Privacy Statement
Personal data means any information that can identify you as a person. Below you will find information about who is responsible for handling information about you, when we do it, how we do it and what rights you have.
The privacy policy is intended to protect individuals and ensure that the processing of personal data is lawful. Anonymous data is not subject to this regulation.
The policy contains information about when we collect personal data and general information about how we process this data. The information must meet the requirements of the General Data Protection Regulation in Articles 12, 13 and 14 regarding information to the data subject.
Controller
The Directorate of Health director is the controller for all processing of health and personal data in the Directorate of Health. This responsibility includes, among other things, ensuring that personal data is used and processed in accordance with the regulations.
Data processing agreements
The Directorate of Health enters into data processing agreements with all entities that process personal data on our behalf. They may not process the personal data in ways other than those agreed with us and are subject to the same duty of confidentiality as employees of the Directorate of Health.
Data Protection Officer
The Directorate of Health has its own data protection officer. The data protection officer assists in safeguarding the rights of those whose information is registered with the Directorate of Health. The principles for handling health and personal information by e-mail and telephone also apply to communication with the DPO – data protection officer. You can contact the data protection officer at personvernombud@helsedirektoratet.no.