Personal data

Personal data policy for the Team Rynkeby Foundation

Introduction

At Team Rynkeby Foundation (hereinafter referred to as “TRF”), it is important to us that you have confidence in how we store and use your personal data. This is why we have a clear policy for how TRF processes the information you entrust to us in a responsible way – with respect for your privacy, and naturally in accordance with applicable regulations.

We retain and use your personal data for the ongoing administration of your agreement, deliveries and communication in conjunction with your products and services from us. We only store and use your personal data to the extent and during the period necessary for the purpose.

When you use TRF's digital platforms, as data controller TRF collects and processes various personal data.

We process personal data with the following overall purposes:

  • that you can use TRF's digital platforms, such as our many websites, TRF app and TRF Intranet;
  • that as a user of TRF's digital platforms you have a positive experience that the services are personalised for you; and
  • that we are able to improve and develop our products and services for the benefit of users

Types of personal data

We process the following types of personal data about you:

  • Your first and last name
  • Your address
  • Your phone number
  • Your profession
  • Your date of birth
  • Your gender
  • Your e-mail address
  • Your password
  • Names of your relatives
  • Telephone numbers of relatives
  • Your profile picture
  • Credit card details, bank account number or other means of payment, if you pay to TRF
  • If you donate money to a fundraising campaign, you can also choose to disclose your CPR/CVR number in order to obtain a tax deduction.
  • We also store data about your actions and activities on the website, such as your donation history, current and previous fundraising campaigns, events that you have attended, and other actions performed on the website.
  • Enquiries to TRF support
  • Responses to user and satisfaction surveys
  • Invoices and follow-up on collection of amounts
  • We register your IP address as part of our cookies to analyse and optimise websites, for IT and payment security purposes, as well as anti-fraud measures.

We are the data controller of this personal data. We are also the data controller for the transmission of your personal data to our data processors, cf. Section 5 and Section 6.

Use of personal data

We will ensure that your personal data is only collected and processed in accordance with one or more of the following purposes:

A) Display of content, etc.

  • To show you content on TRF's digital platforms

B) Personalisation

  • Running our customer relationship with you/your business
  • Delivery of products and services that you have ordered
  • Responding to any questions or objections you may have
  • Disclosure of your personal data to our subcontractor which your purchase concerns, cf. Section 6.
  • Notification to you of any changes in our services so that you can participate in competitions or campaigns

C) Direct marketing

  • To be able to send e-mail newsletters with content marketing on TRF’s platforms (based on your permission when this is a statutory requirement)
  • To be able to send you offers and recommendations of TRF’s products and services (based on your permission when this is a statutory requirement)
  • To be able to send push messages on apps, e.g. concerning news, etc. (based on your permission when this is a statutory requirement)

D) Business development
Statistical and analytical purposes, so that we can improve TRF's digital platforms and make them easier and better for our users. This includes the improvement of technological solutions and user experience across TRF's digital platforms and/or the development of completely new initiatives and services.

E) Compliance with legislation and other legitimate purposes
Compliance with current legislation (e.g. the EU General Data Protection Regulation and the Danish Data Protection Act, the Danish Accounting Act and the Danish Tax Act) and other legitimate purposes, e.g.

  • Documentation requirement
  • Reporting requirement
  • Compliance with basic principles for the processing of personal data and the legal basis for processing
  • Implementation and maintenance of technical and organisational security measures, including to ensure operational stability and our ability to defend our platforms against any possible hostile attacks, such as hacking attacks.
  • Protection of TRF’s legal interests, such as investigation of the misuse of TRF’s digital platforms, including infringement of rights of use, as well as legislation on, for example, personal data and intellectual property rights
  • Investigation of suspicions or knowledge of security breaches and reporting to individuals and authorities
  • Handling of enquiries and complaints from data subjects and other parties
  • Handling of inspections and enquiries from supervisory authorities
  • Handling of disputes with data subjects and third parties
  • Statistical surveys and statements
  • Mergers, takeovers, divestments, sale of TRF or parts thereof, including drawing up an information memorandum, preparation and performance of due diligence, assessment of investments and other activities in such processes.

Voluntary personal data

When we collect personal data directly from you, you give us the personal data voluntarily, to enable you to access the products and services we offer. You are not obliged to give us the personal data, but the consequence will be that you cannot create a TRF Login and thus cannot access a range of TRF's products and services.

You may withdraw your consent at any time.

Storage of personal data

Your personal data is stored by subcontractors chosen by us (hereinafter referred to as the “Data Processor”). We use data processors within the EU.

The personal data that we have collected from you may be transferred to countries outside the EU/EEA (“EEA”). If we transfer your personal data outside the EEA, we will ensure that the transfer is either made to countries that the European Commission has determined to have an adequate level of security, or that the transfer is based on the European Commission’s standard provisions.

The data processor solely acts as data processor in relation to the personal data for which we are the data controller.

The data processor will solely process data on our instructions.

Sharing of personal data

Transfer of your personal data to associated companies, including the local Team Rynkeby Steering Committee, and professional advisors may take place in accordance with current data protection legislation.

We reserve the right to use or disclose personal data to the extent necessary to comply with current legislation, undertake investigations in connection with complaints, respond to your requests, or for investigation purposes. In addition is pictures (and video) in which specific people is or can be identified, that is used in TRF's webiste, in the TRF newsletter, in TRF's social media platforms or by externals with a relevant purpose.

TRF will solely disclose the information to the extent necessary as an element of the operation of our activities, including in order to deliver your products and services purchased from us. Furthermore, we transfer your personal data to data processors in accordance with current data protection legislation, including by entering into data processing agreements with our data processor in order to ensure that personal data is only processed for the specific purposes, and to ensure appropriate security measures.

Security of your personal data

We will ensure that we also have appropriate security measures.

We have internal rules concerning information security, which include instructions to ensure that only those of our internal persons who have a justified purpose can access and use your personal data.

We have taken appropriate measures to protect your personal data from accidental or unlawful destruction, loss or impairment. and from being disclosed to unauthorised persons, misused or otherwise processed in conflict with the rules for processing of personal data in force at any time.

Erase of your personal data/retention period

  • When processing is necessary for the performance of a contract, we will retain your personal data until the end of the contractual relationship.
  • When processing takes place with your consent, TRF will retain your personal data until you withdraw your consent.
  • When the processing is necessary for TRF to pursue its legitimate interests, TRF will retain your personal data for as long as we have a justified purpose to retain this data.
  • We also store personal data for statistical purposes and this personal data is used in a cohesive and anonymised database for statistical analysis.
  • When processing is necessary to comply with a legal obligation incumbent on TRF, we will retain your personal data in accordance with the Danish Accounting Act in particular, which is currently five years from the end of the financial year in which the purchase date occurs.

Your rights

You have the right to assert your rights at any time under the current data protection legislation in force.

Subject to the legal limitations, you have certain rights, including:

  • The right of access to your personal data
  • The right to rectification of incorrect personal data
  • The right to erasure of personal data
  • The right to limitation of personal data
  • The right to data portability
  • The right to object to the processing of personal data, including with regard to automated individual decision-making

If you wish to invoke one or more of your rights, please contact us by e-mail: team-rynkeby@team-rynkeby.com. Your request will be processed in accordance with the applicable data protection legislation at any time.

When the processing of personal data is based on your consent, you will have the right to revoke the consent without any negative consequences for you. However, this will not affect the processing or disclosure of personal data prior to the withdrawal of consent.

If you wish to appeal against our processing of your personal data, you can contact the Danish Data Protection Agency.

Data controller

Team Rynkeby Fonden
Vestergade 30
5750 Ringe
Danmark
team-rynkeby@team-rynkeby.com
CVR. DK35318798

Updates

TRF regularly evaluates and updates this privacy policy. You should therefore regularly check this privacy policy for any changes that may affect our processing of your personal data.

Last updated on 06.05.2021