Privacy Policy

1. Introduction

This privacy policy explains how personal data is processed by Netsocietal ApS (henceforth referred to as “we”, “us”, “our”) under the General Data Protection Regulations (GDPR).

We process information in various situations as explained below. These situations include:
– Website
– Business purposes including surveys/interviews
– Events
– Recruitment

2. Controller

Netsocietal ApS (contact details included at the end) acts as a data controller for the processing of personal data in connection with the purposes mentioned below.

3. Description of the processing

3.1 Website

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where your data is sent

Visitor comments may be checked through an automated spam detection service.

3.2 Business purposes including surveys/interviews

We process personal information for business purposes including surveys, interviews, reports, contracts, and general communication. Below are listed situations in which we process personal information.

  • when communicating with you as a customer, partner, supplier (or subcontractor), or as another third party. This includes managing and responding to general inquiries.
  • when performing surveys, stakeholder interviews, and preparing reports
  • for bookkeeping purposes

Types of data processed

We process name and contact information, titles, and positions. We also maintain information about the type of relationship we have with you and the business you represent and the subjects of inquiry.

For interviews, surveys, and reports, we process information including name, title, and position. We collect and process answers/opinions to survey and interview questions, which may be subject to voice and video recording.

We process information stated on invoices, contracts, proposals etc.

Data retention

In case of an existing business relationship, personal information are processes as long as the relationship exists. In case of a terminated business relationship, information are retained up to 6 months after the end of the financial year in which the customer, supplier, or partner has ended the relationship. For general inquiries without existing business relationship, personal data are processed up to 15 months after the last communication.

Data collected during surveys and interviews are retained up to 15 months after project termination, including providing a report to the customer.

Information stated on invoices etc. are kept up to 5 years after the end of the financial year in which the business relationship has ended.

3.3 Events

We process personal information for the purpose of marketing events, fairs, conferences, webinars, pitches etc.

The information we process for these purposes include name and contact information, title, position, and the relationship to you and the business that you present.

These data are retained up to 15 months after the last communication.

3.4 Recruitment

Processing your personal data is necessary during the recruiting process, including assessing the fit of your skills with the content of the position and you as a person.

The personal data processed in this context includes the information included on your CV and any other material you may have forwarded with your application and information we may request in addition, such as information about your previous employer, work assignments, skills and performance, as well as interpersonal skills.

In case we wish to receive references you will be ask for your approval before requesting references. Information processed with regards to references include information about your previous employment, including work assignments, skills and performance.

The recruitment process may include personality tests and/or competency tests etc. to identify your personal preferences, skills, and performances. This allows us to have a discussion with you about your personal resources and conduct.

Depending on the position, responsibilities, and powers involved, we may ask you to show your criminal record certificate.

During the recruitment process including interviews, we may take notes about the information you disclose.

In case we offer you a position, we will process your personal information when drafting the employment agreement. This is necessary for staff administration purposes.

Data retention

In case your application is rejected, your data is generally deleted once the recruitment process is completed and generally no longer than 15 months after you received the rejection.

In case we employ you, your personal data processed during the recruitment – if relevant – will be retained on your personal file in accordance with the applicable retention periods. You may be further notified in this case.

4. Recipients

We may disclose your personal data to relevant business partners, including external advisors.

We may use data processors to store the data.

5. Transfer to third countries

We transfer your data to data processors located third countries, which includes the United States.

6. Your rights

To start with and depending on the situation, you have the following rights

  • Right to withdraw consent. You can withdraw your consent to processing your personal data any time by contacting us (see contact information below). If you withdraw your consent, the withdrawal will not affect the lawfulness of processing that has already been carried out based on your consent.
  • Right of access. You have the right to have confirmed whether collection or processing your personal data has taken place, and, if so, you have the right to request a copy of your personal data in digital format.
  • Right of rectification. You have the right to require that we correct any inaccurate personal data, and that we complete incomplete personal data.
  • Right of erasure. In certain situations, you have the right to request that we erase personal data concerning you – for example, if it is no longer necessary for the purposes in which it was originally collected.
  • Right to restrict processing. In certain situations, you have the right to request that we restrict the processing of your personal data – for example, if you believe that the personal data is not accurate or lawfully processed.
  • Right to object to processing. In certain situations, you have the right to request that we stop processing your personal data.
  • Right to data portability. In certain situations, you have the right to receive the personal data you have provided us with in a structured, commonly used, machine readable format, and the right to have us transmit the data to another entity, where technically feasible.

You can read more about your rights in the Danish Data Protection Agency’s guidelines in Danish (datatilsynet.dk) and English (datatilsynet.dk/english).

Please contact us if you wish to exercise any of your rights. You find the contact details below.

7. Lodging a complaint to a supervisory authority

In case you want to lodge a complaint to a supervisory authority about our processing of your personal data, you can do so by contacting the Danish Data Protection Agency via their website (datatilsynet.dk).

8. Contact

Our contact information is

Netsocietal ApS

CVR number: 44565986

Store Kannikestræde 18, 3

1169 Copenhagen K

Denmark

email: info@netsocietal.com