DATA PROTECTION POLICY FOR SDK
Date: June 2018.
It is important for us in the SDK, that you as a co-operation partner feel comfortable with our processing of the personal data that comes into our possession, when you do business with us. This policy on the protection of personal data is a supplement to, but does not replace, any other policies or terms and conditions which have been otherwise established between us.
2. Who is the controller of your personal data?
The Danish company, SDK is the controller of the personal data you submit to us within the SDK A/S. SDK A/S is responsible for your personal data under The General Data Protection Regulation (“GDPR”) and local laws.
SDK A/S CVR: 56252312
Authorized personal data representative is Frederik Gustafsen
3. Where do we store your data?
The data we collect from you is stored within the European Economic Area (“EEA”) but may also be transferred to and processed in a country outside of the EEA. Any such transfer of your personal data will be carried out in compliance with GDPR.
Companies within the SDK A/S only transfer personal data to third countries (non-EEA countries), if certain conditions are complied with. A transfer may, for instance, take place if the EU Commission has decided that the third country in question ensures an adequate level of protection, or has provided appropriate safeguards, such as entering into an agreement comprising the EU standard contractual clauses with the recipient of the personal data or choosing a recipient that adheres to a specific ade- quacy scheme (such as EU-US Privacy Shield).
4. Who can access your data?
If the purpose requires it, your personal data may be shared internally in SDK A/S. We never sell or otherwise pass on your data to external third parties for marketing purposes.
5. Which personal data is processed by us?
SDK collects and processes your personal data. The data we collect and process in given situations varies, but the personal data may be the following:
- Master data, including name, address, telephone number, date of birth, gender and e-mail address.
- Personal data sent to us in chats and/or e-mails for the legitimate interest of our relationship purposes
Your personal data collected through the various technologies, channels and platforms may be combined.
The main legal basis for processing your personal data is for entering into a contract or prior to entering such.
6. What is the purpose of the processing?
We process personal data in SDK A/S regarding employees, customers, vendors and other co- operation partners for business, financial and administrative purposes.
The processing of personal data in SDK A/S is in accordance with the following principles:
- We only process personal data lawfully, fairly and in a transparent manner in relation to the data subject
- We only collect personal data for specified, explicit and legitimate purposes
- We only process adequate and relevant personal data, which is limited to what is necessary in relation to the purposes for which they are processed
- We make sure that personal data is accurate and kept up to date. Inaccurate personal data is erased or rectified without undue delay
- We delete personal data that is no longer necessary for the purposes for which the personal data were processed
- We ensure that personal data is processed in a manner that ensures appropriate security of such personal data.
7. How do we protect your personal data?
We use technical and organisational security measures to protect your personal data from manipulation, loss, destruction or access by unauthorized persons, or processing contrary to legislation. Our security procedures are regularly revised based on the newest developments in technology and threat assess- ments.
8. What are your rights?
You are entitled to receive information about and object to the processing of your personal data. Upon sending your request to SDK, you are entitled to have corrected, deleted or blocked any data that turns out to be incorrect or misleading or has been processed contrary to the personal data legis- lation.
Furthermore, you have the right to object to processing of your personal data that is based on the legitimate interest of SDK A/S. The SDK will not continue to process the personal data unless we can demonstrate legitimate grounds for the process, which overrides your interest and rights or due to legal claims.
9. For how long do we store personal data?
We don’t store personal data in a manner that makes it possible to identify you for a longer period than necessary considering the purpose of the processing of the data.
10. Right to complain with a supervisory authority
If you consider us to process your personal data in an incorrect way, please contact us. You also have the right to raise a complaint to a supervisory authority.
We take data protection very seriously and therefore have a department that handles requests in relation to your rights stated above in subject 8.