Categories of personal data

Legal basis for processing (only relates to personal data on EU and EØS citizens)

Storage period

Recipients and potential transfers to third countries (transfers to third countries only relating to personal data on EU, – EØS and Swiss citizens)

Contact information, payment information (only with respect to sole proprietorships and small partnerships), signatures and job title.

Ordinary personal data is processed because they are necessary to enter into and fulfill the contract with the customer or supplier, cf. Article 6(1)(b) of the GDPR.

Personal data of potential customers and business partners (leads) is processed on the basis of our legitimate interest in being able to contact them, cf. Article 6(1)(f) of the GDPR.

Information is deleted 3 years after the end of the business relationship, unless longer storage is required, for example in accordance with the rules of the Danish Accounting Act (5 years storage of accounting material), or if the information is necessary for a claim or guarantee that extends beyond the 3 years.

Information regarding potential leads and partners will be deleted after 24 months.

In some instances, your personal data is passed on to third party service providers when we believe it is necessary for us as a result of the operation of our business, or if it follows from a legal obligation following from us being data controllers.

We pass on your personal information in a number of different situations:
‍
Information that is included in our accounting material, or in documentation for a specific agreement, is passed on to the relevant authorities when, for example, we are obliged to do so in accordance with the law. Accounting material and payment information may also be passed on to the providers of our invoicing systems and bookkeepers.

Furthermore, your contact information may be processed by our email notification systems and customer management system such as HubSpot, and in that connection be shared with our providers of these systems.

In addition, we use various process management tools to organise and improve our services and platform.

Finally, we use Leadfeeder’s lead generation software. In some cases, your data is transferred to countries outside the EU and the EEA. As a rule, personal data are only transferred to countries that the European Commission has assessed to be secure. In some cases, however, transfers may occur to insecure third countries, including the United States.

In the event that your information is transferred to insecure third countries, such as the US, the receivers are certified under the EU-US Data Privacy Framework or have entered the European Commission's standard clauses. In addition, our data processors have implemented additional technical and organisational measures to ensure a high level of data security.

Categories of personal data

Legal basis for processing (only relates to personal data on EU and EØS citizens)

Storage period

Recipients and potential transfers to third countries (transfers to third countries only relating to personal data on EU, – EØS and Swiss citizens)

Identification data, including unique IDs, IP addresses, data on the device and browser used to access the website and data on behaviour on the website.

Personal data are processed based on our legitimate interests in accordance with article 6(1)(f) of the GDPR.

It is our assessment that our legitimate interest takes precedence over the visitors, as the information is not directly personally identifiable, is general and is not of a private or intrusive nature and is only passed on to third parties to a limited and / or encrypted extent.

To the extent that you have given consent to cookies, we process personal information collected through this for the purposes for which you have given consent, e.g., statistics or marketing, cf. Article 6(1)(a) of the GDPR. You can withdraw your consent in your browser at any time, delete your cookies by following the instructions in our cookie policy or by contacting us.

Personal data contained in cookies are deleted when the cookie expires or is deleted by the user (see our cookie policy).

We use Google Analytics 4, and data at user and event level are anonymised according to the strictest possible settings (https://support.google.com/analytics/answer/7667196?hl=en), i.e., currently two months.

Other than that, analysis data in personally identifiable form are stored only to a limited extent and for a limited time only, as the data are automatically aggregated (anonymised) when statistics are generated.

Certain analysis data will be disclosed to Google, Facebook and LinkedIn, if you have consented to statistics and marketing cookies. This also appears from the cookie which popped up when you first visited our website and is also described in our cookie policy.

Finally, we use Leadfeeder. In some cases, your data is transferred to countries outside the EU and the EEA. As a rule, personal data are only transferred to countries that the European Commission has assessed to be secure. In some cases, however, transfers may occur to insecure third countries, including the United States.

In the event that your information is transferred to insecure third countries, such as the US, the receivers are certified under the EU-US Data Privacy Framework or have entered the European Commission's standard clauses. In addition, our data processors have implemented additional technical and organisational measures to ensure a high level of data security.

Categories of personal data

Legal basis for processing (only relates to personal data on EU and EØS citizens)

Storage period

Recipients and potential transfers to third countries (transfers to third countries only relating to personal data on EU, – EØS and Swiss citizens)

Identification and contact information, information provided in applications, CVs and related documents, e.g., diplomas, and other personal data relevant to the assessment of an applicant.

We may perform personality tests on our applicants. In this regard a snapshot picture will be taken of the applicant while taking the personality test.

Furthermore, we collect publicly available information via the candidate’s social media, particularly Facebook and LinkedIn.

Personal data are processed based on our legitimate interests in accordance with article 6(1)(f) of the GDPR. Our legitimate interest consists in the fact that the applicant has independently chosen to apply for the position, and it is necessary for us to process the data in order to consider the applicant for the position.

Unsolicited job applications and accompanying material will be deleted after they have been read or no later than 3 months from receipt, unless consent is obtained from the applicant for longer storage, e.g., in connection with future positions.

Requested applications and accompanying material will be deleted after the recruitment round is completed or no later than 3 months after, unless consent is obtained for longer storage, e.g., in connection with future positions.

It may be necessary to keep the information longer than 3 months if, based on the job interview, the correspondence with the applicant or other circumstances, there is a concrete or imminent risk that we will be met with a claim as a result of the application process, e.g., if an applicant might think that he or she has been rejected due to his or her age or health.

Personality tests are deleted after the recruitment process unless the applicant is hired. Then the personality test will be stored during the employment.

Your personal information is left to our data processors when necessary to the recruitment process:

We may in this connection process your information through our email software and other file storage and management systems. There are no transfers to third countries, as we only use servers located in the EU.

Moreover, we use the job portals, LinkedIn and the Hub.
‍
In the event that your information is transferred to insecure third countries, such as the US, the receivers are certified under the EU-US Data Privacy Framework or have entered the European Commission's standard clauses. In addition, our data processors have implemented additional technical and organizational measures to ensure a high level of data security.