Specific information for customers and customer contacts

Introduction

At DC, we take the protection of your personal data very seriously. Confidentiality, trust and secrecy obligations form part of our core values. This information is aimed at people acting as reference for a specific candidate and whose personal data we are processing in connection with our professional relationship. Therefore, this information supplements our general Information on Processing of Personal Data – which you can read here.

You may also contact DC for any questions regarding our collection and processing of personal data by email to: brian@digitalcareer.dk.

Types of personal data and where we get them from

Prior to the establishment of a potential customer relationship or an employee with a potential customer, if the customer is a legal person, we will process the following personal data:

• Name
• Address
• Phone number
• Email address
• Company
• Position

We collect personal data on potential customer and contacts via publicly available data from e.g. the company website or LinkedIn.

In connection with the establishment and handling of a customer relationship, or an employee with a potential customer, we will process the following personal data provided primarily by yourself:

• Name
• Address
• Phone number
• Email address
• Company
• Position
• Bank details relating to the customer relationship
• Financial data relating to the customer relationship
• Historical data of the case

In connection with the administration of the customer relationship, we may also need to collect and process additional personal data relating to, for instance, proceedings at the relevant authorities. The customer and/or contact will be informed of the processing, unless the customer or contact is already informed or if the interest of the customer or the contact is overruled by decisive public or private interests, or if it is related to enforcement of legal claims and similar.

We collect personal data about the customer, the customer’s representative and contact persons from the relevant contact persons themselves or from personal data disclosed on the customer’s website, from the company registration system of the Danish Business Authority, or from LinkedIn, as well as from any recommendation written by third parties in publicly available sources.

We will only collect necessary and relevant ordinary personal data for the purpose of our assessment of you as a customer, including for instance for the purpose of conducting the required examination of conflicts of interests.

Normally, we will not collect any sensitive personal data about customers or contacts unless required under applicable law.

Purpose and legal basis for processing

Prior to the establishment of a customer relationship, we process personal data about the potential customers and/or contacts for marketing purposes and sales incentives.

When a customer relationship is established, we only process personal data about the customer or the customer’s representatives for the purpose of administer the customer relationship to the necessary extent, including documentation in this respect. The information in question is necessary to enable us to unequivocally identify the customer, communicate with the customer, as well as administrate the customer relationship and comply with the terms of our contracts. It is also necessary for the compliance with the legal obligations imposed on us under Danish law.

We process your personal data on basis of Article 6 (1) (b) of the General Data Protection Regulation since such processing is necessary for the performance of the agreement on legal assistance. In the event of sensible personal data or civil registration numbers, the legal basis for our processing will be Article 9 (2) (f) regarding the establishment, exercise or defence of a legal claim.

The customer’s and/or contact’s personal data will be shared with public authorities to the extent we are under an obligation in this respect pursuant to Danish law.

We make sure that personal data on contact persons of the customer are updated by consulting, at appropriate intervals, the relevant LinkedIn pages about any occupational changes.

If we are informed directly by the contact person that he/she is resigning from his/her position, we will ensure to update our registration of the customer’s contact persons. Subsequently, the resigned contact person will no longer be processed as contact person, but the information of the resigned contact person will continue to be processed in accordance with the principles described in the first section of this paragraph.

Deletion

If a potential customer and/or contact do not respond to marketing and/or sales initiatives, the personal data will be deleted. If our approach is actively denied, we will process name and company in order to ensure that we do not contact this person again. The personal data will then be deleted after 2 years.

When a customer relationship is established. we retain personal data until the date on which any claims in relation to the relevant customer relationship are statute-barred, after which the data will be erased. This will, in principle, be for a period of 25 years. However, we may keep some personal data for a shorter or longer storage period if the personal data in question are not relevant for a possible subsequent claim, or if it is necessary for the compliance of a legal obligation under Danish law, or for the establishment, exercise or defence of a legal claim.

Also, we may include personal data in our general back-up procedures, where they will be erased in accordance with the backup renewal.

Normally, we will not collect any sensitive personal data on customers. However, in connection with our case management, sensitive data may be collected, including civil registration numbers or information on offences or criminal convictions. In that case, the processing will take place on a legal basis, for instance for the purpose of establishing, exercising or defending a legal claim.

In the event that you are requested to give your consent, you will receive more specific information about what happens to your personal data.

We will retain your personal data as long as necessary in relation to you as our customer.

Therefore, with due regard to our liability insurance and the Danish Act on Bookkeeping, your personal data will normally be erased no later than five years following the final decision to terminate the customer relationship, unless it is specifically agreed that we keep your personal data for a longer period or there is another legal basis for continued storage.

You have the right to have (part of) your personal data deleted. Please refer to our specific information on data subject rights.

Data Controller

DC will be the data controller for the processing of your personal data. More information on DC can be found under the general introduction.

Rights

As a data subject, you have a number of rights, for instance the right to gain access to the processing of your data and to require that personal data be erased. However, these rights may be restricted to certain situations or be subject to certain conditions. For further information about the rights of the data subject, including a request to exercise such rights, we refer to our specific information on the rights of the data subject.

Contact

If you wish to learn more about DC´s processing of personal data, you may contact us by email: info@digitalcareer.dk.