Privacy and Cookie Policy for Feldenkrais Denmark
Data Controller
We are the data controller for the processing of personal data that we process about our customers and partners. You can find our contact details below:
Feldenkrais Denmark
C/O Lukas Racky
Moldaugade 13, 4th floor
2300 Copenhagen S
CVR No.: 45429873
It is not required for our company to have an external DPO, but if you have any questions about the processing of your personal data, you can contact us at kontakt@feldenkrais-denmark.dk.
Processing Activities
As a data controller in accordance with GDPR, we have the following processing activities.
Website Visits
When you visit our website, we use cookies to ensure the website functions properly. You can read more about this in our cookie policy further down the page.
Communication with Potential Customers
If you have questions about our website or want to learn more about our services, you can contact us via:
- Contact form
- Phone
Through this, we process your personal data to engage in a dialogue with you, such as answering questions about our services. We only process the information you provide in connection with our communication.
We typically process the following general information: name, email, phone number.
Our legal basis for processing these personal data is Article 6(1)(f) of the GDPR.
We delete our communication with you once it is clear whether you wish to use our services or not.
If there is a specific need to retain your personal data for a longer period, this may be the case.
Customers
We need to communicate with our customers to ensure that the service is delivered correctly. In this context, we may process data such as name, address, services provided, special agreements, payment information, and similar details.
Our legal basis for processing these personal data is Article 6(1)(b) of the GDPR.
Once the service has been delivered and any outstanding matters have been settled, we will delete the personal data shortly thereafter.
Accounting
We are required to store all accounting records in accordance with the Accounting Act. This means we keep invoices and similar documents for accounting purposes, which may include general personal data such as name, address, and description of services.
Our legal basis for processing personal data for accounting purposes is Article 6(1)(c) of the GDPR.
We store these data for at least five years after the end of the financial year.
Data Processors
No one can handle everything alone, and the same applies to us. We have partners and use suppliers, some of whom may be data processors.
External suppliers may provide systems for organizing our work, services, consultancy, IT hosting, or marketing.
It is our responsibility to ensure that your personal data is processed properly. Therefore, we set high standards for our partners, who must guarantee that your personal data is protected.
We enter into agreements with companies (data processors) that handle personal data on our behalf to enhance the security of your personal data.
Disclosure of Personal Data
We do not disclose your personal data to third parties.
Profiling and Automated Decision-Making
We do not conduct profiling or automated decision-making.
Transfers to Third Countries
As a general rule, we use data processors within the EU/EEA or those that store data within the EU/EEA.
In some cases, this is not possible, and we may use data processors outside the EU/EEA if they can provide adequate protection for your personal data.
Data Security
We ensure the security of personal data processing by implementing appropriate technical and organizational measures.
We have conducted risk assessments of our personal data processing activities and have implemented appropriate measures to enhance processing security.
One of our most important measures is keeping our employees updated on GDPR through ongoing awareness training, GDPR courses, and regular review of GDPR procedures with employees.
Data Subject Rights
Under the GDPR, you have several rights concerning our processing of your personal data.
If you wish to exercise your rights, you must contact us so we can assist you.
Right to Access Data (Right of Access)
You have the right to access the information we process about you, as well as additional details.
Right to Rectification (Correction)
You have the right to have incorrect information about yourself corrected.
Right to Erasure
In certain cases, you have the right to have your personal data deleted before our general deletion period occurs.
Right to Restriction of Processing
In certain cases, you have the right to restrict the processing of your personal data. If you have the right to restrict processing, we may only process the data – apart from storage – with your consent, for the establishment, exercise, or defense of legal claims, or to protect an individual or important public interests.
Right to Object
In certain cases, you have the right to object to our otherwise lawful processing of your personal data. You can also object to the processing of your data for direct marketing purposes.
Right to Data Portability
In certain cases, you have the right to receive your personal data in a structured, commonly used, and machine-readable format and to have these data transferred from one data controller to another without hindrance.
You can read more about your rights in the Danish Data Protection Agency’s guidance on data subject rights at www.datatilsynet.dk.
Withdrawal of Consent
If our processing of your personal data is based on your consent, you have the right to withdraw your consent at any time.
Complaint to the Danish Data Protection Agency
You have the right to file a complaint with the Danish Data Protection Agency if you are dissatisfied with how we process your personal data. You can find their contact details at www.datatilsynet.dk.
We generally encourage you to learn more about GDPR so you stay informed about the regulations.