Your privacy is very important to Öryggismiðstöðin. This Privacy Policy applies to personal data whether collected and stored electronically, on paper, or in other similar ways. The policy covers the collection, retention, and processing of personal data. The policy is available on Öryggismiðstöðin’s website.
The processing of personal data is governed by personal data laws as they are at any given time as well as the relevant provisions of the GDPR (EEA’s General Data Protection Regulation). The law applies to the processing, storing, and sharing of personal data.
Öryggismiðstöðin is responsible for collecting and processing personal data in its operations. Öryggismiðstöðin hf., based at Askalind 1, 200 Kópavogur, is the legal controller of the personal data you provide to the company. You can contact us at Askalind 1, 201 Kópavogur or by sending a written inquiry to personuvernd@oryggi.is, or by calling 570 2400.
In accordance with current personal data laws and, where applicable, your consent, we. and our service providers (who may act on behalf of the company) may collect your personal data, including:
We will never sell your personal data. We will never share personal information with third parties without your consent (which you are free to withhold) except where we are required by law or in the instances listed in Chapter IV or in the next paragraph.
We may transfer personal data to a third party (processor) who is a service provider, agent, or contractor for the purpose of completing a project or providing you with a service or product that you have requested or approved. We may also share information with processors when it is necessary to protect urgent interests, e.g., when collecting an overdue claim. We also share information, for statistical purposes, with processors who work with us on quality and marketing activities, and we only share the necessary information for those purposes. We enter into a contract with the processors whereby they are obligated to keep your personal data safe and to only use it for the above purposes.
You should be aware that all content you post or share on our social media pages is public information. You should also be aware that by linking your social media account to our social media account, you give us permission to share information with the social media service provider, and the use of the information we share is governed by the social media platform's privacy policy. If you do not want your personal data to be shared with other users or with the social media service provider, do not link your social media account to our social media account or share content on social media from our website.
This Privacy Policy does not cover information or processing by third parties, as we have no control over, nor are we responsible for, their use, disclosure, or other actions. We encourage you to familiarize yourself with the third-party’s privacy policies, including the web hosting providers of the websites that may link to ours, software companies such as Facebook, Apple, Google, and Microsoft, as well as the payment services you choose to use.
Öryggismiðstöðin places great emphasis on protecting all personal data and therefore uses an internal control mechanism to ensure that appropriate technical and organizational security measures will always be implemented.
We will notify you without undue delay in the event of a security breach relating to your personal data which carries a high risk to you. A security breach here refers to a breach of security that leads to accidental or unlawful destruction of personal data or that your data is lost, altered, disclosed, or unauthorized access is granted..
You are responsible for any personal data, such as your name, personal identification number, and photos, which you choose to share or send in a public forum, for example through a chat room or an operation center.
Our websites use SSL credentials which means that data transfers to and from the sites are encrypted and therefore safer. SSL certificates prevent third parties from accessing data sent through the web, for example when sending inquiries and service orders from the site.
We also want to emphasize that data transmission over the internet is never completely secure. Therefore, we advise you to notify us immediately if you believe there is a possibility that certain information you have given us is at risk.
Öryggismiðstöðin endeavors to keep your personal information accurate and reliable and updates it as needed. We will retain your personal information for the period necessary to comply with the purposes of this Privacy Policy unless a longer storage period is required or permitted by law. If there is a possibility that the personal data may be needed later to comply with legal obligations, e.g., to the tax authorities, or to appeal or defend against a legal claim, we will back up the personal data in question and keep it in a secure form for as long as necessary.
You have the right and may request that Öryggismiðstöðin provides you with information about the personal data that the company holds, as well as about the processing and handling of your personal data.
You have the right in certain cases to have your personal data corrected or deleted, e.g., if the information is no longer necessary for the purposes for which it was originally collected.
Your request will be considered, and you will be provided with the information (where applicable) within a reasonable period, subject to the limitations imposed by the rights and freedoms of others, including trade secrets and intellectual property rights. You will be notified and provided with an explanation in the event of a delay in processing, or if the request cannot be fully resolved, no later than one month from the date of receipt. You can file a complaint with the Data Protection Authority if we refuse to provide you with certain information.
The personal data of children under the age of 13 is not collected.
The Privacy Policy is reviewed on a regular basis and may change. You are therefore advised to review the Privacy Policy periodically, but changes to the Policy will take effect upon publication on the company's website; www.oryggi.is.
Cookies are small text files that websites place on your computer, phone, or mobile device when you visit them. Cookies are commonly used to improve the interface and user experience of the website, and for the website to remember important information from your previous visits. Cookies are secure, do not contain code, and cannot be used to access your computer.
We use cookies to track visits to our website. Traffic on the website is measured using Google Analytics. This means that the time and date of visits to the site is recorded, the IP addresses of those who visit it and from which website visits originate, the type of browser and operating system used, and what keywords are used to access the site as well as to find content within it. Cookies are used for a variety of purposes such as remembering what a user has chosen in a booking engine while connected to the website, and they may also be used for security purposes. Session cookies are deleted when a user leaves a website and are therefore not saved for a longer period. Persistent cookies are stored on your computer and remember your preferences or actions on a website. No attempts are made to link a visit to personally identifiable information.
All browsers offer restrictions on the use of cookies, and they can be turned off in your browser settings. It varies between browsers how this can be done, but instructions can be found in the Help options in the browser you are using. You can also delete cookies that are already stored on your computer. The steps for deleting cookies vary by browser, but instructions for this can be found in the Help options in the browser you are using.
Öryggismiðstöðin’s Data Protection Officer is:
Björgvin Jóhannsson
E-mail address: personuvernd@oryggi.is
Tel: +354 570 2400
STE-0441 Privacy Policy
Approved 23.05.2018