At BitPeople, we take your privacy and your data seriously. Here you can read more about how we handle this.
BitPeople respects your privacy and we take the protection of your personal information seriously. This text describes how we process your personal information in different situations.
We disclose our processing of your personal data because we are required to do so under the Data Protection Regulation. You can read about the purposes and legal basis of the processing, and see an overview of recipients and storage of your personal information.
BitPeople is the data controller for the processing of personal data in the following situations:
(i) in connection with your use of our website bitpeople.dk (cookies),
(ii) when you communicate with us,
(iii) when you receive our electronic newsletter, and
(iv) in the context of customer management (CRM).
Shared data responsibility
As part of customer administration, we and our group companies are jointly data responsible for the processing of personal data as part of customer administration (CRM).
Purpose and legal basis
(i) Use of our website (cookies)
When you visit our website, we register information about your visits via cookies, including eg which pages you have looked at, which browser you use, your geographical location, which IP address you have and your login information (username and password) . This information may in some cases include personal information.
We register the information in order to offer a safe, stable and customer-friendly user experience on the website, as well as to keep statistics on the use of our website. In addition, the information is processed in certain cases in order to target marketing, based on the user’s behavior.
The legal basis for the treatment is:
for necessary functionality cookies: Section 4 of the Executive Order on Cookies, cf. Article 6 (1) of the Data Protection Regulation. 1, letter f, as we pursue our legitimate interest in being able to maintain the functionality and security of the website, and for other cookies: Section 3 of the Executive Order on Cookies, cf. Article 6 (1) of the Data Protection Regulation. 1, letter a, as we have obtained your consent.
(ii) When you communicate with us
If you as a customer, supplier or other contact us (eg via e-mail), your inquiry will often contain personal information, such as contact information, affiliation with a specific company or other personal information that you may provide to us. In some cases, we may also receive similar personal information about you from third parties, such as your employer.
We process the information in order to handle and respond to your inquiry, and to communicate with you and the company that you represent. The legal basis for our processing is Article 6 (1) of the Data Protection Regulation. 1, letter f, as we pursue our legitimate interest in being able to answer general inquiries, as well as fulfill an agreement we may have entered into with the company you represent.
(iii) Electronic Newsletters
When you sign up for BitPeople’s newsletter, we register your email address as well as the name, company and preferred format of the newsletter, in order to be able to send you relevant news, offers and tips and tricks. The legal basis for our processing is the consent you have given in accordance with section 10 of the Marketing Act.
(iv) Customer Administration (CRM)
BitPeople and the other group-related companies are data responsible for the processing of personal data in connection with customer administration in the group’s common CRM system. If you represent one of our customers, we may record information about you in our CRM system, including your name, your contact information, and information about your affiliation with a particular company. We process this information as part of our daily customer administration, including in order to maintain contact and relationship with our customers.
The legal basis for our processing is Article 6 (1) of the Data Protection Regulation. 1, letter f, as we pursue our legitimate interest in being able to handle the daily customer administration and relationship, as well as handle accounting / finance tasks in the group.
Recipients of your personal information
|Purpose||Disclosure to other data controllers|
|(i) Use of our website (cookies)||Personal information contained in cookies is passed on to third parties if you have given our consent to our use of third-party cookies on the website.|
|(ii) When you communicate with us||Personal information that may be included in our accounting material (e.g. invoices), can be passed on to the authorities, including SKAT.|
|(iv) Customer Administration (CRM)||The information is passed on to the group companies (which are jointly responsible for the processing of information in the CRM system).|
In addition, your personal information is left to our data processors. Data processor agreements have been entered into with all data processors.
Transfer to third countries
Your personal information may be transferred to the following recipients located in countries outside the EU / EEA:
• USA. The transfer bases are (i) the EU-US Privacy Shield scheme, (ii) binding corporate rules, and (iii) the European Commission’s Standard Contract Terms.
• China. The basis for the transfer is the European Commission’s Standard Contract Provisions.
• Switzerland. The basis for the transfer is the European Commission’s decision that Switzerland offers an adequate level of protection. Switzerland is thus a safe third country.
If you require further information about our transfer of personal data outside the EU and the EEA, including a copy of the relevant security measures, etc., you can request this by exercising your rights as set out below in the section “Your rights”.
Storage of your personal information
We only retain your personal information for as long as is necessary to fulfill the purposes for which we have collected the information, unless otherwise provided by law. We use the following general deletion deadlines:
|(ii) When you communicate with us||Information that is included in our accounting material (eg invoices) is generally stored for 5 years from the end of the financial year to which the information relates, in accordance with the accounting rules to which we are subject, cf. Chapter 5 of the Accounting Act.
The personal information we process in connection with our general communication with you (such as inquiries via the chat or specific support tasks, etc.), is generally deleted no later than 12 months after your most recent inquiry has been completed / processed.
|Information related to the sending of newsletters, etc., is generally deleted 2 years after the sending of our latest newsletter, unless you have previously withdrawn your consent.|
|(iv) Customer Administration (CRM)||Customer contact information in the CRM system is generally deleted 6 months after the end of the financial year in which the customer relationship is finally terminated.|
The information will be deleted in accordance with the above deadlines, unless we have a specific need to process the information for a longer period of time, e.g. in connection with a case or agreement.
Under the Data Protection Regulation, you have a number of rights in relation to our processing of information about you. You can read about them below.
The right to withdraw consent
In the situations where you have given consent to our processing of your personal data, you have the right to withdraw your consent at any time. You can do this by contacting us at the contact information below under the section “Contact”. If you choose to withdraw your consent, it does not affect the legality of our processing of your personal data on the basis of your previously given consent and up to the time of the withdrawal. Therefore, if you withdraw your consent, it will only take effect from this time.
Right to view information (right of access)
You have the right to access the information we process about you, as well as a number of additional information.
Right to rectification (correction)
You have the right to have incorrect information about yourself corrected.
Right to deleting
In certain cases, you have the right to have information about you deleted before the time of our general general deletion occurs.
Right to limitation of treatment
In certain cases, you have the right to have the processing of your personal data restricted. If you have the right to have the processing limited, we may in future only process the information – apart from storage – with your consent, or for the purpose of legal claims being established, asserted or defended, or to protect a person or important public interests.
Right to object
In certain cases, you have the right to object to our otherwise lawful processing of your personal data.
Right to transmit information (data portability)
In certain cases, you have the right to receive your personal information in a structured, commonly used and machine-readable format and to have this personal information transferred from one data controller to another without hindrance.
Complaint to the Danish Data Protection Agency
If you want to complain about our processing of your personal information, you have the opportunity to contact the Danish Data Protection Agency at www.datatilsynet.dk. You can read more about your rights in the Danish Data Protection Agency’s guide on data subjects’ rights, which you can find at www.datatilsynet.dk.
You are welcome to contact us if you have any questions about the protection of your personal information or if you would like more information about your rights. You can contact us at firstname.lastname@example.org
Sintrupvej 71.b, 1.tv.
CVR-no. DK 26428904