Privacy policy

Privacy Policy

Data controller

We are the data controller for the processing of the personal data we process about our customers and partners. You will find our contact information below.

Elfie's Journey

CVR no.: 42753319

It is not a requirement that our company has an external DPO, but if you have any questions about the processing of your personal data, you can contact us via info@elfiesjourney.dk.

Processing activities

As data controller cf. GDPR, we have the following processing activities.

Website visit

When you visit our website, we use cookies in order for the website to function.

Communication with potential customers

When you have questions about our site, or want to hear more about our services, you can contact us via:

  • Email: info@elfiesjourney.dk

Through this, we will process your personal data so that we can enter into a dialogue with you, e.g. answer questions about our services. We only process the information that you provide to us in connection with our communication.

We will typically process the following general information: name, email, phone number.

Our legal basis for processing this personal data is Article 6(1)(f) of the General Data Protection Regulation.

We delete our communication with you when it is clear whether you want our services or not.

Should a special case arise a need to store your personal data for a longer period of time, this may be the case.

Customers

We need to communicate with our customers to ensure that the service is delivered correctly. Through this, we can process information about name, address, services, special agreements, payment information and the like.

The legal basis for processing this personal data is Article 6(1)(b) of the General Data Protection Regulation.

When the service has been delivered and any outstanding has been completed, we will immediately delete the personal data.

Accounting

We must save all accounting documents cf. the Bookkeeping Act. This means that we store invoices and similar documents for accounting purposes. This may include general personal data such as name, address, service description.

Our legal basis for processing personal data for bookkeeping is Article 6(1)(a) of the General Data Protection Regulation.

We store this information for a minimum of 5 years after the current financial year has ended.

Data processors

Few can do everything on their own, and the same goes for us. We therefore have partners, as well as use suppliers, some of whom may be data processors.

External suppliers can, for example, provide systems to organize our work, services, consultancy, IT hosting or marketing

It is our responsibility to ensure that your personal data is processed properly. Therefore, we place high demands on our business partners, and our partners must guarantee that your personal data is protected.

Disclosure of personal data

We do not disclose your personal data to third parties.

Profiling and automated decision-making

We do not carry out profiling or automated decisions.

Third country transfers

As a rule, we use data processors in the EU/EEA or who store data in the EU/EEA.

In some cases, this is not possible, and here data processors outside the EU/EEA can be used if they can provide your personal data with adequate protection.

Rights of data subjects

Under the General Data Protection Regulation, you have a number of rights in relation to our processing of information about you.

If you want to exercise your rights, please contact us so that we can help you with this.

Right to view information (right of access)

You have the right to gain insight into the information we process about you, as well as a number of additional information.

Right to rectification (correction)

You have the right to have incorrect information about yourself corrected.

Right to erasure

In special cases, you have the right to have information about you deleted before the time of our general general deletion occurs.

Right to restriction of processing

In certain cases, you have the right to have the processing of your personal data restricted. If you have the right to have the processing restricted, we may in future only process the information – except for storage – with your consent, or for the purpose of establishing, exercising or defending legal claims, or to protect a person or important public interests.

Right to object

In certain cases, you have the right to object to our otherwise lawful processing of your personal data. You can also object to the processing of your data for direct marketing purposes.

Right to transmit information (data portability)

In certain cases, you have the right to receive your personal data in a structured, commonly used and machine-readable format and to have this personal data transferred from one data controller to another without hindrance.

You can read more about your rights in the Danish Data Protection Agency's guide on the rights of data subjects, which you can find at www.datatilsynet.dk.

Withdrawal of consent

When our processing of your personal data is based on your consent, you have the right to withdraw your consent.

Complaint to the Danish Data Protection Agency

You have the right to lodge a complaint with the Danish Data Protection Agency if you are dissatisfied with the way we process your personal data. You will find the Danish Data Protection Agency's contact information on www.datatilsynet.dk.

We generally encourage you to read more about GDPR so that you are updated on the rules.