Whistleblower Policy

Whistleblowing and reporting of irregularities

We value and protect a respectful culture and a high ethical standards. This means that we work proactively with prevention and detection of serious breaches, unacceptable conditions, and irregularities in our activities in accordance with applicable laws and regulations.

The importance of reporting

It is important for us to mitigate risks and maintain confidence in our operations.If you, as an employee, partner or another stakeholder, should discover irregularities in our operations, we encourage you to use our whistleblower channel to report them. This way, we can deal with irregularities as quickly as possible.

We encourage you to report any suspected abuse that may be of importance to us, so that we can investigate. This may include suspicions of fraudulent, unethical, or negligent conduct, in breach of laws and regulations.

All information should be provided in good faith. You do not need to provide evidence of your suspicion. It is sufficient that you, at the time of reporting, have reasonable grounds to believe that the information about the misconduct is true and accurate.

How well are you protected?

The registration and handling of personal data is strictly confidential and classified as secret. You can choose to report anonymously or provide your name. We would like you to report openly by providing your name and contact details, as this facilitates our investigation.

The Whistleblower Software is an external system that is separate from Crosskey’s IT system and does not track IP addresses or other information that can identify the person submitting a report.

If you are an employee or have another work-related relationship with Crosskey Banking Solutions Ab Ltd and your report concerns suspected misconduct relating to a breach of EU or national law, your case will be handled in accordance with the Whistleblower Act*.

You have the right to request access to, correction of, or potentially deletion of the personal data related to your report. You also have the right to obtain information about what is stored about your case by contacting Crosskey’s Data Protection Officer or the responsible supervisory authority.

Supervision of the processing of personal data carried out in connection with the whistleblower channel is exercised by the Office of the Data Protection Ombudsman in Finland or the Swedish Authority for Privacy Protection.

* Act on the protection of persons reporting breaches of EU and national law in Finland (1171/2022) or Act (2021:890) on the protection of persons reporting misconduct in Sweden (“Whistleblower Act”).

Submit a report

To file a report, click “Create a report” below and follow the instructions provided. You can submit a report in English, Swedish, or Finnish. Reports made in any other language will not be processed.

Reporting externally

Under certain circumstances, and as permitted by EU directive and national law, you can report misconduct externally to a public authority. Examples of external reporting channels are the centralised reporting channel of the Office of Chancellor of Justice in Finland. For more information and to make an external report, please refer to the authority’s website.

Complaints or comments

Customer complaints and individual disputes should not be reported via our whistleblower channel. Such cases are referred to our ordinary channels such as your Account Manager, Project Manager or other relevant person.