Version 4.0 – Last updated: April 20, 2026
Article 1: Identification of the Data Controller
This privacy policy defines the strict data processing protocols maintained by Linnet Rendholm ("the Platform", "we", "us"), with headquarters at Filipstad Brygge 1, 4th floor, 0252 Oslo, Norway. We act as the data controller in accordance with the Personal Data Act and the EU General Data Protection Regulation (GDPR). To ensure absolute data integrity, we have appointed a Data Protection Officer (DPO) who can be contacted at: [email protected].
Article 2: Categories of Personal Data Processed
To deliver institutional-level services and maintain a secure digital environment, we collect the following categories of data:
Identity Data: Full name, date of birth, nationality, and official identification required for mandatory KYC (Know Your Customer) and AML (Anti-Money Laundering) controls.
Contact Information: Verified email address, active mobile number, and official residential address.
Financial telemetry: Information on asset sources, transaction history, and risk profiles linked to our analytical interfaces.
Digital footprint: IP addresses, device specifications, geographic location data, and logs of interaction with our technical systems.
Article 3: Legal basis for processing
The processing of your data is based on the following legal grounds in accordance with GDPR Article 6:
Contract fulfillment: Necessary to manage your account and deliver our services.
Legal obligations: Compliance with Norwegian law, including the Anti-Money Laundering Act and tax legislation.
Legitimate interests: Necessary for proactive cybersecurity, fraud prevention, and technical optimization of the platform.
Consent: For the distribution of specific market analyses and the use of non-essential cookies.
Article 4: Data security and sovereignty
Linnet Rendholm utilizes enterprise-class security architecture:
Encryption: All sensitive data is stored with AES-256 encryption and transmitted via TLS 1.3.
Hosting: Data is stored exclusively on high-security servers within the EEA area, guaranteeing full protection under European data sovereignty rules.
Article 5: Your rights
You have the right to access your own information, correction, deletion ("the right to be forgotten"), restriction of processing, and data portability. Inquiries should be sent to [email protected]. You also have the right to complain to the Norwegian Data Protection Authority.