Privacy Policy - Wyrdex
⚠️ Incident Response Hotline

Need Help Fast?

We offer 24/7 Incident Response Support.

Contact Us

Privacy Policy

Wyrdex AS Organization Number: 918716998
Address on file: Låveveien 1, 0682 Oslo Del avBahadur Eiendom AS
Website: https://wyrdex.com
Email Address for Contact: contactus@wyrdex.com

This Privacy Policy explains how Wyrdex AS (“Wyrdex,” “we,” “our,” or “us”) gathers, uses, keeps, and protects your personal information. As a cybersecurity company, we put a lot of value on being open and responsible when it comes to processing data. We make sure that our practices follow the General Data Protection Regulation (GDPR) and the Norwegian Personal Data Act (Personopplysningsloven).

This Policy is for:

– People who come to our site
– Customers and business partners
– People who might want to hire you or do business with you
– People who come to our events or webinars
– Any person whose data we handle

The person in charge of the data

Wyrdex AS is in charge of the personal data described in this policy, unless a service agreement says otherwise, in which case Wyrdex may act as a data processor.

Contact for Privacy Protection:
Email: Support@wyrdex.com
Phone: +47 900 27 396

Types of personal data we collect

Depending on your relationship with us, we gather and use the following kinds of personal information:

a. Visitors to the website: IP address and location

– Information about the type of browser and device
– Source of referral and URLs visited
– Time spent and how people click through
– Identifiers for cookies

b. People who use our services and clients

– Name, title, and role of the contact
– Information about the business name and legal entity
– Email, phone number, and office address for work
– Information about billing and transactions, such as invoices, tax IDs, and payment records
– Logs and contracts
– Data on how often digital services, portals, or APIs are used

c. People who want to work

– Full name and contact information
– Resumes, cover letters, and qualifications
– Work history and references
– Any other information you choose to give

d. Email and Communication Participants Email address and message content

Invitations to events, records of phone calls, and notes from meetings

How We Get Your Information

We get data by:

– Forms on websites and signing up for newsletters
– Talking, emailing, or chatting directly
– Webinars, events, and meetings online
– Contracts and other legal papers
– Automated tools like cookies, server logs, and analytics
– Websites for job applications

Legal Basis for Processing Personal Data Purpose Legal Basis (GDPR Article)

– Giving clients servicesArticle 6(1)(b): Carrying out a contract
– Answering questionsArt. 6(1)(f) – A real interest
– Sending out newsletters and updatesArticle 6(1)(a) — Permission
– Taking care of client relationshipsArt. 6(1)(f) – Legitimate interest
– Going through job applicationsArt. 6(1)(b)/(a) – Steps taken before signing a contract or giving consent
– Following the lawArt. 6(1)(c) says you have to do it by law.
– Improving cybersecurity and managing riskArt. 6(1)(f) – Real interest

What We Do with Your Data

– Your personal information may be used for the following:
– Providing and supporting cybersecurity services
– Taking care of billing and contract obligations
– Helping customers and fixing technical problems
– Sending newsletters and service updates (with permission)
– Doing audits, checks for compliance, and responding to incidents
– Making our website and services better
– Hiring and judging candidates
– Making sure that laws and regulations are followed

Keeping Data

We keep your information only as long as we need it for the reasons listed below:

Type of Data: Length of Time

– Data on client contracts and invoicesFive to ten years (for legal and accounting reasons)
– Logs of communications and support2–3 years
– Job applications: 6 months (unless you agree to an extension)
– Cookies for analyticsAs long as 12 months
– Records of incident response3 to 5 years, depending on how bad it is

We may keep some records longer than the law requires.

Sharing and making data public

We might give your personal information to:
– Cloud service providers, such as AWS, Microsoft 365, and Atlassian
– Financial institutions and payment processors
– Professionals in law, taxes, and audits
– When necessary, law enforcement or regulatory agencies
– Subcontractors and consultants who have strict agreements about how they can use data
– Third-party analytics tools that use data that has been anonymized or pseudonymized when needed
– We make sure that all third parties follow the GDPR by using Data Processing Agreements (DPAs) and putting in place the right protections.

Moving Data Between Countries

If data is sent outside of the European Economic Area (EEA):

– We will use Standard Contractual Clauses (SCCs) that the EU Commission has approved or
– Make sure that the country receiving the information is covered by an adequacy decision, or
– Use other ways that follow GDPR
– If you want a copy of the transfer safeguards that apply to you, please get in touch with us.

Your Rights According to GDPR

As a person whose data is being used, you have the right to:

– Access: Ask for a copy of your information
– Correction: Fix data that is wrong or missing
– Erasure: Ask for your personal information to be deleted (the “right to be forgotten”)
– Restriction: Ask for a break in processing under certain conditions
– Portability: Get a copy of your data in a format that is easy for machines to read and understand.
– Object: Object to data processing based on a valid reason or for direct marketing
– Withdraw consent: You can do this at any time if processing is based on consent.
– To use your rights, email us at [Insert Privacy Email]. We will get back to you in 30 days.
– You can file a complaint with the following if you think your data rights have been violated:
– Datatils ynet is the Norwegian Data Protection Authority. You can find them at https://www.datatilsynet.no

Cookies and Technologies for Tracking

We use cookies to make our website work better and make it easier for users to use.

Type of Cookie Purpose Needed for basic functions like logging in and out
Analytics Google Analytics, Matomo, or other tools like them
Advertising Only used with the user’s permission (for example, LinkedIn Ads and remarketing)
Safety Finding bot traffic and bad behavior

Our cookie banner asks for your explicit consent for non-essential cookies. You can change your preferences at any time through your browser settings or our cookie manager.

Steps to Keep Data Safe

Wyrdex has a strong security program that includes:

– Encryption of data from start to finish (AES-256, TLS 1.3)
– RBAC stands for role-based access control.
– MFA, or multi-factor authentication
– EDR, or endpoint detection and response
– Regular scans for vulnerabilities and penetration testing
– Physical security for data centers (ISO 27001 certified)
– If there is a data breach, we will let the people and authorities who are affected know, as required by GDPR Article 33 and 34.

Making decisions automatically

We don’t use your personal information to make decisions or create profiles that have legal or other serious effects.

Links to Other Websites

There may be links to third-party services on our website. We are not in charge of how they handle your privacy. Before you give them any information, you should read their privacy policies.

Changes to This Policy on Privacy

We might change this Privacy Policy if the law or our services change. We will post updates on our website along with the date they go into effect. We will let you know directly or by email if there are any big changes.

Information on how to get in touch

Please get in touch with us if you have any questions or comments about this Privacy Policy or how we handle your data:

Wyrdex AS
Email: Support@wyrdex.com
Phone: +47 900 27 396

This site is registered on wpml.org as a development site. Switch to a production site key to remove this banner.