PRIVACY POLICY
Privacy policy for customers and website visitors
Last updated April 2023
1. Identification of the controller
ag analytics A/S is the data controller of the personal data provided below under point 2.
ag analytics A/S
Matrikel 1
Højbro Plads 10
1200 København K
Denmark
+45 7020 1075
info@aganalytics.dk
It is important to us that we collect and process your data securely and lawfully.
We have prepared this privacy policy, which describes how we collect and process your data.
2. Purpose, legal basis for processing, categories of personal data and storage
When we, as a data controller, process data that is personally identifiable to you, we must inform you, among other things, of the purpose of the processing, the legal provision we use as the legal basis for the processing and the categories of personal data we process about you.
Customer management, including leads, offers and initial conversations. The purpose of this processing activity is to create collaborations and offer our product to potential customers.
The processing of this data is based on GDPR Article 6(1)(a) (consent) when collecting and processing leads. The processing is based on GDPR Article 6(1)(b) when leads lead to processing for the purpose of concluding a contract.
Under this purpose, we process general personal data, including name, e-mail, telephone number, position, place of work (company name), address, CVR number, company country, number of locations, employee information about accounting at the customer, which system the customer uses and whether they are part of a chain and which importer they are part of, to the extent that these mean processing of personally identifiable information.
We delete on an ongoing basis, although we keep your data for a maximum of 5 years if no cooperation or contractual relationship is established.
Customer management in contractual relationships. The purpose of this processing activity is to manage agreements with customers and partners, to maintain the agreement and to provide services as an extension of the organization’s services.
The processing is based on Article 6(1)(b) of the GDPR.
Under this purpose, we process general personal data, including name, e-mail, telephone number, position, place of work (company name), address, CVR number, company country, number of locations, employee information about accounting at the customer, which system the customer uses and whether they are part of a chain and which importer they are part of, to the extent that these mean processing of personally identifiable information.
For customers, data will be deleted no later than 5 years + current financial year after termination or expiry of contract. For subjects (not customers), we delete data no later than 5 years + current financial year after the last contact with the subject.
Marketing on websites and social media. The purpose of this processing activity is to share information about the organization’s services and products.
The processing is based on GDPR Article 6(1)(f) (legitimate interest), as we pursue our marketing interest and interest in targeting our material to reach as many potential customers as possible. In cases where we share material, including images, video or written statements, which contain personally identifiable information about our employees, our customers or business partners, the processing is based on GDPR Article 6(1)(a) (consent).
This activity involves the processing of ordinary personal data, including name, work email, place of work (company name) and the information contained in the material.
We delete the content if it is no longer deemed relevant and necessary for the fulfillment of the purpose. We will delete your data in case of withdrawal of consent.
3. Categories of beneficiaries
We treat the information confidentially and, as a general rule, we do not disclose your data. However, this may be done to external suppliers, including data processors, who assist our organization with the operation of the business.
4. Your rights as a data subject
When we process personally identifiable information about you, you have a number of rights under Chapter 3 of the GDPR that you can claim from us as the controller of your personal data.
The right to withdraw consent. If you have given consent, you can always contact us to inquire about the scope, and you can also withdraw your consent at any time. However, withdrawal of consent does not affect the lawfulness of the processing based on consent before the withdrawal. We will cease processing your personal data if you withdraw your consent, unless we can continue processing on another legal basis.
The right of access. You have the right to obtain confirmation as to whether the controller is processing your personal data and, where applicable, the right to obtain the data we process about you, including certain other information.
The right to rectification. You have the right to have inaccurate personal data concerning you rectified.
The right to erasure. In certain cases, you have the right to have your personal data erased before we erase your data ourselves.
The right to data portability. You have the right to receive your personal data that you have provided to us in a machine-readable format and you have the right to have your data transmitted to another controller, where technically feasible.
The right to restriction of processing. In certain cases, you have the right to restrict the processing of your personal data. If you have the right to restrict processing, we may in future only process the data – with the exception of storage – with your consent, or for the establishment, exercise or defense of legal claims, or for the protection of a person or important public interests. In this context, it is noted that archiving purposes are to be considered as important public interests.
The right to object. In certain cases, you have the right to object to our otherwise lawful processing of your personal data.
You can read more about your rights in the Danish Data Protection Agency’s guide on data subjects’ rights.
5. The right to complain to the Data Protection Authority
As a data subject, you have the right to lodge a complaint with the Danish Data Protection Agency if you believe that our organization is not complying with our obligations under the GDPR. The Data Protection Authority has the following contact details:
Data Protection Authority
Carl Jacobsens Vej 35, 2500 Valby
E-mail: dt@datatilsynet.dk
Telephone: 33 19 32 00