CREOSUM collects and protects personal data in accordance with GDPR.
Short Description
This privacy policy applies to all subscriptions made through creosum.dk. We collect personal data to provide services and process and store it securely. We use personal data to fulfil orders, provide customer service, and send marketing emails. We don't sell data to third parties. You have the right to access, rectify, erase, restrict, and object to processing of your data. In case of a data breach, we will notify you and relevant authorities. We comply with data protection laws and regulations, including GDPR.
Detailed Description
Effective from June 1st, 2023, this privacy policy applies to all subscriptions made through creosum.dk. The website is owned and operated by the data controller CREOSUM. By subscribing on the website, the data subject consents to CREOSUM collecting, processing, and storing their personal data in accordance with this policy and applicable data protection laws.
Collection
CREOSUM collects name, company, and email address.
Use
CREOSUM uses personal data collected from its website to fulfil service requests and provide customer support. Additionally, CREOSUM may use personal data to send marketing emails to its subscribers and analyse data to improve its business operations.
Disclosure
CREOSUM does not sell personal data to any third party.
Retention
Personal data is retained for as long as necessary to fulfil the purposes for which it was collected or as required by law.
Rights
As a data subject, subscribers have the right to exercise certain rights with respect to their personal data collected, processed, and stored by CREOSUM. These rights include the right to access and obtain a copy of their personal data, the right to rectify inaccurate or incomplete personal data, the right to erasure (the right to be forgotten), the right to restrict processing, the right to data portability, the right to object to processing, and the right not to be subject to a decision based solely on automated processing. CREOSUM will respond to these requests without undue delay and within one month of receipt of the request, unless a longer period is necessary due to the complexity of the request or the number of requests. These rights can be exercised by contacting CREOSUM through the website.
Data Breach
In the event of a data breach that is likely to result in a high risk to the rights and freedoms of the data subjects, CREOSUM will notify the data subjects without undue delay. The notification will describe the nature of the breach, the likely consequences, and the measures that CREOSUM has taken or will take to address the breach and mitigate its impact. CREOSUM will also notify the relevant authorities, including the Danish Data Protection Agency, where required by law.
Compliance
CREOSUM's privacy policy complies with applicable data protection laws and regulations, including the EU General Data Protection Regulation (GDPR).