Privacy Policy

Data Controller

We are the data controller for the processing of personal data pertaining to our clients and partners. Our contact information is provided below.

SecureFirst

Lyskær 3B 2
2730 Herlev DK-Denmark

CVR No.: 44238780

While our company is not mandated to have an external DPO, should you have inquiries regarding the processing of your personal data, please contact us at info@securefirst.dk.

Processing Activities

As a data controller under GDPR, we conduct the following processing activities.

Website visit

When you visit our website, we utilize cookies to ensure its functionality, details of which can be found in our cookie policy.

Communication with prospective clients

Should you have inquiries regarding our site or wish to learn more about our services, you may contact us via:

• Contact Form
• Email
• Phone

Through this, we will process your personal data to engage in dialogue with you, for instance, to answer questions about our services. We only process the information you provide to us during our communication.

We will typically process the following general information: name, email, phone number.

Our legal basis for processing these personal data is Article 6, paragraph 1, letter f of the General Data Protection Regulation.

We will delete our communication with you once it is clear whether you wish to engage our services.

Should a specific need arise to retain your personal data for an extended period, this may be the case.

Customers

We need to communicate with our customers to ensure the correct delivery of services. Through this, we may process information such as name, address, services, special agreements, payment details, and similar.

The legal basis for processing these personal data is Article 6, paragraph 1, letter b of the General Data Protection Regulation.

Once the service has been delivered and any outstanding matters are concluded, we will promptly delete the personal data.

Newsletter

We offer a newsletter, which is optional to subscribe to – and you can always unsubscribe from it.

The purpose of the newsletter is to send subscribers emails with new company information, which may include new website content or announcements of our services.

We will only send you emails if you have provided your explicit consent. Initially, this requires you to provide your email address, to which we will subsequently send a confirmation email for your subscription. This process ensures that you have indeed subscribed to the newsletter yourself, thereby providing active consent.

Our legal basis for processing your personal data (i.e., email address) in connection with the newsletter will be Article 6, paragraph 1, letter a of the General Data Protection Regulation.

We will process your personal data for as long as you remain subscribed to the newsletter. Upon unsubscribing from the newsletter, we will cease sending it to you. If we have not sent you a newsletter for one year, your consent will lapse due to our inactivity.

Upon unsubscribing from the newsletter, we will retain your previously provided consent for two years after its last use, in accordance with the statute of limitations requirements as per Section 11.3 of the Danish Consumer Ombudsman's spam guidelines.

Accounting

We are required to retain all accounting records in accordance with the Danish Bookkeeping Act. This entails storing invoices and similar documents for accounting purposes. These documents may contain general personal data such as name, address, and service description.

Our legal basis for processing personal data for accounting purposes is Article 6, paragraph 1, letter c of the General Data Protection Regulation.

We retain this information for a minimum of 5 years after the current financial year has concluded.

Job Applications

We welcome job applications to assess their alignment with our company's recruitment needs.

If you submit your job application to us, our legal basis for processing your personal data is Article 6, paragraph 1, letter f of the General Data Protection Regulation.

If you have submitted an unsolicited application, HR will immediately assess its relevance and subsequently delete your data if there is no suitable match.

If you have applied for an advertised position, we will dispose of your application if you are not hired, and immediately after the suitable candidate has been selected for the role.

Should you participate in a recruitment process and/or be hired for the position, we will provide you with separate information regarding how we process your personal data in this context.

Disclosure of Personal Data

We do not disclose your personal data to third parties.

Profiling and Automated Decision-Making

We do not engage in profiling or automated decision-making.

Third-Country Transfers

As a general principle, we utilize data processors located within the EU/EEA or those that store data within the EU/EEA.

In certain instances, this may not be feasible, and in such cases, data processors outside the EU/EEA may be utilized, provided they can ensure an adequate level of protection for your personal data.