All rights are reserved by Cessatech A/S and use of materials is only allowed with written permission given by Cessatech A/S.
Scope of processing, categories of personal data and legal basis
In connection with carrying out our business we may process personal data for various purposes. Below you will find information about for what purposes, the types of personal data that we process about you and the legal basis for processing your personal data:
Cessatech News Service; brochures, invitations and other information and news about our business:
As part of our News Service, we collect information in order to be able to sign you up for newsletters, to be able to conduct events, or to send you our brochures about Cessatech, invitations and other information about our business.
If you sign up for Cessatech News Service, we will be processing your personal data in that connection. We process your name, email, company, position, organization, email, telephone and areas of interest. The legal basis for our processing is our legitimate interest in providing you with information about our company and products, see Article 6(1)(f) of the GDPR.
You may at any time state that you no longer want to receive emails or other information from us.
Note that in order to receive investment information regarding Cessatech, you are required to state the following personal data: Your name and your email and the service you are interested in. Should you decide not to provide the required information, you may not be allowed access to the relevant information. For instance, we need your contact information in order to be able to respond to an inquiry from you. The legal basis for our processing is our legitimate interest in providing you with investment information, see Article 6(1)(f) of the GDPR.
Collaboration partner or potential collaboration partner:
If you are a collaboration partner or a potential collaboration partner, we generally process your information for us to perform our duties under the contract or potential contract.
Generally, company information is not subject to the General Data Protection Regulation (GDPR); however, according to circumstances we may process information about your identity, contact information, and professional information, including name, email address, telephone number, your home address, position, educational background, and information about our business relationship. The legal basis for our processing is Article 6(1)(b) of the GDPR. Also, to comply with KYC-requirements we may process financial information, including payment and tax information. The legal basis for this processing is Article 6(1)(c) of the GDPR.
Applications – unsolicited and applications for open positions
From time to time, Cessatech receives unsolicited applications as well as applications related to open positions.
As part of the recruitment process, we process the personal data, which you have provided in your application, including your contact information, CV, educational and work background, personal interest etc., as well as the information you provide to us during any interviews. We may also collect information about you, which is publicly available e.g. through LinkedIn or other social media platforms. We will only reach out to your references with your consent.
Applications will be deleted after no later than 6 months after receiving the application.
The legal basis for our processing is our legitimate interest in finding the right candidate for a position in Cessatech, see Article 6(1)(f) of the GDPR.
In some instances, we transfer your personal data to Cessatech’s business partners and suppliers, such as IT suppliers, marketing agencies, consultants, suppliers of newsletter services, etc. These business partners solely process the personal data on behalf of Cessatech and in accordance with Cessatech’s instructions
We may also disclose your personal data to external third parties if we are required to do so or if it is part of the collaboration, the service we provide to you or if required by law.
Furthermore, we may also share your personal data with our group companies (if any) if this is required to fulfil the purpose for which we process your personal data.
Cessatech may transfer your personal data to third countries (countries outside the EU/EEA). This may be the case if we have to involve external parties, e.g. IT suppliers, lawfirms, financial advisors, other advisors, banks, insurance companies in order to comply with our contractual obligations or act according to a contract or collaboration. It may also be relevant to involve foreign authorities etc. Our transfer of personal data will generally be subject to the European Commission’s standard contractual clauses of which you can request a copy by contacting us. Ad hoc transfer of personal data may be subject to Article 49(1)(b-e) of the GDPR.
Storage and deletion
We will delete your personal data when we no longer need to process it for one or more of the purposes mentioned above. However, special legislation, including in the Danish Bookkeeping Act, the Danish Limitation Act etc., may entail an obligation or right for us to store such data for an extended period of time. The data may also be processed and stored for a longer period, if it is anonymized.
You are entitled to access the personal data processed about you, albeit subject to certain statutory exceptions. Furthermore, you may object to the collection and further processing of your personal data. You are also entitled to have your personal data corrected or to ask us to limit the processing of your personal data.
If you make a request to this effect, we will without undue delay delete the personal data we have registered about you, unless we are entitled to keep processing the data on a different basis, for instance if such processing is necessary in order to be able to establish a legal claim.
In certain circumstances you may also ask us to provide you with a copy of your personal data in a structured, generally applied and machine-readable format and request that we transfer the data to another data controller (data portability).
If our processing of your personal data is based on your consent, you may at any time revoke your consent. To do so, you need to contact us. If you revoke your consent, we will cease to process your personal data, unless we are entitled or obligated to continue our processing or storage of your personal data on a different basis, including pursuant to the law. Revoking your consent does not affect the legality of the processing that took place prior to such revocation.
If you want to exercise your rights as described above, feel free to contact us at any time (see below).
Also, feel free to contact us if you disagree with the way in which we process your personal data or the purposes for which we process the information. You may also file a complaint with the Danish Data Protection Agency.
Links to other websites
In the event that our website has links to other websites or to integrated websites, Cessatech is not responsible for the content of the websites of other companies (third-party websites) or for the practices of such companies regarding the collection of personal data.
When you visit other websites, you should always read their policies on protection of personal data and other relevant policies.