valdronefix.top

Privacy Policy

How we collect, use, and protect your personal information

Last updated: 15th January 2026

Introduction

valdronefix.top AS ("we", "our", or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you visit our website valdronefix.top or use our business continuity testing framework services.

As a Norwegian company operating within the European Union, we comply with the General Data Protection Regulation (GDPR) and applicable data protection laws.

Data Controller Information

The data controller responsible for your personal data is:

  • Company: valdronefix.top AS
  • Registration Number: 362514798
  • Address: Storgata 78, 0123 Oslo, Norway
  • Email: [email protected]
  • Phone: +47 21 36 85 97

Data Collection

We collect personal data that you provide to us directly and automatically through your use of our website. The data we collect includes:

Information You Provide

  • Contact information (name, email address, phone number)
  • Company or organisation details
  • Communication preferences
  • Messages and enquiries sent through our contact forms
  • Information provided during consultations or service delivery

Information Collected Automatically

  • IP address and device information
  • Browser type and version
  • Pages visited and time spent on our website
  • Referral source and exit pages
  • Cookie data and tracking information

How We Use Your Information

We use the personal data we collect for the following purposes, based on legitimate business interests and your consent:

  • To respond to your enquiries and provide customer support
  • To deliver our business continuity testing framework services
  • To communicate with you about our services and updates
  • To improve our website functionality and user experience
  • To analyse website usage and performance
  • To comply with legal obligations and regulatory requirements
  • To protect our legitimate business interests and legal rights

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about the cookies we use, please refer to our Cookie Policy.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Consent: When you provide explicit consent for marketing communications or cookie usage
  • Contract: To perform our contractual obligations in delivering services
  • Legitimate Interests: For business operations, website improvement, and security
  • Legal Obligation: To comply with applicable laws and regulations

Data Sharing and Third Parties

We do not sell your personal data. We may share your information with:

  • Service providers who assist with website hosting, analytics, and business operations
  • Professional advisors including lawyers, accountants, and consultants
  • Regulatory authorities when required by law
  • Third parties in connection with business transfers or legal proceedings

All third-party service providers are contractually required to protect your data and use it only for specified purposes.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy:

  • Contact enquiries: 3 years from last communication
  • Service delivery data: Duration of service contract plus 7 years for legal compliance
  • Website analytics: 26 months maximum
  • Marketing data: Until consent is withdrawn or 3 years of inactivity

After the retention period expires, we securely delete or anonymise your personal data.

Your Rights

Under GDPR, you have the following rights regarding your personal data:

  • Right of Access: Request a copy of your personal data
  • Right of Rectification: Correct inaccurate or incomplete data
  • Right of Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a portable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent for processing at any time

To exercise any of these rights, please contact us at [email protected].

International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place, including:

  • Adequacy decisions by the European Commission
  • Standard contractual clauses approved by the European Commission
  • Binding corporate rules or certification schemes

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and authentication procedures
  • Staff training on data protection and security

Contact Information

If you have questions about this Privacy Policy or wish to contact us about your personal data, please reach out to us:

You also have the right to lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet) if you believe we have not handled your personal data appropriately.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. When we make changes, we will update the "last updated" date at the top of this policy and notify you through our website or other appropriate means.