Inkasso Security Policy

Inkasso operates in accordance with the Debt Collection Act (Act No 95/2008) and holds a debt collection licence granted by the Financial Supervisory Authority (FME). This FME permit makes Inkasso a regulated entity in the financial market.

The main points aspects of Inkasso’s security policy are as follows:

• Inkasso undertakes to maximise the security of information stored in Inkasso’s systems, as regards secrecy, accuracy and availability. Information security management is a part of the overall quality system.
• Inkasso adheres to all laws, rules and instructions on information security management. These form the basis for the organisation and maintenance of the measures protecting secrecy, accuracy and availability of data and information systems.
• Inkasso’s security policy is binding on all staff and all those who provide Inkasso with services.
• All of Inkasso’s staff, contractors and service providers are obliged to protect data and information systems from unauthorised access, use, amendments, disclosure, destruction, loss or transfer.
• Inkasso promotes an active security awareness among staff, service providers, customers and guests.
• Inkasso takes measures, based on the work and responsibilities of the persons in question, to ensure that all aspects of this policy are implemented.
• Inkasso performs regular risk analysis in order to determine whether further measures are needed.
• The implementation and effectiveness of Inkasso’s security policy are reviewed in an annual report.
  - Past and present staff and service providers may not disclose information on the internal affairs of Inkasso, their customers or other staff members.
  - Inkasso reviews this policy as necessary, and at least every two years. 
  
  

Inkasso’s information security management system covers the company’s internal operations and all customer services. The management system also cover all systems, software and hardware owned or used by Inkasso..