Last updated on July 4, 2019.
We take your privacy seriously
To protect your personal information, we regularly assess how high are the risks that our data processing affects your fundamental rights negatively. We are especially mindful of the fact that you risk discrimination, ID theft, loss of reputation, data confidentiality and could suffer financial loss. In the event that we are processing sensitive personal data, biometric data or information about a crime, we conduct an analysis of the consequences of the data processing of your privacy. This impact assessment is carried out before we begin to process your personal data.
Gluu ApS is responsible for the data, and we ensure that your personal data is treated in accordance with the law.
Contact person: Gluu ApS
Address: Højbro Plads 10, DK-1200 Copenhagen K
Company registration and VAT number (CVR no.): 33886349
Telephone No: 45 72 30 20 70
We ensure fair and transparent data processing
When we ask you to provide personal data, we will inform you about what data we process about you and for what purpose. You will be informed at the time of collection that we are collecting your personal data. We do not collect information from other parties.
Treatment of personal
Data collected which we use
We use data collected from you to improve our service and ensure the quality of our products and services and our contact with you.
The data we use includes:
- General Personal Info
- Data about your interests and habits
- Traffic data on Internet usage
- Location data from the Internet, mobile, GPS or camera
- Transaction data
- Unique numbers of network devices
We do not compile this data.
Specific reasons as to why we collect your personal data
We collect and store your data for legitimate business purposes. For example we record:
- Treatment of your purchase and delivery of our performance
- Compliance with your request for products or services
- Your opinions on how to improve our products and services
- Our communication and marketing to you
- Managing your relationship with us
- Compliance with regulatory requirements
We may need to use your personal data for a purpose other than what it was collected. Unless you have given your consent, we examine whether the purpose of the collection of your data is compatible with the new purpose. We consider, the sources of your data, whether it is normal or sensitive information and whether it’s necessary for us to use it. We also assess whether using your data for another purpose will have negative consequences for your business.
We only utilise relevant personal data
We only use data from you that is relevant and adequate in relation to the purposes defined above. The type of data that we collect is only relevant for those legitimate business purposes. We use, no more data than needed for each specific purpose. Before we use your personal data, we consider whether it is necessary for us to use that amount of data collected from you. We also investigate whether some of the data types we use can be used in an anonymous or pseudonymized form. We will minimise the data used if it does not adversely affect our obligations or the service that we offer you.
We record only necessary personal data
We collect, process and store only the personal data that are necessary for relation to meet our stated objectives. Additionally, it may be determined by law, the type of data that is necessary to collect and store for our business operations. The type and extent of the personal data that we process may also be needed to fulfil a contractual or other legal obligation.
We want to be sure that we only process personal data necessary for each of our particular purposes. Therefore, it is embedded in our IT systems to only collect the amount of data that is needed. It also ensures automatically that the level of information is not unnecessarily large, and the storage time is not too long.
To protect you against unauthorised access to your personal data, we also use solutions that automatically ensures that data is only available to relevant employees. We have also implemented embedded protection, effectively protecting an unlimited number of peoples data.
We check and update your personal data
We check that the personal data we process about you is not inaccurate or misleading. We also make sure to update your personal data continuously. Since our service is dependent on your data being correct and up to date, please inform us about relevant changes in your data. You can use the contact information above to inform us of your changes.
To ensure the quality of your data, we have adopted internal rules and established procedures for monitoring and updating of your personal data.
We will delete your personal data when they are no longer needed
We will delete your personal data when they are no longer necessary in relation to the purpose, which was the reason for gathering, processing and storage of your data.
We obtain your consent before we process your personal data
We obtain your consent before we process your personal data for the purposes described above unless we have a legal basis to catch up. We will inform you of such a basis and our legitimate interest in a deal with your personal data. Your consent is voluntary and you may at any time withdraw it, by contacting us. Use the contact information above for more information.
We will not share your personal information without your consent
We will not disclose any personal information to other companies.
We will not disclose your personal data to operators in third countries.
We protect your personal data and have internal regulations on information security
We have adopted internal rules on information security, which contains instructions and measures to protect your personal data from being destroyed, lost or changed from unauthorised disclosure, and against unauthorised access.
We have established procedures for granting access rights to any of our employees who process sensitive personal data and data that reveal information about personal interests and habits. We check their actual access through logging and monitoring. To avoid losing data, we continuously back up our data set. We also protect the confidentiality and authenticity of your data using encryption.
In the event of a security breach that results in a high risk of discrimination, identity theft, financial loss, loss of reputation or another major inconvenience for our users, we will notify you of the breach as soon as possible.
Cookies, purpose and relevance
If cookies are in use, you will be informed about this use and their purpose, collecting data.
We obtain your consent
You have the right to access your personal data
You have a right at any time to ascertain what data we process about you where it came from and what we use it for. You also have the right to learn how long we keep your personal data, who receives that data and to what extent we disclose data, both in Denmark and internationally. If you request it, we can inform you about the data we process about you. However, access can be restricted for the sake of other people’s privacy, trade secrets and proprietary rights. You can make use of your rights by contacting us using our contact information, which you can find at the top of this policy.
You have the right to have inaccurate personal data corrected or deleted.
If you believe that the personal data we process about you is inaccurate, you have the right to have them corrected. You must contact us and tell us where inaccuracies exist and how they can be addressed. In some cases, we have an obligation to delete your personal data. This applies if you withdraw your consent. If you believe that your data is no longer necessary in relation to the purpose for which we collected them, you can also ask to have them removed. You can contact us if you think that your personal data is processed in violation of law or other legal commitments. When you call with a request to correct or delete your personal data, we examine whether the conditions are met and implement changes or delete that data as soon as possible.
You have the right to object to our processing of your personal data.
You have the right to object to our processing of your personal data. You can also object to our disclosure of your data for marketing purposes. You can use the contact information at the top to send an objection. If your complaint is justified, we will make sure to stop the handling of your personal data. You have the right to receive the personal data you have made available to us, and those we have collected about you with other parties based on your consent. If we process data about you as part of a contract in which you are a party, you can also receive your data. You also have the right to transfer such personal data to another service provider. If you want to use your right to data portability, you will receive your personal data from us in a commonly used format.
If you want to access your data, get them corrected or deleted, or object to our processing, we investigate whether it is possible and give you the answer to your inquiry as soon as possible, no later than one month after we have received your inquiry.