Privacy policy
Data controller
We are the data controller for the processing of personal data that we process about our customers and business partners. You can find our contact details below.
GODTHJÆLP MAUGENDRE International Institute
Head office: Julius Thomsens Gade 12, 1632 Copenhagen V, Denmark
CVR no.: 27711367
Our company is not required to have an external DPO, but if you have any questions about the processing of your personal data, you can contact us at rikke.
Treatment activities
As data controller pursuant to the GDPR, we engage in the following processing activities.
Visit website
When you visit our website, we use cookies to make the website work and to improve your experience. By continuing to use our website, you accept the use of cookies as described below:
- Essential cookies: Essential for basic functionality and security.
- Functionality cookies: Save your preferences and custom settings.
- Analytical cookies: Collect data about your behavior on the website to improve our service.
You can manage your cookie preferences in your browser settings. We also use third-party cookies; please refer to their privacy policies for further information. We reserve the right to change this policy, so please check back regularly for updates.
Communication with potential customers
If you have any questions about our website or would like to hear more about our services, please contact us via:
- Contact form
- Phone number
Through this, we will process your personal data so that we can engage in dialogue with you, e.g., answer questions about our services. We only process the information that you provide to us in connection with our communication.
We will typically process the following general information: name, email address, telephone number.
Our legal basis for processing this personal data is Article 6(1)(f) of the General Data Protection Regulation.
We will delete our communications with you once it is clear whether or not you want our services.
If, in a specific case, there is a need to store your personal data for a longer period of time, this may be the case.
Customers
We need to communicate with our customers to ensure that the service is delivered correctly. This allows us to process information about names, addresses, services, special agreements, payment information, and the like.
The legal basis for processing this personal data is Article 6(1)(b) of the General Data Protection Regulation.
Once the service has been provided and any outstanding issues have been resolved, we will immediately delete the personal data.
Newsletters
We have a newsletter that you can subscribe to voluntarily – and you can unsubscribe at any time.
The purpose of the newsletter is to send subscribers emails with new information from the company, which may concern new content on the website or advertising our services.
We will only send you emails if you have given your active consent to this. This requires that you first enter your email address, to which we will then send an email so that you can confirm your subscription. In this way, we ensure that you have actually subscribed to the newsletter yourself, i.e., given your active consent.
Our legal basis for processing your personal data (i.e., your email address) in connection with the newsletter will be Article 6(1)(a) of the General Data Protection Regulation.
We will process your personal data for as long as you remain subscribed to the newsletter. When you unsubscribe from the newsletter, we will also stop sending it to you. If we have not sent you a newsletter for 1 year, your consent will lapse as a result of our inactivity.
When you unsubscribe from the newsletter, we will store your previous consent for two years after it was last used due to the statute of limitations, cf. the Consumer Ombudsman's spam guidelines, section 11.3.
Bookkeeping
We are required to store all accounting documents in accordance with the Danish Bookkeeping Act. This means that we store invoices and similar documents for accounting purposes. These may contain general personal data such as name, address, and service description.
Our legal basis for processing personal data for accounting purposes is Article 6(1)(f) of the General Data Protection Regulation.
We store this information for at least 5 years after the end of the current financial year.
Data processors
Few people can do everything themselves, and the same applies to us. We therefore have partners and use suppliers, some of whom may be data processors.
External suppliers may, for example, provide systems for organizing our work, services, consulting, IT hosting, or marketing.
- WebAmp
- Simplero
It is our responsibility to ensure that your personal data is processed properly. That is why we set high standards for our partners, and our partners must guarantee that your personal data is protected.
We therefore enter into agreements with companies (data processors) that handle personal data on our behalf in order to enhance the security of your personal data.
Disclosure of personal data
We do not disclose your personal data to third parties.
Profiling and automated decisions
We do not engage in profiling or automated decision-making.
Third country transfers
As a rule, we use data processors in the EU/EEA or who store data in the EU/EEA.
In some cases, this is not possible, and in such cases data processors outside the EU/EEA may be used if they can provide adequate protection for your personal data.
Treatment safety
We keep the processing of personal data secure by implementing appropriate technical and organizational measures.
We have conducted risk assessments of our processing of personal data and have subsequently implemented appropriate technical and organizational measures to increase the security of processing.
One of our most important measures is to keep our employees up to date on GDPR through ongoing awareness training, GDPR courses, and by reviewing our GDPR procedures with employees.
The rights of data subjects
Under the General Data Protection Regulation, you have a number of rights in relation to our processing of information about you.
If you wish to exercise your rights, please contact us so that we can assist you with this.
Right to access information (right of access)
You have the right to access the information we process about you, as well as a range of additional information.
Right to rectification (correction)
You have the right to have inaccurate information about yourself corrected.
Right to erasure
In special cases, you have the right to have information about you deleted before the time of our regular general deletion.
Right to restriction of processing
In certain cases, you have the right to have the processing of your personal data restricted. If you have the right to restrict processing, we may only process the data in the future—except for storage—with your consent, or for the purpose of establishing, asserting, or defending legal claims, or to protect a person or important societal interests.
Right to object
In certain cases, you have the right to object to our otherwise lawful processing of your personal data. You may also object to the processing of your data for direct marketing purposes.
Right to transmit information (data portability)
In certain cases, you have the right to receive your personal data in a structured, commonly used, and machine-readable format, as well as to have this personal data transferred from one data controller to another without hindrance.
You can read more about your rights in the Danish Data Protection Agency's guide to the rights of data subjects, which you can find at www.datatilsynet.dk.
Withdrawal of consent
When our processing of your personal data is based on your consent, you have the right to withdraw your consent.
Complaint to the Data Protection Authority
You have the right to lodge a complaint with the Danish Data Protection Agency if you are dissatisfied with the way we process your personal data. You can find the Danish Data Protection Agency's contact details at www.datatilsynet.dk.
We generally encourage you to read more about GDPR so that you are up to date with the rules.
