Privacy Policy
Data Controller
We are the data controller for the processing of the personal data we handle about our customers and partners.
Consit A/S
Roskildevej 16
2620 Albertslund
CVR No.: 32646514
If you have any questions regarding the processing of your personal data, please contact us via info@consit.dk.
Processing Activities
As the data controller under GDPR, we have the following processing activities.
Website Visits
When you visit our website, we use cookies to ensure the website functions properly, which you can read more about in our cookie policy.
Communication with Potential Customers
When you have questions about our site or wish to learn more about our services, you can contact us via:
- Contact Form
- Phone
Through this, we will process your personal data to engage in dialogue with you, such as answering questions about our services. We only process the information you provide in connection with our communication.
Typically, we process the following common information: name, email, phone number, position, company name.
Our legal basis for processing these personal data is Article 6(1)(f) of the GDPR.
We will delete our saved communication with you no later than six months after our last contact. In special cases, we may need to retain your personal data for a longer period.
Customers
We need to communicate with our customers to ensure that the service is delivered correctly. Through this, we may process information such as name, address, services, special agreements, payment information, and similar.
Our legal basis for processing these personal data is Article 6(1)(b) of the GDPR.
Once the service has been delivered and any outstanding matters have been concluded, we will immediately delete the personal data.
Newsletter
We have a newsletter that is voluntary to subscribe to, and you can always unsubscribe.
The purpose of the newsletter is to send registered emails with new information about products, events, etc.
We will only send you emails if you have actively consented to this.
Our legal basis for processing your personal data in connection with the newsletter is Article 6(1)(a) of the GDPR.
We will process your personal data as long as you are still subscribed to the newsletter. Upon unsubscribing from the newsletter, we will also stop sending it to you.
Webinars
We regularly hold webinars, which are voluntary to sign up for, and you can always unsubscribe.
The purpose of our webinars is to inspire and share knowledge with our customers and other interested parties.
Our legal basis for processing your personal data in connection with webinars is Article 6(1)(a) of the GDPR.
By registering, you also consent to receiving newsletters from us, as well as webinar information from GotoWebinar, the tool we use for hosting our webinars.
We will process your personal data as long as you are still subscribed to the newsletter.
Accounting
We are required to keep all accounting documents according to the Danish Bookkeeping Act. This means that we store invoices and similar documents for accounting purposes, which may include common personal data such as name, address, service description.
Our legal basis for processing personal data for accounting is Article 6(1)(c) of the GDPR.
We store these details for a minimum of 5 years after the end of the current financial year.
Job Applications
We welcome job applications to assess if they match a hiring need in our company.
If you send us your job application, our legal basis for processing your personal data is Article 6(1)(f) of the GDPR.
If you send an unsolicited application, we will immediately assess if your application is relevant, and if not, we will delete your information.
If you apply for an advertised job, we will discard your application immediately after the right candidate has been found for the position.
Data Processors
Few can handle everything themselves, and the same goes for us. We have partners and use suppliers, some of whom may be data processors.
External suppliers may, for example, provide systems to organize our work, services, consulting, IT hosting, or marketing.
It is our responsibility to ensure that your personal data is processed properly. Therefore, we set high standards for our partners, and they must guarantee that your personal data is protected.
Disclosure of Personal Data
We do not disclose your personal data to third parties.
Transfers to Third Countries
We primarily use data processors within the EU/EEA or those who store data within the EU/EEA.
In some cases, this is not possible, and data processors outside the EU/EEA may be used, provided they offer appropriate protection for your personal data.
Processing Security
We keep the processing of personal data secure by implementing appropriate technical and organizational measures.
We have carried out risk assessments of our processing of personal data and have implemented appropriate technical and organizational measures to increase processing security.
One of our key measures is to keep our employees updated on GDPR through continuous awareness training, GDPR courses, and by reviewing our GDPR procedures with our employees.
The Rights of Data Subjects
Under the GDPR, you have several rights concerning our processing of your information. If you wish to exercise your rights, please contact us so we can assist you.
Access
You have the right to access the data we process about you, as well as additional information.
Rectification
You have the right to have incorrect information about you corrected.
Deletion
In certain cases, you have the right to have information about you deleted before our standard deletion period.
Restriction of Processing
In certain cases, you have the right to limit the processing of your personal data. If you have the right to restrict processing, we may only process the information – apart from storage – with your consent, to establish, exercise, or defend legal claims, or to protect a person or significant societal interests.
Objection
In certain cases, you have the right to object to our otherwise lawful processing of your personal data. You can also object to the processing of your information for direct marketing purposes.
Data Portability
In certain cases, you have the right to receive your personal data in a structured, commonly used, and machine-readable format and to have this data transferred from one data controller to another without hindrance.
You can read more about your rights in the Danish Data Protection Agency’s guidance on the rights of data subjects, available at www.datatilsynet.dk.
Withdrawal of Consent
When our processing of your personal data is based on your consent, you have the right to withdraw your consent.
Complaint to the Danish Data Protection Agency
You have the right to file a complaint with the Danish Data Protection Agency if you are dissatisfied with the way we process your personal data. You can find the contact details of the Danish Data Protection Agency at www.datatilsynet.dk.
Updated December 5, 2024