Privacy policy

Introduction

The purpose of this privacy policy is to inform you as a customer, user and business partner about how Aety processes your personal data and what rights you have in relation to our collection, processing and storage of your personal data.

Data protection is important to Aety, and we have therefore taken a number of measures to ensure that we comply with personal data protection rules. This is done in full compliance with the legislation in force at any given time, including the General Data Protection Regulation and the Danish Data Protection Act.

The Privacy Policy applies to your use of Aety’s website, your customer relationship with Aety and how Aety uses the personal data that you leave behind and/or provide when you visit the website, are in contact with our consultants or use our other services.

When you visit the website, contact our consultants and/or use our services, you also accept our processing of personal data in accordance with the privacy policy.

If you have any questions about our privacy policy, you are welcome to write to info@aety.io to learn more about your rights.

Data controller

Aety Aps is the data controller for the storage and processing of the personal data we collect about you. We only register and store personal data that is necessary for us to run our business and to fulfill the agreement/contract we have entered into with you. In addition, we store the personal data that you have actively consented to us collecting, storing and using.

Contact details

Aety Aps

Fruebjergvej 3,

2100 Copenhagen Ø.

CVR no. 39130114

Email: info@aety.io

Phone: +45 2671 2607

What information is collected and why?

As part of the daily work at Aety, we process a number of personal data about all our website users, customers and business partners. Aety is therefore also very careful to process all personal data in a confidential and secure manner. In this policy you can read more about the guidelines for how we process personal data about users of our website, our customers and business partners.

The basis for processing your personal data will generally be to be able to respond to your inquiry or to fulfill the consultancy agreement that you or the company you are employed by has entered into with us. The basis for our processing of sensitive personal data will typically be consent.

How to contact the consultants

When you contact our consultants, we collect and process personal data about you in accordance with Aety’s internal guidelines for processing personal data. These guidelines are prepared in accordance with applicable data protection legislation. We only register the personal data that is necessary for us to handle your inquiry.

Website and cookies

In order to use the contact form on the website, you must provide certain personal data. The personal data that we collect on the website may, for example, include name, e-mail address, home address and similar identifying information.

Aety also uses cookies to collect personal data of a technical nature. You can read more about our cookie policy here.

Social media

Aety uses different types of personal data on social media. This includes the information you have made available through settings on e.g. Facebook, LinkedIn, Twitter, etc., your reactions to our posts and your sharing of them, and any comments on our posts.

Be aware of what information you share when commenting on social media posts and always make sure not to write personal information such as address, social security number, your children’s information, etc. in the comment field. If this is relevant to your customer relationship, please contact Aetys customer service.

The purpose of processing personal data on social media is branding and marketing of Aety. The legal basis for processing your personal data is Aety’s legitimate interests in making content available on social media to users who have chosen to follow Aety for branding and marketing purposes. The information is deleted when the post is deleted or when you choose to withdraw your reaction to our posts (like, share, etc.).

Handling event attendee information at events

If Aety hosts an event, course or similar where registration is required, we process contact information about the participants in the event in the form of their name, where they work/title and e-mail address. Naturally, we do this in order to handle the registrations for the event.

If you attend an event, please be aware that in some cases we take situational photos from the event and share them on our website and/or social media. The purpose is to brand the events we organize and Aety as a whole. If you do not wish to be included in any event photos, you can simply inform us at the start of an event.

Other conditions

License plate registration

If you use a parking space at Symbion, you must register your license plate in order to park for free. This is a matter between you and Symbion.

Recipients of your personal data

Information such as name, job title, employer, telephone number and email address may be disclosed to partners in connection with the organization of events and courses. A disclosure of personal data will be explicitly stated under the given registration form to draw attention to the processing and sharing of data.

Data processing agreements have been entered into with all external partners and no external partners may use personal data for purposes other than those set out for them by Aety.

Processing of personal data

Aety processes personal data responsibly and with appropriate technical and organizational security measures. The information is treated confidentially and used only to the extent necessary for the stated purposes and in accordance with applicable data protection legislation. To the extent that personal data is disclosed to third parties, Aety only uses third parties that have data protection policies and security measures that comply with EU data protection standards.

Retention period and deletion procedures

The Personal Data Act does not contain rules on when personal data must be deleted. This must be decided by us as data controller in each individual situation. When assessing this, we pay particular attention to whether continued storage of the personal data serves a legitimate purpose or whether we are required by law to retain certain information or documents.

If you contact us

We always keep your inquiry until it has been processed. If your inquiry results in us opening a specific case, you will then be considered a customer of ours, and the deletion of your personal data will therefore follow our usual procedure for handling case files (see below).

If you have registered for an event

We generally keep registration lists for 12 months after the event has been held. We do this to be able to evaluate who participates in the event in order to improve the content of the event if we later offer the same event again. Therefore, we do not use the participants’ information to, for example, invite them again or for general marketing purposes.

Retention of customer information and case files

As a starting point, we store all relevant information, including your personal data, for 5 years from the end of your customer relationship with us. However, we do not delete personal data if it is necessary in order to establish or defend a legal claim, e.g. if a dispute arises or as a result of financial issues between you and Aety, which means that we need to store the case files for longer than 5 years from the end of your customer relationship.

Other personal data about you that is not necessary to store in order to manage the customer relationship will be deleted on an ongoing basis and at the time when we assess that we no longer have a factual need for continued storage, or if legislation otherwise requires us to delete this information at a specific time.

Secure processing of personal data

Aety treats your personal data confidentially and we have also implemented a number of technical and organizational security measures to protect your personal data against accidental or unlawful destruction, loss or deterioration, and against unauthorized access, misuse or other processing in violation of personal data legislation.

In addition to us having access to your personal data, Aety has also granted access to a number of data processors. For example, we use data processors in connection with the operational and IT security tasks (e.g. backup, website hosting, etc.) that we have solved externally. The establishment of access to your data is therefore solely due to the data processor providing a technical or system-related service to us or providing operational support and troubleshooting within the framework established by Aety. Storage of or establishment of access to the information with data processors is subject to a number of rules, and data processing agreements have therefore been entered into with all data processors, which, among other things, must ensure an appropriate level of security, including that your information does not come into the hands of unauthorized persons.

Your rights

You have a number of rights towards us as a result of us processing your personal data. You can read more about this below, but you are also always welcome to contact us if you have any questions. We strive to respond to all inquiries as soon as possible and within 30 days at the latest. If we do not comply with your request in accordance with the points below, you have the option to complain to the Danish Data Protection Agency.

Right to access your own personal data

You have the right to know what personal data we process about you. A request for access must be addressed to us and does not need to be justified. In other words, this means that you have the right to know what personal data we process about you, what the purpose is, where we got the data from, how long we store it, and who we may share it with.

Right to rectification of inaccurate personal data

If Aety processes incorrect or misleading personal data about you, you have the right to request us to correct the information. Upon receipt of such a request, we will arrange to have the information in question corrected/deleted.

Right to erasure

In some cases, we are obliged to delete your personal data before the time when we would normally delete your personal data. This applies if we no longer have a legitimate purpose for processing the personal data, if consent is withdrawn, if the personal data has been processed unlawfully or it must be deleted to comply with a legal obligation and in some cases if an objection to the processing is raised. These rights have been taken into account when defining the company’s deletion policies.

Right to object

In certain cases, you have the right to object to our processing of your personal data. If we receive an objection from you, we will assess whether we need to restrict the processing of the personal data until we have verified whether our legitimate interests override the customer’s interests.

Data portability

In some cases, you have the right to receive your personal data in a commonly used and machine-readable format so that it can be used for disclosure to another data controller.

Withdrawal of consent

If you have given us consent in relation to the processing of your personal data, you can always withdraw your consent. We will then stop processing the personal data to which the consent relates if there is no other legal basis for processing the personal data.

Complaint guide to the Danish Data Protection Agency

If you have any objections to our processing of your personal data, we encourage you to contact us. However, you always have the right to complain about our processing and storage of personal data to the Danish Data Protection Agency. The Danish Data Protection Agency’s contact details can be found at www.datatilsynet.dk.

Changes to this privacy policy

This Privacy Policy will be updated and amended periodically and when necessary due to changes in applicable regulations. This privacy policy will always contain information about the effective date of the latest version. If the changes to this Privacy Policy are substantive or significant, you will be explicitly informed about it, e.g. on the Aety website or by e-mail.

This privacy policy is updated with the latest version on 14 Aug 2020.

Do you have any questions?

Send us an email: info@aety.io