Manor places great emphasis on good and thorough data protection. We operate in accordance with local and international privacy laws and regulations, and we prioritize compliance at all levels. In addition to the obligations and requirements imposed by laws and regulations, we base the design and development of all systems on privacy principles.

Thorough Work Processes

Manor operates in accordance with Icelandic laws and regulations, as well as the fundamental principles of the European General Data Protection Regulation (GDPR) regarding data protection. The key aspects include:

1. Registration and processing of data is lawful, fair, and transparent.

2. Data collection is limited to the purpose of processing.

3. Data acquisition and retention are minimized in line with the processing purpose.

4. Data accuracy is ensured to the fullest extent possible.

5. Data retention is limited, and information is securely deleted in a timely manner.

6. The legality of data processing is ensured from collection to processing.

7. Confidentiality is maintained for all data.

Emphasis in Software Design

In all design and development work at Manor, we adhere to the fundamental principles of privacy in software design as specified in the European GDPR regulations.

1. Proactive Privacy, Not Retroactive
   Interface and processes should be designed in a way that ensures proper registration and processing without the need for subsequent adjustments. Identify risks related to the interface and make changes to systems before actual usage takes place.
   

2. Default Privacy
   Interface and systems should be designed in a way that data is protected by default, so individuals do not have to take further action to ensure the security of their data.
   

3. Full Functionality - Everyone's Benefit
   Interface and systems should be designed in a way that users do not have to choose between privacy and usability. Ensuring that the system's features provide both adequate privacy and satisfactory functionality.
   

4. Security from Beginning to End
   Data security must be ensured throughout the lifecycle within Manor's systems, from secure data acquisition to secure processing and ultimately secure deletion.
   

5. Visibility and Transparency
   Interfaces and systems should be designed in a way that users have a clear understanding of the processing activities, the data being collected, the purpose of processing, the use of the data, and what to expect in the process.
   

6. Respect for Privacy
   In all design and implementation of systems, interfaces, and services, the interests of the individual whose data is being handled should be the guiding principle.

The teams involved in the design and development of Manor have received specialized training in privacy, and all processes from concepts to final testing are established with privacy as a key consideration.

Privacy Policy

We have established a dedicated privacy policy that covers all aspects of privacy in Manor's operations.

Information Security Policy

We follow a meticulous and comprehensive information security policy in all aspects of Manor's operations, from managing core systems to fine-tuning user features and experience.

Processing Agreements

Manor enters into processing agreements with each client, clearly defining responsibilities and execution of all processing activities within Manor's systems.

Processing Register

Manor maintains an up-to-date register of all internal processing activities, their purposes, legal basis, and more.

Training

Our employees receive annual training in privacy, covering regulatory changes, new perspectives on privacy matters, and discussing opportunities for improvement within the company and its products.

Inquiries

Customers, users, and individuals can contact us at any time via email at manor@manor.is or by phone at 546-8000 for any inquiries regarding privacy matters, processing activities, data, or any other privacy-related concerns.