Bifrost LedgerBifrost Ledger← Back to Home

Privacy Policy – Bifrost Ledger

Last updated: 27th of March 2026

This Privacy Policy explains how Moralis AS ("Bifrost Ledger", "we", "us", or "our") processes personal data and technical information in connection with the Bifrost Ledger service.

Bifrost Ledger provides a secure integration layer between enterprise resource planning (ERP) systems and Microsoft Excel (Microsoft 365). The service enables structured financial data to flow directly into the customer's spreadsheets under the customer's control.

Company details:

  • Legal entity: Moralis AS
  • Organization number: 937 332 149
  • Address: Rugdefaret 6, 1459 Nesodden, Norway
  • Contact email: post@bifrostledger.com

Core Privacy Principle

Bifrost Ledger does not store, view, analyze, or persist customer accounting data.

The service acts solely as a secure technical conduit between the customer's ERP system and Microsoft Excel. Financial data remains within the customer's own systems and Microsoft Excel environment.

Data We Process

Bifrost Ledger does not store or retain general ledger entries, accounting transactions, invoices, vouchers, payroll data, customer or supplier balances, or financial statements.

To operate the service securely and reliably, Bifrost Ledger processes limited technical and administrative data, including:

  • Organization identifiers
  • User identifiers
  • License and subscription information
  • Authentication metadata
  • Configuration data
  • Audit logs

Technical Metadata

During normal operation, the Service collects and processes limited technical metadata to deliver, secure, and improve the Service:

  • Authentication data: email address, hashed password, and session tokens.
  • Usage logs: timestamps, request types, and response status codes. These logs do not contain ERP data or financial information.
  • ERP connection metadata: ERP type and connection status. ERP credentials are encrypted at rest.
  • Billing data: billing address, VAT number, and payment method references as provided during checkout. Payment processing is handled by Stripe; Bifrost Ledger does not store credit card details.

All metadata is currently processed within the EU/EEA. No technical metadata is sold, shared for advertising purposes, or used for profiling.

Data Handling

Bifrost Ledger acts as a secure conduit between your ERP system and Excel. Financial data passes through our servers but is not persisted. Data may be temporarily held in memory during processing to ensure performance and is automatically discarded shortly after delivery.

Audit logs recording which user accessed which data category (but not the data itself) are retained for up to 12 months for security and compliance purposes.

Purpose and Legal Basis

Personal data is processed for the purpose of providing and securing the service, enforcing licensing terms, and fulfilling contractual and legal obligations. Processing is based on contract performance, legitimate interest, and applicable legal requirements.

GDPR Compliance

Moralis AS processes personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR) and applicable Norwegian data protection legislation.

Depending on context, Bifrost Ledger acts as a data processor for customer-related technical metadata and as a data controller for account and operational data necessary to deliver the service.

Security

Bifrost Ledger applies appropriate technical and organizational security measures, including:

  • Encryption in transit (TLS 1.2/1.3)
  • Role-based access control
  • IP restrictions where applicable
  • Centralized audit logging

Cookies

Bifrost Ledger uses cookies to ensure the service functions correctly and to improve your experience. You can manage your preferences at any time via the cookie consent banner.

  • Essential cookies — required for authentication, session management, and core functionality. These cannot be disabled.
  • Functional cookies — store preferences such as your selected currency. Optional, enabled by default.
  • Analytics cookies — help us understand how the product is used so we can improve it. Disabled by default and only set with your consent.
  • Marketing cookies — used to measure the effectiveness of marketing efforts. Disabled by default and only set with your consent.

Specific cookies used: next-auth.session-token (essential, authentication), preferred_currency (functional, currency preference), cookie_consent (essential, stores your cookie preferences).

Data Sharing and Retention

Bifrost Ledger does not sell or trade customer data. Data may be processed by trusted service providers solely for service delivery purposes.

Data is retained only as long as necessary to meet contractual, legal, and security requirements.

Customer Rights and Contact

Customers may request access to, correction of, or deletion of personal data in accordance with GDPR. Requests can be directed to post@bifrostledger.com.

This Privacy Policy may be updated periodically. The latest version will always be available on our website.

See also our Terms of Use

We use cookies to ensure the site works properly and to improve your experience. Privacy Policy