We take data protection seriously
Flapour UG (Owner of Pink-Mule.com) is the data controller, and we ensure that your personal data is processed in accordance with the law.
Address: Alter Kirchenweg 83, 24983 Handewitt
CVR: DE 1529026478
Phone no .: +45 7199 3659
We guarantee fair and transparent data protection
When we ask you to make your personal data available to us, we inform you of what data we process about you and for what purpose. You will receive information about this at the time of collection of your personal data. If we collect data about you from others, such as a supplier, authority or business partner, you will typically be informed of this already at the start of the case and in most cases we will ask you to obtain the necessary information. The purpose of obtaining information from you will almost always be justified by the assignment we have received from you, in order to fulfill a contract. If we collect data about you, we will inform you of this within 10 days after we have collected your personal data.
Exceptions to the duty to provide information
We issue a disclosure obligation to all customers for whom we create a case and customers who have started up and who have not been archived. With regard to customers in archived cases, which we for the sake of accounting law etc. choose to store, we do not send a personal data message. The reason for this is that we have made a balance of interests and have arrived at the following: - We have no other information on customers than name and address. - Customers have provided us with this information and are aware that we have it and store it. - It will be very costly to find the name and address for mailing or to find relevant e-mail addresses. Based on the above, personal data messages are not sent to customers in archived cases. Personal data is not sent to third parties in archived cases. We do not store any information about third parties. For B2B customers where it is a company or a company that is a customer, however, a name and a company phone may be included. This information has been provided by the person in question to the OS and it is personal information that can be found in a telephone directory or the like. The persons in question who have signed an e-mail for a company will, in our opinion, consider it extremely strange that they receive personal data messages in old archived cases. In the future, for example, through B2B, a third party will receive a personal data message and a reference to OS 'personal data policy on the website.
We use this type of data about you
We use data about you to ensure that we are in possession of correct information that is relevant to the assignment you as a customer have given us. The data we use is described in a data processing list, and you will receive a personal data message with information about which personal data we typically have to use in your particular case type.
Recipients or categories of recipients of information about you:
In order to fulfill the contract with you, the name, address and email are forwarded to the relevant third party. In relation to you, it can be Smartweb, Webshipr, Pairy, Bambora, Dinero, Addwish, Mailchimp, Zendesk / Chat, Viabill, Paypal, Dropbox.
We collect and store your personal data for specific purposes
We collect and store your data solely for a specific purpose, namely to fulfill the assignment you have given us.
We collect information to:
➢ have clear identity information on you,
➢ be able to transmit messages and send communications and keep you informed,
➢ settle any amounts to your account,
➢ meet legal requirements, including accounting rules, tax documentation, customer office rules. The above listing is not exhaustive.
We only process relevant personal data
We only process data about you that is relevant and sufficient for the purposes defined above. The purpose is crucial to the type of data about you that is relevant to us. The same applies to the scope of the personal data we use. For example, we do not use more data than we need for the specific purpose. Before we process your personal data, we investigate whether it is possible for us to minimize the amount of data about you. We are also investigating whether some of the data types we use can be used in anonymized or pseudonymized form. We can do so if it does not adversely affect our obligations or the service or service we offer you.
We only process necessary personal data
We collect, process and store only the personal data that is necessary in relation to fulfilling our stated purpose. In addition, it may be determined by law what type of data is required to be collected and stored for our business operations. The type and extent of personal data we process may also be necessary to fulfill a contract or other legal obligation.
We check and update your personal data
We check that the personal data we process about you is not incorrect or misleading. We also make sure to update your personal data regularly. As our service depends on your data being correct and up to date, we ask you to inform us of relevant changes to your data. You can use the contact information above to let us know your changes. To ensure the quality of your data, we have adopted internal rules and established procedures for checking and updating your personal data.
We delete your personal data when it is no longer needed
We delete your personal data when they are no longer needed for the purpose that was the reason for our collection, processing and storage of your data. However, reference is made to Article 17, according to which deletion may be omitted to the extent that it is necessary to retain information in order for legal claims to be established, asserted or defended. For the sake of the customer and ourselves, it is important that cases that we have conducted can be documented during the period in which legal claims can be made against us or our customer regarding the case. Information is therefore rarely deleted before more than 5 years have elapsed from the end of the contract. Since our complaint period is typically only 2 years, we only store the information for 5 years that is relevant to the Accounting Act. Other information, i.a. correspondence with you will be deleted after 2 years. The information we have about you in Zendesk will thus be deleted after 2 years, as we have no legitimate right to keep correspondence with you after the expiration of the complaint period.
We ensure that we have the authority to process your personal data
When we process your personal data, it is for the purposes described above. Although we have the authority to collect personal data about you, we must always ensure that we process your personal data solely for legitimate purposes. As your co-contractor, our legal basis is that it is necessary for us to have your relevant personal data to fulfill the contract we have with you.
We do not pass on your personal data without authority
We do not pass on your personal information to partners and actors for marketing purposes. As your co-contractor, we have a duty of confidentiality, which supplements the rules on personal data. We only pass on your personal data if we are legally obliged to pass it on, for example as part of reporting to an authority. In this connection, you will receive an orientation, as you have a right to insight. If we pass on information to third parties who are not independently responsible for the data, we must ensure that there is a data processor agreement that secures us and you against the data processor acting carelessly with your personal data and contrary to the instructions we give the data processor.
We protect your personal data and have internal rules on information security
We have adopted internal rules on information security, which contain instructions and measures that protect your personal data against being destroyed, lost or altered, against unauthorized publication, and against unauthorized access or knowledge of them. We have established procedures for granting access rights to those of our employees who process sensitive personal data and data that reveals information about personal interests and habits. We control their actual access through logging and monitoring. To avoid data loss, we regularly back up our data sets. We also protect the confidentiality and authenticity of your data through encryption. In the event of a security breach that results in a high risk for you of discrimination, ID theft, financial loss, loss of reputation or other significant inconvenience, we will notify you of the security breach as soon as possible.
You have the right to access your personal data
You have the right to be informed at any time what data we process about you, where it comes from and what we use it for. You can also be informed how long we store your personal data and who receives data about you, to the extent that we pass on data in Denmark and abroad. If you request it, we may inform you of the data we process about you. However, access may be restricted for the protection of the privacy of others, trade secrets and intellectual property rights. You can make use of your rights by contacting us. You will find our contact information at the top.
You have the right to have inaccurate personal data corrected or deleted.
If you believe that the personal data we process about you is inaccurate, you have the right to have it corrected. You must contact us and inform us of the inaccuracies and how they can be corrected. In some cases, we will have an obligation to delete your personal data. This applies, for example, if you withdraw your consent. If you believe that your data is no longer necessary for the purpose for which we collected it, you may request that it be deleted. You can also contact us if you believe that your personal data is being processed in violation of the law or other legal obligations. When you contact us with a request to have your personal data corrected or deleted, we will check whether the conditions have been met, and if so, implement changes or deletion as soon as possible.
You have the right to object to our processing of your personal data.
You have the right to object to our processing of your personal data. You can also object to our disclosure of your data for marketing purposes. You can use the contact information at the top to submit an objection. If your objection is justified, we will make sure to stop processing your personal data. You have the right to receive the personal data you have made available to us and the information we have obtained about you from other actors on the basis of your consent. If we process data about you as part of a contract to which you are a party, you can also have your data sent to you. You also have the right to transfer this personal data to another service provider. If you wish to exercise your right to data portability, you will receive your personal data from us in a commonly used format. If you wish to access your data, have it corrected or deleted, or object to our data processing, we will investigate whether this is possible and give you a response to your inquiry as soon as possible and no later than one month after we have received your inquiry. . ”