Skip to main content
  • loading="lazy"
  • loading="lazy"
  • loading="lazy"
Health Group

IT and personal data security

Health Group develops and delivers health and work environment solutions for national and international companies. We therefore consider personal data security and IT security to be two of our most important tasks.

Since 2013, Health Group has been ISO 9001:2015 certified, which is an international standard for quality management. This standard represents a systematic approach to ensuring that Health Group's processes and procedures meet the highest quality standards. And thus also high IT security and secure personal data protection.

Health Group is D-labeled, the world's first digital responsibility labeling scheme and the first of its kind to combine IT security and responsible data use in one label. Through careful governance and management, we ensure that Health Group is compliant with requirements within governance and management buy-in, awareness and secure behavior, technical IT security, supplier IT security requirements and responsible data use, data transparency and control, and data ethics. 

Health Group is externally audited annually to ensure compliance with the above standards. 

Policies, data processing agreement and joint data responsibility agreement:

Privacy policy

Cookie policy and privacy policy

Data processing agreement

Agreement on joint data responsibility

Data processing agreement

Our profile on the D-mark website



Tor Valstrøm
Data Protection Officer

Tor Valstrøm is also an outsourced DPO for Ingeniørforeningen IDA, Forbrugsforeningen, Popermo Forsikring, Privathospitalet Mølholm, Loyal Solutions, Hjerteforeningen and Ortos and is also a co-founder of the Danish DPO Association, where he is a board member.

Since 2007, Tor has worked in Denmark and abroad on cyber security and compliance projects for Shell, Maersk as well as military and governmental institutions.

Today, Tor works both strategically with information security at executive and board level as well as practically with implementation and operations in collaboration with employees in legal, governance, risk and compliance, and IT departments.

Certifications: CIPM, CIPP/E, CISSP, ISO 27001 Lead Implementer, Microsoft MCSE and more.

If you have any questions, you are always welcome to contact our DPO: