4K Projects ApS // Studio99

Our privacy policy

Personal data policy

In our personal data policy, you can read about how we process your personal data.

It is a requirement of the General Data Protection Regulation that we inform you about our processing and your rights in this regard.

Data controller

We are data controllers for the processing of the personal data we receive about our customers. You will find our contact information below.

4K Projects ApS
Stamholmen 99,
DK-2650 Hvidovre

CVR-nr.: 38837680
Phone: +45 53604096
Mail: mikkel@4kprojects.dk

Background

The processing of personal data in the company takes place in accordance with current legislation on personal data, including the Data Protection Act.

Personal data is any type of information about an identified or identifiable person. This means that it is all kinds of information that can be directly or indirectly linked to a person. Examples of this are name, address, telephone number, images and IP addresses.

Purpose of processing personal data

We process your personal data for the following purposes:

Communication

Purpose

When you have questions about our website, want to hear more about our services, book an appointment, etc., we can be in contact by:

  • Email
  • Phone
  • Social Media

Through this, we will process your personal data so that we can answer your questions or deliver a service to you. We only process the information that you give us in connection with our communication. We will typically process your name, email and phone number.

Our authority to process this personal data depends on the purpose of the processing.

  • If we are in dialogue, our authority is the Data Protection Regulation, Article 6, paragraph 1 letter f).
  • If we deliver a service to you, our authority is the Data Protection Regulation, Article 6, subsection 1 letter b).
Disclosure

We do not pass on your information to others.

Storage

We delete our saved communication with you ½ year after our last contact, if the information is not part of a service that we deliver to you. If we deliver a service to you, we store the information from our communication for up to 1 year after the last contact. Should there be a special need to store your personal data for a longer period of time,then this could be the case.

Social Media

Purpose

When you choose to follow us on our social media, we process your personal data (your name and other user information on the social media). On our social media company page (Facebook, Instagram and LinkedIn) we communicate about our business and current offers.

The basis for this processing is Article 6, paragraph 1 of the Data Protection Regulation. 1 letter a).

  • If we use advertising promotion or similar, which reaches users who have not registered with our company page, then our authority for this processing is Article 6, paragraph 1 of the Data Protection Regulation, 1 letter f).
  • If we share images, videos or similar on social media containing personal data, we will obtain consent from the person concerned, cf. Article 6, subsection of the Data Protection Regulation, letter a).
Disclosure and upon receipt of information to/from third parties

We do not pass on your personal data to others, but since we are joint data controllers with social media, do they also have access to your personal data.

Storage

If you stop “following” us or remove your “like” from our page, we will automatically stop processing your personal data. Pictures, videos, etc., which have been published on social media will generally be stored until your consent is withdrawn.

When we assist our customers in the streaming studio

Purpose

If you are a customer of our streaming studio, we will only process personal data on behalf of our customer. We make tools available so that the customer gets a good streaming experience on platforms according to the customer’s wishes. The purpose of the processing of data is determined by the customer, who is therefore the data controller while we are the data processors.

Disclosure and upon receipt of information to/from third parties

We will not pass on information to anyone unless this is determined by the customer via our agreement.

Storage

We keep a copy of the data for 7 days after the data has been handed over to the customer, after which the data is deleted.

Job applications

Purpose

If you send us a job application, we will process your application in order to assess whether you are suitable for a vacant position in our company. We will process your general personal data, as well as your job application and CV.The basis for this processing is Article 6, paragraph 1 of the Data Protection Regulation. 1 letter f).

Disclosure and upon receipt of information to/from third parties

We do not pass on your personal data.

Storage

We will store your information for up to ½ year after receiving your job application, after which the information will be deleted.

Cooperation with third parties

We use external partners and suppliers (including data processors) to perform tasks on our behalf.External parties can, for example, provide systems to organize our work, services, consultancy, IT hosting and marketing.

It is our responsibility to ensure that your personal data is processed properly. Therefore, we require our business partners that your personal data is properly protected.

We endeavor to always enter into agreements with companies that handle personal data on our behalf in order to increase the security of your personal data.

Third countries

In that case we use business partners outside the EU/EEA (in third countries), special security measures will be taken – for example via data processing agreements, which contain standard contractual provisions for the transfer of personal data.

We often make use of suppliers (data processors) when we process your personal data, for example when we send emails to each other. Our data processors, and therefore your personal data, are generally located in the EU/EEA. Sometimes, however, we will use data processors who have their data centers in the USA.

The USA is a third country and there are special requirements for transferring personal data to third countries. However, the EU allows us to use data processors in the USA, for example, if these provide the necessary guarantees in the form of standard regulations on data protection. The data processors we use in the USA provide these necessary guarantees, for example Microsoft and Facebook.

Treatment safety

We process your personal data in accordance with data protection legislation and other relevant legislation. It is crucial for us to take good care of our customers’ information. Therefore, we have implemented technical and organizational measures so that we can comply with our data responsibility.

Technical and organizational measures

Humans are often a major source for error, which is why we have ensured that our employees have been trained in our guidelines for good data processing practice. In addition, we have introduced an IT security policy, which sets the direction for the company’s overall security.

We have introduced access restrictions so that employees only have access to customer data if this is relevant to their work function.

We will continuously assess the need to use encryption or pseudonymisation of personal information as a risk mitigation initiative.

To secure our data, we use anti-virus programs, renew our passwords regularly, update our systems, and we keep up-to-date with IT developments so that we can protect ourselves against vulnerable IT systems and current IT threats.

Your rights

According to the data protection regulation, you have a number of rights in relation to our processing of information about you. If you want to make use of your rights, please contact us.

Right to see information (right of access)

You have the right to gain insight into the information that we process about you, as well as a range of additional information.

Right to rectification (corrections)

You have the right to have incorrect information about yourself corrected.

Right to deletion

In special cases, you have the right to have information about you deleted before the time of our normal general deletion occurs.

Right to restriction of processing

In certain cases, you have the right to have the processing of your personal data restricted. If you have the right to have the processing restricted, we may in future only process the information – apart from storage – with your consent, or for the purpose of establishing, asserting or defending legal claims, or to protect a person or important public interests.

Right to object

In certain cases, you have the right to object to our otherwise lawful processing of your personal data. You can also object to us processing your data for direct marketing.

Right to transmit information (data portability)

In certain cases, you have the right to receive your personal data in a structured, commonly used and machine-readable format and to have this personal data transferred from one data controller to another without hindrance.

You can read more about your rights in the Data Protection Authority’s guidance on the rights of data subjects, which you can find at www.datatilsynet.dk.

Complaint to the Danish Data Protection Authority

You have the right to file a complaint to the Danish Data Protection Authority if you are dissatisfied with the way we process your personal data. You will find the Data Protection Authority’s contact information at www.datatilsynet.dk.

We would generally encourage you to read more about these rules, as well as the personal data regulation https://gdpr.dk/persondataforordningen/