This Privacy Notice governs Personal Information we collect from our customers, from our website and other online visitors, as well as information we automatically collect from your online visits (e.g. data collected via cookies).
In this notice, you will find information about the different activities in which we may process personal data and how. Personal data in this context means data that relates to an individual and that identifies that individual, either directly or indirectly, such as your name or your contact information.
Roles and scope
mnemonic as (‘’mnemonic’’) is considered the data controller for the following activities:
Marketing (Including our website)
Providing security services With exception of our Managed Security Services, where we are considered as data processor. For more information, contact our DPO. See contact details below.
Click the respective links for more details on how and why we process personal data for that specific activity.
Securing your information
At mnemonic, we have focused on implementing fair information practices that are designed to protect your privacy. mnemonic takes precautions to protect personal information from loss, misuse, and unauthorized access, disclosure, alteration, and destruction. We have implemented appropriate technical and organisational measures to protect the information systems on which your personal information is stored and we require our suppliers and service providers to protect your personal information by contractual means. mnemonic has been ISO/IEC 27001 certified since 2005.
Storing your information and retention period
Your personal data is stored in datacenters in Norway. We will not retain the personal data for a longer period than is necessary to achieve the purpose for which the data was collected.
Information collected from visitors to our Sites will be kept in order to provide the required service. Once the service has been completed or you have unsubscribed the services, all information will be destroyed in accordance with mnemonic's data retention policies.
Our vendors and service providers
We use vendors to ensure the best quality for our services. For more information on who, and why, please click on the specific activities above.
Disclosing your information
We may disclose your personal information to:
- Public authorities, if we are required to do so i.e. by applicable court order or law; or
- Any recipient, with your consent, such as for employment verification or background check; or
- Any recipient when reasonably necessary such as in the event of a life-threatening emergency.
For more specific disclosures, please click on the specific activities above.
In the event mnemonic goes through a business transition, such as a merger, being acquired by another company, or selling a portion of its assets, users' personal information will, in most instances, be part of the assets transferred.
Exercising your privacy rights
Under applicable data protection law you as a data subject may - provided that the respective legal requirements are met - have the right to:
i. obtain from mnemonic confirmation as to whether or not personal data concerning you are being processed, and where that is the case, access to the personal data;
ii. obtain from mnemonic the rectification of inaccurate personal data concerning you;
iii. obtain from mnemonic the erasure of your personal data;
iv. obtain from mnemonic restriction of processing regarding your personal data;
v. obtain from mnemonic a copy of personal data concerning you, which you actively provided, in a structured, commonly used and machine-readable format and to request from mnemonic that we transmit those data to another recipient selected by you;
vi. object, on grounds relating to your particular situation, to processing of personal data concerning you;
vii. withdraw your consent to the processing at any time; and
viii. lodge a complaint with a supervisory authority (in Norway: Datatilsynet).
Should you require to exercise one or more of the above rights, please contact our Data Protection Officer (as described below) outlining your request and requirements.
The consequence if you don't provide us with the necessary information, or require that such information is deleted, is that mnemonic may not be able to provide its services to you.
If your company/employer uses mnemonic services
mnemonic has no direct relationship with the data subjects whose personal information may be processed by our managed security services. Data subjects who are in contract with our customers may exercise their rights by following their company/employer specific routines.
For information regarding cookies on our website, please see our Cookie notice
Changes to the policy
mnemonic reserves the right to change this Privacy Notice at any time to reflect changes in the law, our data collection and use practices, the features of our services, or advances in technology. Please check this page periodically for changes. Your continued use of the services following the posting of changes to this policy will mean you accept those changes.
How can you contact us
If you have any questions or other reasons for contacting mnemonic in regards to your data privacy, please contact our Data Protection Officer at