Skip navigation and search
Open in Microsoft Edge
Job vacancies Job vacancies

Cybersecurity at PostNord

PostNord has a 400-year history of securely transporting messages. Now, in the digital age, we extend this security online. At PostNord Group, we are dedicated to maintaining compliance and ensuring data security for our customers, recipients, and partners.  

Discover our cybersecurity program, the security measures we have in place to protect our customers, security tips for consumers, and requirements for partners. 

Our cybersecurity program and the Information Security Policy is built on the ISO27001 framework to support our strategic goals for protecting the business, enabling the business, and earning trust.  

Customers

We are committed to safeguarding your data and ensuring the reliability of our systems. PostNord has answered standard security questions in an assessment that has been validated and reported on by independent assurance firms.

Our Cybersecurity Risk Assessment Report shows both inherent and residual risks. 
It uses near real-time threat analysis and independent evidence validation to give customers with a holistic view of our cyber risk posture.

Access the risk assessment report

Request access to PostNord’s risk assessment report from ProcessUnity Global Risk Exchange.

Request Report
Request Report

Consumers

Scammers often send fake messages, pretending to be from PostNord or other logistics companies. To protect yourself, use PostNord's app to track your parcels and reduce fraud risk.

If you are unsure about a message, contact PostNord’s customer service. See our tips to avoid fraud traps.
 (Link to phishing tips page.)PostNord follows the GDPR (General Data Protection Regulation) to keep your personal information safe. For more details, please visit our GDPR compliance page.

Partners

We maintain strict security standards for our suppliers. Our Supplier Security Requirements and Supplier Code of Conduct set clear expectations for secure collaboration with our partners.

We work with partners to deliver goods, access systems, process data, and provide cloud services. A potential cyber-attack on an interface could affect PostNord Group’s systems, operations, or supply chains.
At PostNord, we minimize cross-infections and prevent service disruptions by requiring partners to follow our ISO 27001-based security guidelines in supplier contracts. We only work with partners who meet our Supplier Security Requirements and the Supplier Code of Conduct.

Please visit our Vulnerability Disclosure Program to report a security issue.

Security Controls

PostNord’s information security management system is supported by:

Regular vulnerability scans of our servers and web applications.


Continuous global networks monitoring with 24/7 incident response.


Strong access control with multifactor authentication (MFA).


Mandatory cybersecurity awareness training for PostNord employees and consultants.


Disaster recovery planning and testing to minimize service disruption.