Privacy Policy

About the privacy policy

Updated 18.09.2025

About the privacy policy 

This privacy policy applies to Netsecurity AS (also referred to as "we" or "us"). We act as the controller with regard to the processing of personal data described in this privacy policy. For Netsecurity AS contact information regarding questions or inquiries related to privacy, see section 5.

1.  Categories of data subjects 

  • The privacy policy describes our processing of personal data related to the following categories of data subjects:
  • Contact persons and employees of our corporate customers.
  • Contact persons and other private individuals who have consented to direct marketing communications.
  • Other private individuals who use the services offered by Netsecurity.
  • Job applicants
  • Assignments and deliveries
  • Digital security services

2. Purposes, types of personal data and legal basis 

Below we have listed the purposes of our processing of personal data, which personal data we process, and the legal bases for such processing.

 

2.1 Direct marketing

After active consent from our customers and contacts, we will collect personal data in connection with the distribution of our newsletter and other relevant marketing communications. Newsletters or other communications to customers and contacts will contain information about our products, services, professional articles, seminars, webinars, events and courses. In this context, we will process the following personal data:

  • Name/name of contact
  • Email
  • Phone number
  • Employer
  • Title

The processing of personal data in connection with our distribution of marketing communications is based on contact consent and follows the General Data Protection Regulation Article 6 no. 1 (a)

 

2.2 Processing of personal data in connection with registration for our seminars, webinars, events and courses

In order to fulfil our contractual obligations in connection with your registration for our seminars, webinars, events and courses, it is necessary for us to process some of your personal data. In this context, we will process the following data:

  • Name/name of contact
  • Email
  • Phone number
  • Employer
  • Title

The processing of the personal data mentioned above is necessary in order to participate in the relevant seminar, webinar, event or course. We only process personal data provided by you in the registration form. The processing is necessary for us to be able to fulfil our agreement with you as a customer, see the General Data Protection Regulation Article 6 no. 1 (b) and also serves a legitimate purpose, see the General Data Protection Regulation Article 6 no. 1 (f).

 

2.3 Processing of personal data when we communicate directly with you

We will also process personal data about you in connection with day-to-day case processing. This is necessary to provide you with a satisfactory customer experience in relation to our products, services, seminars, webinars, events and courses. In this context, we will process the following personal data:

  • Name/name of contact
  • Email
  • Phone number
  • Employer
  • Title

Processing of personal data in connection with your correspondence with us serves a legitimate purpose, see the General Data Protection Regulation Article 6 no. 1 (f).

 

2.4  Job applicants

We process personal data about you in connection with job postings and your application for a job. Job applicants receive direct information about which processes they will participate in and where/how the personal data is processed. For more information about storage and deletion, see section 4.

  • Name
  • Address
  • Email
  • Phone number
  • Application/CV
  • Certificates/diplomas
  • Statements from references
  • Background check
  • Internal assessments/interview notes
  • Personality and aptitude tests
  • Presentation videos

 

2.5 Assignments and deliveries

Netsecurity has no self-interest in collecting or processing personal data in connection with assignments and deliveries, but will in some cases process personal data as part of an assignment or delivery. This includes the following areas:

  • Consulting services
  • Advisory services
  • Product sales

The handling of personal data in connection with assignments and deliveries is regulated in each individual assignment agreement.

 

2.6 Digital Security Services

Netsecurity Digital Security Services delivers services that will actively help reduce and manage risk related to digitalisation. The services include:

  • Security monitoring (MDR)
  • Netsecurity Incident Response Team (IRT)

In connection with the delivery of Digital Security Services, Netsecurity may collect and process information related to devices, users or services to the extent necessary to deliver the services in accordance with each individual service agreement. The handling of personal data is regulated in the legal terms and the associated data processing agreement for each individual service agreement, with Netsecurity as the data processor.

 

2.7 Cookies (Cookies)

We use cookies to gain insight into user interactions on our websites. A cookie is a text file stored on a user's computer when the user opens a website. Cookies are used, among other things, to recognize the websites the user visits, improve the websites and tailor offers for products and services.

Read more here about our cookies

When you as a user visit our websites, you are asked to either accept or decline the use of cookies. You can withdraw your consent related to the use of cookies at any time. If you do not want cookies to be stored, you can change the settings in your browser. You can also delete existing cookies. If you choose to delete or not accept cookies, you may experience reduced functionality on our websites.

The use of cookies is regulated in the Electronic Communications Act Section 2-7b and associated regulations.

 

3. Partners with whom we share personal data

We do not sell, trade or otherwise transfer your personal data to third parties.

Exceptions are trusted third parties that help operate our websites and business, deliver ordered goods, or provide service or services. Access to personal data is then limited to personnel who need access in order to perform their tasks. Data processing agreements have been entered into requiring our partners, for example IT service providers, to work in a structured, risk-based manner, with continuous improvement, and to maintain an adequate level of privacy and information security.

4. Storage of personal data 

Personal data for which Netsecurity is the controller will not be stored in our CRM and ERP systems longer than necessary to fulfill the purpose of the processing or legal obligations to which Netsecurity is subject.

5. Your rights

As a data subject, you have the right to ask us for access to the personal data we have registered about you for which Netsecurity is the controller. You may also request rectification, deletion and restrictions on the processing of personal data in accordance with personvern@netsecurity.no.

You may withdraw your consent to marketing at any time or change your settings by using the unsubscribe/management link included in all our emails.

If you are still dissatisfied, you also have the right to submit a complaint to the Norwegian Data Protection Authority as the supervisory authority.

Processing of personal data in connection with the exercise of data subjects' rights follows Articles 15-22 and 77 of the General Data Protection Regulation.

6. Information security

Netsecurity's management system is certified in accordance with the quality and security standards ISO 9001 and ISO 27001. Netsecurity has implemented organizational and technical measures to ensure that your personal data is processed securely and in accordance with requirements for integrity, confidentiality and availability under applicable privacy legislation. Information security in our IT systems is regularly assessed through risk management and internal and external audits. Assessments related to the level of privacy protection are carried out if personal data may be transferred to countries outside the EU/EEA. Where our processing involves the transfer of personal data outside the EU/EEA, we ensure measures to protect the personal data.

If you are still dissatisfied, you also have the right to submit a complaint to the Norwegian Data Protection Authority as the supervisory authority.

Processing of personal data in connection with the exercise of data subjects' rights follows Articles 15-22 and 77 of the General Data Protection Regulation.

7. Changes to the privacy policy

We may make adjustments to this privacy policy. Extensive changes are published as news. The latest version is available on our website.

8. Contact us

At Netsecurity, we are committed to privacy and information security, every day. If you have questions about privacy and the processing of your personal data, please direct them to Netsecurity's privacy contact by email:  personvern@netsecurity.no or by letter: Netsecurity AS, Drammensveien 288, 0283 OSLO.

We will respond to your inquiry as quickly as possible.