Privacy Policy
This Privacy Notice will inform you as to how Wonderful Copenhagen and Copenhagen Capacity as joint data controllers collectively (“us, “we” or “our”) collect, store, process and share your personal data when you visit our website, communicate with us and sign up to newsletters and conventions. We respect your privacy and are committed to protect your personal data.
Both parties are responsible for the operation of this website as well as what follows from this Privacy Notice. If you have questions or other inquiries regarding Wonderful Copenhagen or Copenhagen Capacity, please contact us using the contact information in section 1 below.
1. WHO IS THE DATA CONTROLLER?
2. INFORMATION WE COLLECT AND HOW WE COLLECT IT
3. THE PURPOSES AND THE LAWFUL BASIS
4. SHARING OF INFORMATION COLLECTED
5. TRANSFER TO THIRD COUNTRIES
6. DATA RETENTION
7. HOW TO EXERCISE YOUR DATA PROTECTION RIGHTS
8. CHANGES TO THIS PRIVACY NOTICE
1. WHO IS THE DATA CONTROLLER?
Wonderful Copenhagen and Copenhagen Capacity are joint data controllers for the processing described in this Privacy Notice:
Fonden Wonderful Copenhagen
Nørregade 7B
1165 Copenhagen
Denmark
CVR-no.: 16326798
and
Copenhagen Capacity
Nørregade 7B
1165 Copenhagen
Denmark
CVR-no.: 17538896
If you have any questions regarding this Privacy Notice, please contact us by email at contact@woco.dk.
Wonderful Copenhagen as well as Copenhagen Capacity may be data controllers in their own right for personal data that each party collects and processes, for example when conducting an event or convention or when you communicate directly with Wonderful Copenhagen or Copenhagen Capacity. In these situations, be sure to consult the specific privacy notice of the specific organization with which you interact.
Our website provides links to other partner websites for your convenience and information. Any access to and use of such linked websites is not governed by this Privacy Notice but is instead governed by the privacy notice of such third parties. We are not responsible for the privacy practices or the content of these other websites.
If you visit our pages, communicate, or otherwise interact with us on social medias such as LinkedIn or other platforms, please make sure to consult any specific privacy notice presented on such social medias or platforms. You should be aware that sometimes we may have a joint controllership with the publisher of the social media or platform in question.
2. INFORMATION WE COLLECT AND HOW WE COLLECT IT
In the following we will tell you which types of personal data we may collect about you and how we collect it. In section 3 we have in a table explained the purposes for which we process your personal data and the lawful basis we rely on.
We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:
A. Identification information includes name, company name that you are related to and your industry background.
B. Contact information includes email and telephone number.
C. Technical Data includes IP address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website.
D. Usage Data includes information about how you use and interact with our website and services.
E. Marketing and Communications Data includes your preferences in receiving marketing from us and our partners and your communication preferences.
In most situations the information is collected directly from you when you visit our website, register to use our services, request marketing from us or otherwise communicate with us.
As you interact with our website or services, we may automatically collect Technical Data and Usage Data about your equipment, browsing actions and patterns. We collect this personal data by using cookies and similar technologies. We may also receive Technical Data about you if you visit other websites employing our cookies. We will only apply cookies – other than strictly necessary technical cookies – if you have provided your consent.
If you wish to limit or decline the cookies placed on your computer when visiting our website, you can do so at any time by changing your browser settings. How this is done depends on the used browser and remember to limit or decline the cookies in all browsers, if you use several different browsers. However, you should be aware that if you limit or decline cookies it will impact the functionality of the website which means that there are features on the website that you will not be able to see.
3. THE PURPOSES AND THE LAWFUL BASIS
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
i. Where you have provided your consent cf. GDPR Article 6(1)(a).
ii. Where we need to perform a contract, we are about to enter into or have entered into with you cf. GDPR Article 6(1)(b).
iii. Where we need to comply with a legal or regulatory obligation cf. GDPR Article 6(1)(c).
iv. Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests cf. GDPR Article 6(1)(f).
We have set out below, a description of all the ways we plan to use your personal data, and which of the legal bases we rely on to do so. We have also identified what our legitimate interests are where appropriate.
Purpose/Activity Type of data Lawful basis for processing including basis of legitimate interest
To enable you to access and interact with our website.
(C) Technical Necessary for our legitimate interest to provide you access to our website.
To enable you to communicate with us on the website, in e-mail, via social medias or otherwise.
(A) Identity
(B) Contact
(E) Marketing and Communications Necessary for our legitimate interest to communicate with you and invite you to participate in events and conventions and register for events and conventions.
To send you newsletters or other marketing.
(A) Identity
(B) Contact
(C) Technical
(E) Marketing and Communications Necessary for our legitimate interests to send you relevant marketing.
We will only send you marketing by e-mail or other means of electronic communication if you have given us your consent, or we are otherwise allowed to under the Marketing Practices Act (‘Markedsføringsloven’).
To comply with our contractual obligations and administration, e.g., when registering for an event or convention. (A) Identity
(B) Contact Necessary for the performance of a contract with you or to take steps at your request prior to entering into a contract.
To use data analytics to improve our website, services, marketing, and website visitor and user experiences.
(C) Technical
(D) Usage
Necessary for our legitimate interests to define types of services, to keep our website updated and relevant, to develop our organisation and to improve our marketing strategy.
We will only apply cookies – other than strictly necessary technical cookies – if you have provided your consent.
To use data analytics to deliver website content and our services to you and to perform targeted marketing to deliver relevant marketing and advertisements to you. To measure and track to understand how you use our website and how the content is provided to you and the effectiveness of the content and advertising we serve to you.
This tracking allows us to monitor the attractiveness of our website and gain a better understanding of potential areas for improvement to continuously improve the relevance of and accessibility of our performance and the quality of content, services and support we provide to you and to tailor our services to you.
(A) Identity
(B) Contact
(C) Technical
(D) Usage
(E) Marketing and Communications Necessary for our legitimate interests to decide our marketing strategy and to target our marketing communication to you to fit with your preferences.
We will only apply cookies – other than strictly necessary technical cookies – if you have provided your consent.
To disclose your personal data to public authorities, e.g., in connection with our reporting obligation to obtain public funding. (A) Identity
(B) Contact Necessary for compliance with a legal or regulatory obligation.
To the extent that we have referred to our legitimate interest as the legal basis for the processing of personal data specified above, we have conducted a balancing test for those interests to ensure that our interest is not overridden by your interests or fundamental rights and freedoms.
4. SHARING OF INFORMATION COLLECTED
As data controllers, we may share your personal data between Wonderful Copenhagen and Copenhagen Capacity where required for the above specified purposes. We have entered into an agreement on joint data responsibility as we are jointly responsible for the lawfulness of processing your personal data.
When you sign up to an event, convention etc. through our website form, you give us permission to handle your information in the ways necessary to arrange the event. This sometimes means that we will share your information with event partners that are not from Wonderful Copenhagen. We only share your personal data when it's necessary in order to provide a requested service, and we only share it with trusted third parties.
We may disclose personal data to third parties:
• When it is necessary for the purposes listed in section 3.
• When required by law we may disclose your personal data to public authorities.
• When cookies are set, the information generated by the cookies to track your use of the website is transmitted to third parties. We will only apply cookies – other than strictly necessary technical cookies – if you have provided your consent.
• When we believe in good faith that disclosure is necessary to establish or exercise our legal rights or defend against legal claims, protect your safety or the safety of others, investigate fraud, or respond to a government request.
We share information, including personal information, with our trusted third-party service providers that we use to provide services to us and process your data on our behalf and under our instruction, e.g., hosting of data and maintenance of IT-systems, analytics and other services for us. These third-party service providers may have access to or process your personal information for the purpose of providing these services for us. We do not permit our third-party service providers to use the personal information that we share with them for any other purpose than in connection with the services they provide to us. We have entered into data processor agreements with our data processors.
5. TRANSFER TO THIRD COUNTRIES
We will not transfer your personal data to recipients outside the EU/EEA unless we have ensured compliance with GDPR Chapter V.
Some of our third-party service providers are established outside the EU/EEA so their processing of your personal data will involve a transfer of data outside the EU/EEA. However, to ensure that your personal information receive an adequate level of protection we have ascertained that sufficient safety measures have been implemented to allow for the transfer, including where the European Commission have deemed the country to provide an adequate level of protection for personal data; or by use of specific contracts approved by the European Commission (Standard Contractual Clauses) which give personal data essentially equivalent protection as it has in Europe.
If you require further information about our current data processors established outside the EU/EEA and the safety measures in place to allow for the transfer of personal data, you can request it from us – please send your request to us using the contact information in section 1.
6. DATA RETENTION
We retain the personal information we collect where we have an ongoing legitimate need to do so. When we have no ongoing legitimate need to process your personal information, we will either delete or anonymize it.
When determining the retention period, we take into consideration various criteria, such as the type of services requested by or provided to you, mandatory retention periods provided by law and statute of limitation etc.
Data may be retained for longer period if we are legally obliged to do so, or if retention is necessary to establish, exercise or defend legal claims.
7. HOW TO EXERCISE YOUR DATA PROTECTION RIGHTS
You have certain choices available to you when it comes to your personal information. Below is a summary of those choices, how to exercise them and any limitations.
Under certain circumstances, you have the right to:
• Request access to your personal information. This enables you to receive a copy of the personal information we hold about you and to check that we are lawfully processing it.
• Request correction of the personal information that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.
• Request erasure of your personal information. This enables you to ask us to delete or remove personal information where there is no good reason for us continuing to process it.
• Object to processing of your personal information where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground. You also have the right to object where we are processing your personal information for direct marketing purposes.
• Request the restriction of processing of your personal information. This enables you to ask us to suspend the processing of personal information about you, for example if you want us to establish its accuracy or the reason for processing it.
• Request the transfer of your personal information to another party (also known as data portability).
• Where our processing is solely based on your specific consent you have the right to withdraw your consent at any time. Such withdrawal will not affect the lawfulness of processing based on consent before its withdrawal.
If you wish to exercise any of the data protection rights that are available to you then please send your request to us by using the contact information in section 1 and we will action your request in accordance with applicable data protection laws.
You have the right to complain to your local data protection authority if you are unhappy with our data protection practices. In Denmark you can lodge a complaint with Datatilsynet at www.datatilsynet.dk.
8. CHANGES TO THIS PRIVACY NOTICE
This Privacy Notice may be updated from time to time to reflect changing legal, regulatory, or operational requirements. We encourage you to periodically consult our website for the latest information on our privacy practices.