The responsibility for complying with this Privacy & GDPR Policy lies with the management of SIMA.
|Danish Data Protection Law: LOV nr 502 af 23/05/2018
|SIMA Innovation ApS
|General Data Protection Regulation
Below we have described how we collect and use personal data. We have divided our processing activities into topics according to the purpose of the processing.
The legal entity responsible for the processing of personal data is:
SIMA INNOVATION ApS
5792 Årslev, Danmark
CVR: 29 18 69 52
Signing up for a newsletter requires your consent. It is always possible to withdraw the consent by clicking on the unsubscribe link in the newsletters sent.
In order to deliver newsletters to you, it is necessary to collect and process information about name, e-mail address, and which newsletters you wish to receive.
After receiving your consent to receive the newsletter (cf. Article 6(1)(a) of the Regulation), the legal basis for the processing of your personal data is SIMA legitimate interest in ensuring that you receive the requested material and our interest in collecting statistics on your use of the newsletter’s content, cf. Article 6 of the General Data Protection Regulation, cf. Article 6, paragraph 1(f) (balancing of interests).
SIMA may hold courses, networks, conferences, or various events. In order to be able to register we may contact you before, during and after the event, and may require receiving payment for participation. In these cases, it is necessary that SIMA collects and processes a number of personal data. The information collected is:
– Contact information such as address
– Telephone number
– E-mail address
– Job title
– Company where you are employed
– Other information, if applicable
The legal basis is Article 6(1)(b) of the General Data Protection Regulation, as the processing of the data is necessary to fulfil an agreement with you. The processing may also take place on the basis of Article 6(1)(f) (the balancing of interests rule), where the legitimate interest is to handle the conduct of the course in question, etc., e.g. for the preparation of name badges, any participant lists and the distribution of material from the course as well as evaluation forms.
If you apply for a position with us, we register general personal data such as name, address, contact information in the form of telephone number and e-mail address, education, work experience, job title, possibly photo and CV.
As the information typically appears in the application, which you submit on your own initiative, the processing during the recruitment process will be considered to have taken place with your consent in accordance with Article 6(1)(a) of the General Data Protection Regulation.
As a general rule, further general information may be obtained on the basis of SIMA’s legitimate interest in being able to hire a qualified candidate for an advertised position, cf. Article 6(1)(f) of the Regulation (balancing of interests rule).
Business partners, supplier, customers, private persons, journalists, etc. may be in dialogue with SIMA via email, phone or at meetings. The purpose of this dialogue may differ, but our dialogue implies that SIMA will collect and process personal information about you. It will typically be name and contact information such as email and phone number, workplace, etc. In addition, your emails will also require that we store the information covered by your email.
The processing is justified by our legitimate interest in being able to answer inquiries and advise on industry-related issues and specific cases, cf. Article 6(1)(f) of the Regulation (the balancing of interests rule).
Your personal data is stored for the period necessary in relation to the purpose of the processing. The period thus depends on the nature of the personal data and the background to the processing. The data will be deleted when it is no longer necessary to process it for the fulfilment of one or more of the above purposes.
SIMA thus stores your personal information as long as there is an active relationship between you and SIMA – e.g. because you are a customer, a supplier or just because you are contact with the company, receive a newsletter, are an important partner, is a contact person in a company, sit on our board of directors or advisory board, apply for a position or a development project, including student projects.
For example, SIMA has the following specific deletion deadlines:
When a course, networking, conferences, or event has been completed, name cards, any participant lists and other personal information that you have provided when registering within 12 months of the event will be deleted. In relation to events, etc., where payment is charged for participation, the personal information necessary for invoicing is stored for 5 years from the end of the financial year in which the course, etc. was held, as stipulated in the Bookkeeping Act.
When you withdraw your consent, information collected in connection with your registration for the newsletter will be deleted. However, information that is necessary to be able to document that the broadcast was based on a valid consent is stored for two years after unsubscribing in accordance with the limitation rules in the Danish Marketing Practices Act.
Agreements on research and development projects for students that have not been pursued are generally deleted no later than one year after the decision. Agreements that have been undertaken, including the associated accounts, are stored for 5 years after grants are finally paid as stipulated in the Bookkeeping Act.
In the case of job advertisements, your personal data, including application, are stored until the position is filled to another page, unless you have consented to further storage for 6 months. Upon employment, your personal data is stored for up to 5 years from the end of the employment relationship.
SIMA generally does not disclose your personal information to third parties. However, this may be done to public authorities and bodies in cases where we are legally obliged to do so.
In principle, SIMA does not transfer personal data to countries outside the EU/EEA.
In connection with IT solutions, SIMA uses data processors to host personal data and to provide support. Some of our suppliers are based outside the EU/EEA, which is why personal data may be transferred here. For any transfers to third countries that are not recognised by the European Commission as having an adequate level of security, we ensure a valid transfer basis, e.g., in the form of standard European Commission clauses in accordance with Article 46 of the Regulation.
SIMA aims to ensure our processing of personal data against accidental or unlawful destruction, loss, alteration and authorized disclosure or disclosure. We continuously develop our security policies and procedures to ensure that our systems are secure and protected. Only the employees at SIMA who have a work-related need to access information have access to it.
The information entered on the website is transmitted encrypted between the user’s browser and the website.
If information about you is processed, you have the following rights (on the terms and with the exceptions provided for by law):
Each employee must strive to ensure that this policy is followed at all times. All deviations must be documented and raised to the CEO. Request for changes must be raised with the Document Owner.
Not relevant to this policy.
The policy is updated as needed.
The following systems are required to comply with this Policy:
Any questions regarding SIMA processing of your personal data or wish to exercise your rights, please contact us on +45 65 90 25 03 or email@example.com