The security of information and the privacy of personal data obtained for the development of Nordimeta’s activities is a management concern, which determined the existence of controls that reduce the likelihood of information security incidents or limit their impact.
This policy also aims to guarantee the privacy in the collection and processing of personal data that may be necessary to be carried out in the course of Nordimeta’s activities, with the purpose of enabling the development of these activities and only during the period in which these activities take place.
The data collected to comply with legal obligations, will be kept for the period of time that is necessary or mandatory for the fulfillment of contractual obligations, or for the period required by law.
Whenever there is a leak, loss or violation of personal data that is likely to imply a high risk to the rights and freedoms of its users, Nordimeta will notify, within 72 hours after becoming aware of the event, the supervisory authorities and communicate the situation in time to the holder (s) of the affected data.
The collected data will not be shared, sold or given to other organizations.
Nordimeta employees are subject to a confidentiality agreement and respect this Information Security Policy.