Privacy policy

This privacy policy covers the processing of personal data in FunNordic ApS:

FunNordic ApS

Rugkobbel 260

6200 Aabenraa

Contact person: Caroline Rasmussen – personal data manager

Phone number: 93 93 04 99

e-mail: cr@funnordic.dk

CVR no.: 32 27 70 20

(Hereinafter referred to as the “Company”)

Introduction:

We process your personal data in the event that you contact the Company for the purpose of customer or supplier relations. We collect information from the contact form on our own website (webshop), telephone contact with us, and if you contact the Company as a supplier.

You are welcome to contact the company at any time using the above information if you have any questions about this privacy policy, the processing of data or other matters relating to personal data law.

All personal data is processed in accordance with the rules of Danish law and the EU General Data Protection Regulation (Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (EEA-relevant text).

Information:

Customers:

For private customer relationships, we collect information about you when you contact the company. The information includes name, address, telephone number and email address.

For business customers, we collect information about you when you contact the company. The information includes your name, telephone number and email address, and in some cases we also collect information about your employment, including job title, the company’s address and the company’s CVR number.

In addition to the above, the company does not process personal data about customers in the course of a regular customer relationship. If we need to process additional information about you, you will be informed of this before we collect the information.

In some cases, we collect information about you from public registers. You will be notified of this after the collection has been made, together with receipt of the basis for collecting the data.

We do not process confidential and/or sensitive information about you in our customer relationship.

Suppliers:

We collect information about you if you are a representative of one of our suppliers. The information includes name, phone number and email address. Otherwise, we do not register any personal data about you within your employment relationship.

We register our suppliers with company address, CVR. No. and in some cases we register the representative’s job title if this has been provided in our other communication.

We do not process confidential and/or sensitive information about our supplier contacts.

Employees:

We collect information about you as an employee, up to and during your employment with us. This information includes name, address, phone number, email, job title, bank details, salary, clothing and shoe sizes, etc. All of this information is general information that we have either received from you or retrieved from public registers.

We also process information about your CPR number, special social problems and your financial circumstances. We do this when we need to obtain information for salary and the like, and the information we have received from you at the time of employment.

We process a small amount of confidential data, including trade union information, health information in the event of illness, genetic or biometric data, if we need to make special arrangements for the workplace or similar. If we need to process other confidential information about you, you will be notified separately.

Common:

For documentation of work performed and for marketing purposes, we take pictures of various elements. These images may include people in or around the company. We use images that we have rights over, even if they contain identifiable people.

Purposes:

The purpose of processing personal data about our customers is to identify the customer in order to deliver the agreed service to you as a customer. We do this in accordance with Article 6(1)(B) of the GDPR, contractual relationships.

We also process information about you as a customer for the purpose of financial settlement and traceability in the company and documentation of work performed. We do this in accordance with Article 6(1)(F) of the GDPR, legitimate interest.

The purpose of processing personal data about our suppliers is continuous cooperation for the purpose of internal knowledge, registration of financial balances and documentation of written agreements entered into. We also do this in accordance with Article 6(1)(B) of the GDPR, contractual relationship and Article 6(1)(F), legitimate interest.

The purpose of processing data about our employees is personnel administration and payroll administration, as well as the mutual fulfillment of contractual obligations. In addition, the purpose of part of the processing is to enable the employee to perform his or her work tasks within the company’s systems and to enable the employee to communicate with the outside world on behalf of the company. We carry out this processing on the basis of the employment contract and associated obligations, cf. section 12 of the Danish Data Protection Act and Article 6(1)(B) of the General Data Protection Regulation.

Disclosure:

We disclose your data to our data processors in all cases. We do this in order to maintain a high level of IT security and security against loss of your data.

All of the company’s data processors work under a data processing agreement entered into with the company, and our data processors are continuously monitored for compliance with IT security and changes.

Data processing agreements can be presented upon request from the data subject.

In some cases, we disclose your data to our business partners for the purpose of providing specific services requested by you as a customer, in which case you will be informed of the disclosure after this has happened and who is the recipient of your data. We also disclose information about our business partners to our customers for the purpose of clarifying specific services ordered by the customer. Here, you as a business partner will be informed after the disclosure, after it has been made and who is the recipient of your data.

Storage and processing of data:

The company stores your data in our IT systems. All data is registered electronically in order to enable data retrieval and to minimize the risk of data breaches.

Data that is not received electronically is transferred to an electronic version, after which we destroy physical copies.

We restrict access to your personal data, which means that not all employees have access to all data. The employees who work with the registration and processing of personal data in the company follow instructions from the company’s management.

Storage periods:

We store your data in accordance with the rules of the Danish Bookkeeping Act (5 years plus the current accounting period) and other relevant legislation. If your data is not used for financial documentation, your data will be deleted no later than 36 months after the last contact.

In the case of warranties to our customers and from our suppliers, the company will keep your data until the warranty period has expired plus up to 6 months.

In case of disputes, your data will be stored until the case is settled and all parameters of the decision are met for all parties.

Inquiries:

We process all inquiries regarding personal data and related policies within the set deadlines. This means that we will respond to your data request at the earliest opportunity and without undue delay.

If we do not have any data on you, you will be notified by this system search.

We reserve the right to process responses to requests for access, rectification, etc. within 4 weeks of receipt.

Your rights:

In connection with the company’s processing of your personal data, you have the following rights.

The right to insight into what data the company has about you and how it is processed.
The right to rectification of incorrect information. However, information that was correct at the time of collection will not be corrected.
The right to be erased in our systems and to have further processing stopped.
The right to object to the processing if it can be proven that the processing does not fall under the authorization of the purpose.
The right to complain to the Danish Data Protection Agency (www.datatilsynet.dk)

You can read more about your rights on the Danish Data Protection Agency’s website, in the relevant guidelines. Use the link immediately above.

In addition, you are welcome to contact the company at the above information for other related questions.