Privacy Policy

Dolphin Care ApS

Central Business Reg. number: 37 51 76 90

Who we are

Dolphin Care ApS (referred to as “we” or “us”) is the data controller responsible for the processing of your personal data as described in this privacy policy.

If you have questions regarding the privacy policy or our processing of your personal data, you can always contact us at:

Dolphin Care ApS

Unionsvej 11

DK 4600 Koege

Email: info@dolphincare.net

 

We process your personal data

We collect and process personal data for several purposes as described below.

We only disclose your personal data when it is necessary to provide our services to you or if it follows from a legal obligation. When we disclose personal data, we always make a great effort to ensure that everyone to whom we disclose the personal data complies with applicable data protection legislation.

As a starting point your personal data will be deleted or anonymized when our processing of your personal data is on longer necessary for the purposes for which the personal data was collected. 

Business partners’ contact persons

To manage the daily business relation with customers, suppliers and other business partners, we collect and process the following personal data about our customers’ and business partners’ contact persons or other relevant natural persons:

  • Ordinary personal data such as name, business contact information and other costumer management related personal data in accordance with article 6(1)(f) of the GDPR.

To the extent necessary we disclose your personal data to our suppliers, business partners and data processors, e.g. operation and software providers, freight and shipping companies, accounting or law firms.

Personal data collected and processed in connection with the sale of our products and services is generally stored for five (5) years, unless we continue to have a legitimate purpose for the storage, e.g. our ongoing business relationship, in connection with complaints and warranty cases, product recalls and security updates of a product delivered by us.

Users of our website

To manage our website, we collect and process the following personal data about users who visit the website when placing cookies:

  • Ordinary personal data such as your IP address and tracking on our website in accordance with article 6(1)(a) of the GDPR.

To manage our website, we may disclose your personal data to third parties or data processors, e.g. operation and software providers.

The personal data collected in connection with our placement of cookies is stored until the cookies is deleted. You can read more about cookies in our cookie policy: LINK

Candidates applying for a job

To process application material, we collect and process the following personal data:

  • Ordinary personal data you submit to us such as your name, contact information, photo, information on education, job history and personal profile in accordance with articles 6(1)(b) and 6(1)(f) of the GDPR,
  • Ordinary personal data about you which we collect from the internet, including from social media sites such as Facebook and LinkedIn in accordance with articles 6(1)(b) and 6(1)(f) of the GDPR,
  • Ordinary personal data about you which we collect from previous employers, other references, or a public authority, if you give your prior consent in accordance with article 6(1)(a) of the GDPR,
  • Ordinary personal data in relation to personal profile tests, if you give your prior consent in accordance with article 6(1)(a) of the GDPR.

If we process special categories of personal data (sensitive personal data in accordance with article 9(2) of the GDPR) about you or your civil registration number (CPR number), because you have included such personal data in your application material on your own initiative, your transmission of this personal data is considered as consent to our processing of this personal data during the recruitment process (invited applications), or until we have assessed if we would like to save your application for some time for potential future employment (uninvited applications).

In connection with the recruitment process, we may be required to disclose your personal data to our suppliers, business partners and data processors, e.g. recruitment partners and test providers or operations and software providers.

If your application does not lead to employment with us, we will normally store your personal data until the recruitment process is complete, after which your personal data will be deleted.

If we request to save your application for some time after the end of the recruitment process, we will ask for your explicit consent in accordance with article 6(1)(a) of the GDPR.

There may be specific instances where we store your personal data for a longer period to be able to defend ourselves against any potential legal claims. If so, we store your personal data in accordance with the applicable rules of limitation in accordance with article 6(1)(f).

If you have submitted an uninvited job application, we will store it until we have assessed the application and whether it is appropriate to store it with a view to possible subsequent employment. If we find that we have a purpose for storing your application, we will request your consent to store your application for 6-12 months, depending on the position you are applying for. Otherwise, we will delete your application when we have made the above assessment and provided the necessary feedback to you.

If you wish to withdraw your consent

If we process your personal data based on your consent, you may withdraw your consent at any time.

If you wish to withdraw your consent, please contact us as described above in section 1.

If you choose to withdraw your consent, it will not affect the legality of our processing of your personal data based on your previous consent and up to the time when we received notification of the withdrawal, nor our processing of your personal data on another basis than consent. Therefore, if you withdraw your consent, the withdrawal will take effect from the time when we receive notification hereof.

Transfer of personal data to international organisations or third countries

In some cases, we may transfer your personal data to international organisations or organisations based in third countries (countries outside of the European Economic Area). We will only initiate or approve such transfers, if we have a legal basis for the transfer, including one of the following:

  • The EU Commission has decided that there is an adequate level of protection in the country in question in accordance with article 45 of the GDPR,
  • Other appropriate safeguards have been taken, such as the use of the EU Commissions Standard Contractual Clauses in accordance with article 46(2)(c) of the GDPR, or
  • If one or more of the exceptions in article 49 of the GDPR applies.

Security Measures

Data protection and data security is a priority to us, and our focus is therefore on processing your personal data in compliance with applicable data protection legislation.

To protect your personal data in the best possible way, we continuously assess the risks that may be associated with our processing activities. We pay particular attention to protecting your personal data against discrimination, identity theft, financial loss, loss of reputation and data confidentiality.

We have adopted internal information security rules, which contain instructions and measures to protect your personal data from being destroyed, lost/altered and against any unauthorized disclosure or unintended access.

To avoid loss of personal data, we continuously back up our systems, and we make use of encryption or other security measures where necessary, and we train our employees in handling personal data.

In the event of a data breach which involves high risk to your rights, we will notify you of the breach as soon as possible under the given circumstances.

Your rights

When we process your personal data, you have a number of rights as described below.

The right of access and right of rectification

You are entitled to access to the personal data, we process about you. You are also entitled to have any incorrect personal data rectified.

The right “to be forgotten”

Under specific circumstances, you have the right to have your personal data erased prior to the time of our ordinary general erasure.

The right to restrict processing

Under specific circumstances, you have the right to request that our processing of your personal data shall be limited to storage.

The right to object

Under specific circumstances, you have the right to object to our processing of your personal data, including when our processing of your personal data is based on our legitimate interest in accordance with article 6(1)(f) of the GDPR.

The right to have personal data transmitted (data portability)

Under specific circumstances, you are entitled to receive your personal data in a structured, commonly used, and machine-readable format and to have such personal data readily transferred from one data controller to another.

If you wish to make use of your rights, you can contact us as described above in section 1.

You can read more about your rights in the Danish Data Protection Agency’s guidelines available at www.datatilsynet.dk

Complaint to the data protection authorities

If you are dissatisfied with the way in which we process your personal data, you have the right to file a complaint to the relevant data protection authorities. The Danish Data Protection Agency’s contact information and information on complaints can be found at www.datatilsynet.dk.