Purpose
The purpose of this policy is to show how we work with GDPR, The General Data Protection Regulation.
The right to be informed before information is collected
Nordcert does not collect information. The customer applies for certification and submits his information voluntarily, which is classified as a consent to use these. We have agreements with each customer where we also refer to our rules.
Information concerning the certification is communicated to affected customers.
The right to request access to personal data and ask how the data is used
Nordcert's administrator provides a copy of the individual's personal information as described in the section below upon request and free of charge.
The right to have information corrected
Nordcert's administrator corrects the individual's personal data on request and free of charge.
The right to be forgotten
Nordcert's administrator deletes the individual's personal data on request and free of charge.
The right to say no to the use of personal data for eg direct mail
Nordcert immediately ceases to use the individual's personal data when requested.