We at Varde Hartmark are committed to safeguarding the privacy of our customers, stakeholders and partners.
The General Data Protection Regulation (GDPR) regulates how personal data should be processed electronically. It is important and absolutely necessary that we have a common European regulatory framework to ensure that every public and private enterprise processes personal data lawfully.
Varde Hartmark is the so-called controller and data processor according to the General Data Protection Regulation. That is, sometimes it is we who determine the purpose of the collection and processing of personal data and then we act as the controller. Sometimes it is our customers who decide the purpose and then we are data processors.
When we process personal data, it is usually in connection with customer relationships. The most common categories of personal data we process in connection with customer care are identity information, contact information, communication information and financial information.
The legal basis for our processing is in the vast majority of cases agreement, consent or legitimate interest. It is not very often that we receive transparency requests or requests for deletion because it is mostly customer data that we process.
For us at Varde Hartmark it is important that your customer data is treated confidentially and securely. All employees in Varde Hartmark have a duty of confidentiality and must attend a safety course.
The sharing of customer information may occur to financial institutions, among other things, in the event of reporting requirements. We also share information with our operations manager, Procano, but access is strictly controlled through the Data Processor Agreement. Varde Hartmark has also signed a standard data processing agreement with Microsoft.
If you have any questions about how we process your personal data or your company information, please contact our Security Coordinator Magnus Fredriksen.
