Data security and privacy
At Nykredit we take information security and our customers’ privacy seriously. We strive to have the highest information security possible and place great emphasis on protecting our customers’ data.
Cyber risk and IT security
We have strong monitoring and control measures in place to protect our operations from cyber criminals. Our systems are constantly monitored and secured the highest level of protection. We conduct regularly tests and continuously educate our staff:
- Nykredit has security policies, emergency response plans and business contingency plans. The board of directors approve the information security policy and our internal auditors inspect and audit the plans. The plans are based on international best practice guidelines.
- Every second year Nykredit conducts an information security self-assessment based on the Information Security Forum (ISF) Benchmark Framework.
- Nykredit continuously conducts cybersecurity testing and security incident management, including red team testing. All security incidents are consequently treated according to standardized procedures.
- All employees have mandatory training in IT security.
In Nykredit we take great care of personal data. We will only share personal data if we are required by law or are permitted by the customers.
All employees have training in handling personal data and GDPR.