individual’s visit to different pages, which supports behavioural tracking.
  • sz-feedback-should-hide: this cookie stores whether you have responded to the feedback function “Did you find what you were looking for?” so that the box does not appear again in the same session. It is deleted when you close your browser. 

The information collected by Siteimprove is stored on the company’s servers in various EU countries in accordance with Siteimprove’s guidelines for privacy and the data processing agreement with Lånekassen.

Cookies used to display statistics about our schemes 

On our statistics and analysis pages we use cookies set by the third-party solution Power BI (Microsoft). If you want access to view statistics about our schemes, you must consent to this type of cookie when visiting the statistics page. 
Power BI sets the following cookies: 

  •  ARRAffinity: used by Microsoft for load balancing. Deleted when the user closes the browser.
  • AFFAffinitySameSite: used by Microsoft for load balancing. Deleted when the user closes the browser.
  • WFESessionID: used by Power BI sessions to support data visualisation. Deleted when the user closes the browser.
  • Ai_session: used by the performance tool Application Insights. Normally deleted after one year but is deleted earlier if you do not give consent. 

Strictly necessary cookies

Strictly necessary cookies are cookies that make it possibly to use our services. We use strictly necessary cookies for the following purposes:

  • Logging in to Dine Sider, applications and the interface (Arbeidsflate) for educational institutions
  • Technical analysis in App Dynamics 
  • Cookie consent management 

These cookies are considered strictly necessary because they help ensure the services are as secure as possible and comply with security requirements. 

Logging in to Dine sider, parental signing, applications and the interface (Arbeidsflate) for educational institutions

The purpose of processing personal data through cookies in the authorisation flow is to make our login services function correctly. By authorisation flow we mean the process of logging in and gaining access to our services that require a secure authentication.

We use the following cookies for authorisation flow:

Dine sider, parental signing and applications

  • Ikauth: this cookie stores information regarding if you are logged in or not. It is deleted when you close your browser.
  • Lk_idporten_nonce: this cookie is set during a log in attempt. It lasts for 15 minutes or until the user logs in. The cookie is used to prevent replay attacks and ensure that the traffic is authentic and originates from the authenticated user.
  • Lk_idporten_correlation: this cookie is set during a login attempt. It lasts for 15 minutes or until you log in. It is used for security purposes to correlate traffic to detect suspicious activity. 

Interface (Arbeidsflate) for educational institutions (AFL)

  • aflauth: this cookie stores information about whether the user from an educational institution is logged in or not. It is deleted when the user closes the browser. 
  • aflauth-invitasjon: used in the process of inviting a user from an educational institution to the AFL portal. The cookie keeps the user logged-in via ID-porten until they are linked to an educational institution user and can log in to the solution. It is deleted when the user is linked to an educational institution user or cancels the process.
  • afl_idporten_nonce: this cookie is set during a login attempt. It lasts for 15 minutes or until the educational institution user logs in. The cookie is used to prevent replay attacks and ensure that the traffic is authentic and originates from the authenticated user. 
  • afl_idporten_correlation: this cookie is set during a login attempt. It lasts for 15 minutes or until the educational institution user logs in. It is used for security purposes to correlate traffic to detect suspicious activity.
  • AspNetCore.Antiforgery: this cookie is used to protect against CSRF attacks, for example when users submit data via forms and applications. It protects the website from false information and helps prevent misuse of an end user’s identity. It is deleted when the browser is closed.
  • AspNetCore.Session: used in ASP.NET Core to support session handling. Necessary for submitting applications and filling out forms, which are essential functions. It is considered strictly necessary to prevent system failure data errors that are difficult to correct. Deleted when the browser is closed.
  • LarestedProdAffinity: set by the app gateway. Used to manage user’s sessions and ensure that requests from the user’s browser are routed to the same web server, which is strictly necessary for performing essential task such as filling out forms and applications. Removed when the browser is closed.
  • LarestedProdAffinityCORS:: set by the app gateway. Used to manage user’s sessions and ensure that requests from the user’s browser are routed to the same web server, which is strictly necessary for performing essential task such as filling out forms and applications. Removed when the browser is closed.


Technical analysis in APP Dynamics

Lånekassen uses the tool App Dynamics for technical analysis to keep track of how our services are functioning and to detect errors. Cookies that are used for technical analysis are often essential for monitoring the performance of the service and for understanding error situations well enough to correct them. The cookies we use in App Dynamics serve this purpose, and we have there classified them as strictly necessary. 

App Dynamics use the following cookies:

  • ADRUM_BTa: contains a transaction ID and timestamp and is used to compare the user experience with the quality of our services. Expires after 30 seconds. 
  • ADRUM_BTg: contains a transaction ID and timestamp and is used as an alternative method to compare the user experience with the quality of our services. Expires after 30 seconds.
  • ADRUM_BT (1-5): contains business transaction numbers, timing data, and error information for the five first transactions. Expires after 30 seconds.
  • ADRUM_BTs: contains a link from a browser snapshot to a snapshot in our services. Expires after 30 seconds.
  • ADRUM_BTh: this cookie is only set if an error occurs in one of our services. 
  • ADRUM: this cookie is stored when a user clicks on a link I one of our services. It contains a link to the previous page and a timestamp, used to monitor performance and indicate whether an error may originate on the client side. Deleted when the user closes the browser. 
  • SameSite: this cookie enables the code running in your browser to access the ASRUM_BT cookie in order to maintain business transaction correlation. When the SamSite cookie is present, the code can access ADRUM_BT transaction data. Without Samsite cookies the code cannot analyse business transaction data in cookies sent from our services. This is because data is sent to different domain than lanekassen.no
  • ADRUM_AGENT_INFO, ADRUM_CLIENTINFO, ADRUM_XD_AGENT_ID og ADRUM_XD_AGENT_INFO: these four cookies are used to track users across pages within our services. 

Cookie Consent

We also use a necessary cookie to help us manage consent declarations for cookies.

  • lksamtykke: used to remember the cookie consent you have given or declined on lanekassen.no. This cookie helps us determine whether we need to show the banner again if new cookies have been added since you last gave your consent. Stored until we request new consent after 90 days.