Resources
Papirfly has not been affected by a security breach or had to report an incident to the regulator in the last 5 years.
No, only basic contact details are collected e.g. name, email address in order for users to login to the portal.
Our hosting providers are located in Norway (EEA) and Sweden (EU) which are both GDPR-compliant areas.
Papirfly currently has ISO 22301 Business Continuity Management System certification and has recently started the ISO 27001 Information Security certification process. Papirfly also uses Amazon Web Services (AWS) as a hosting provider and therefore benefits from all the AWS ISO certifications and SOC 2 audits.
Papirfly has signed contracts and data processing agreements with customers to outline their responsibilities as the data processor and custodian of the customer’s data. Papirfly ensures compliance with GDPR and other data protection laws, and implements various technical and organizational measures to safeguard the confidentiality, integrity, and availability of all data, including encryption, business continuity systems, and various security policies.