+45 40 12 99 69 [email protected]

Privacy policy

Data controller

We are the data controller for the processing of the personal data we process about our customers and partners. You will find our contact details below.

RAQA ApS
Torvet 10
4100 Ringsted, Denmark
CVR no: 41202726

Our company is not required to have an external DPO, but if you have any questions about the processing of your personal data, you can contact us via [email protected].

Data processing activities

As a data controller, cf. GDPR, we have the following processing activities.

Visiting our website

We do not use cookies to improve the function of our webiste or to track visitors’ behavior.

Communication with potential customers

When you have questions about our site or want to learn more about our services, you can contact us via:

Through this, we will process your personal data so that we can enter into a dialogue with you, for example to answer questions about our services. We only process the information that you provide us with in connection with our communication.

We will typically process the following general information: name, email, company.

Our legal basis for processing this personal data is Article 6(1)(f) of the General Data Protection Regulation.

We will delete our communication with you when it is clear whether you want our services or not.

Should a need arise in a particular case to store your personal data for a longer period of time, this may be the case.

Customers

We need to communicate with our customers to ensure that our services are delivered correctly. Through this, we may process information about name, address, services, special agreements, payment information and the like.

The legal basis for processing this personal data is Article 6(1)(b) of the General Data Protection Regulation.

Once the service has been delivered and any outstanding issues have been finalised, we will delete the personal data immediately afterwards.

Bookkeeping

We must save all accounting documents in accordance with the Bookkeeping Act. This means that we store invoices and similar documents for accounting purposes. This may include ordinary personal data such as name, address, service description.

Our legal basis for processing personal data for bookkeeping purposes is Article 6(1)(1) of the General Data Protection Regulation.

We keep this information for a minimum of 5 years after the current financial year has ended.

Data processors

Few people can do everything themselves, and the same applies to us. We therefore have partners and use suppliers, some of whom may be data processors.

External suppliers may, for example, provide systems to organise our work, services, advice, IT hosting or marketing.

It is our responsibility to ensure that your personal data is processed properly. We therefore set high standards for our partners, and our partners must guarantee that your personal data is protected.

We therefore enter into agreements with companies (data processors) that handle personal data on our behalf to enhance the security of your personal data.

Disclosure of personal data

We do not disclose your personal data to third parties.

Profiling and automated decisions

We do not engage in profiling or automated decision-making.

Third country transfers

We strive to use data processors in the EU/EEA or who store data in the EU/EEA.

In some cases, this is not possible and data processors outside the EU/EEA may be used if they can provide adequate protection for your personal data.

Security of processing

We keep the processing of personal data secure by implementing appropriate technical and organisational measures.

We have made risk assessments of our processing of personal data and have subsequently implemented appropriate technical and organisational measures to increase the security of processing.

One of our most important measures is to keep our employees updated on GDPR through ongoing awareness training, GDPR courses, and by reviewing our GDPR procedures with employees.

The rights of data subjects

Under the GDPR, you have a number of rights in relation to our processing of information about you.

If you wish to exercise your rights, please contact us so that we can help you with this.

Right of access

You have the right to access the data we process about you, as well as a range of additional information.

Right to rectification

You have the right to have inaccurate information about yourself corrected.

Right to erasure

In special cases, you have the right to have information about you erased before the time for our general erasure occurs.

Right to restriction of processing

In certain cases, you have the right to have the processing of your personal data restricted. If you have the right to restrict processing, we may in future only process the data – apart from storage – with your consent, or for the establishment, exercise or defence of legal claims, or for the protection of a person or important public interests.

Right to object

In certain cases, you have the right to object to our otherwise lawful processing of your personal data. You may also object to the processing of your data for direct marketing purposes.

Data portability

In certain cases, you have the right to receive your personal data in a structured, commonly used and machine-readable format and to have this personal data transmitted from one controller to another without hindrance.

You can read more about your rights in the Danish Data Protection Agency’s guide on the rights of data subjects, which you can find at www.datatilsynet.dk.

Withdrawal of consent

When our processing of your personal data is based on your consent, you have the right to withdraw your consent.

Complaint to the Danish Data Protection Agency

You have the right to lodge a complaint with the Danish Data Protection Agency if you are dissatisfied with the way we process your personal data. You can find the contact details of the Danish Data Protection Agency at www.datatilsynet.dk.

In general, we encourage you to read more about GDPR so that you are updated on the rules.