Data Protection
Utkilen AS is committed to protecting your privacy and ensuring the security of your personal information.
What We Collect
- Microsoft 365 profile information (name, email, user ID)
- Authentication tokens (stored securely in session storage)
- Activity logs and incident management data
- Team response status, location data, and role assignments
- User preferences (theme, notification settings)
How We Use Your Data
- Authenticate and authorize access to the system
- Verify team membership for access control
- Coordinate emergency response activities and team deployment
- Track incident resolution, task completion, and response times
- Generate incident reports and maintain operational records
- Enable role-based access to features and sensitive data
Data Storage
All data is stored in Microsoft SharePoint Online, which complies with:
- GDPR (General Data Protection Regulation)
- ISO 27001 information security standards
- Microsoft's enterprise security and compliance framework
Your Rights
- Access your personal data at any time
- Request correction of inaccurate information
- Request deletion of your data (subject to legal requirements)
- Withdraw consent for non-essential data processing
Security Measures
- End-to-end encryption for all data transfers (HTTPS/TLS)
- Multi-factor authentication via Microsoft Azure AD
- Team membership verification for access control
- Role-based permissions (ER Leader, IT Coordinator, Team Member)
- Restricted view mode for non-team members during active incidents
- Session-based authentication with automatic timeout
- Regular security audits and system updates
Contact
For privacy concerns or data requests, contact our Data Protection Officer at privacy@utkilen.no
Last updated: January 2026 | Utkilen AS • Norway