Updated 22 March 2024

Phase One Privacy Policy

1 Introduction

HERE YOU CAN READ ABOUT HOW PHASE ONE A/S (HEREINAFTER “PHASE ONE”, “WE,” “US,” AND “OUR”) COLLECTS, PROCESSES, AND STORES YOUR PERSONAL DATA AS PART OF OUR OPERATIONS AND THE ACTIVITIES DESCRIBED IN SECTION 3 BELOW. 

RESPONSIBLE HANDLING OF PERSONAL DATA IS VERY IMPORTANT TO OUR BUSINESS GOALS AND REPUTATION. THEREFORE, THIS PRIVACY POLICY DESCRIBES HOW AND WHY WE COLLECT PERSONAL DATA ABOUT YOU, HOW THE DATA IS USED, WHEN IT IS DELETED, AND HOW YOU, AMONG OTHER THINGS, CAN ACCESS YOUR PERSONAL DATA. 

2 Data controller

PHASE ONE IS THE DATA CONTROLLER FOR THE PROCESSING ACTIVITIES DESCRIBED IN THIS PRIVACY POLICY UNLESS OTHERWISE STATED IN THE ACTIVITIES IN SECTION 3 BELOW. IF YOU HAVE ANY QUESTIONS ABOUT THIS PRIVACY POLICY OR OUR PROCESSING OF YOUR PERSONAL DATA AS DESCRIBED IN SECTION 3 BELOW, PLEASE CONTACT US AT: 

PHASE ONE A/S 

VAT NUMBER: 40986642 

ADDRESS: ROSKILDEVEJ 39, 2000 FREDERIKSBERG, DENMARK 

EMAIL: GDPR@PHASEONE.COM 

3 How do we process personal data about you as part of our activities?

WE COLLECT AND PROCESS PERSONAL DATA IN DIFFERENT SITUATIONS, AND THE PURPOSES OF THE COLLECTION, WHAT THE PERSONAL DATA IS USED FOR AND WHEN IT IS DELETED CAN VARY. THE INDIVIDUAL ACTIVITIES WHERE PHASE ONE (AS DATA CONTROLLER) CAN COLLECT PERSONAL DATA ABOUT YOU ARE THEREFORE DESCRIBED SEPARATELY BELOW. 

3.1 When you visit our website 

When you visit our website https://www.phaseone.com/, we process, store, and disclose personal data about you for various activities and through cookies and your personal data may be used for the purposes specified below. 

You can read more about cookies, the different types of cookies we use, how to change your cookie settings, delete cookies, and more in our cookie policy which is available here: https://www.phaseone.com/legal/cookie-policy/. 

OUR WEBSITE MAY CONTAIN LINKS TO OTHER WEBSITES OR TO INTEGRATED WEBSITES. WE ARE NOT RESPONSIBLE FOR THE CONTENT OF WEBSITES FROM OTHER COMPANIES OR THEIR PROCESSING PRACTICES OF PERSONAL DATA, AND WE REFER YOU TO READ THEIR PRIVACY POLICY AS WELL AS OTHER RELEVANT POLICIES RELEVANT FOR OTHER WEBSITES. 

3.1.1What personal data is processed and where does it come from? 

WE EXPECT TO COLLECT THE FOLLOWING PERSONAL DATA ABOUT YOU THROUGH COOKIES ON OUR WEBSITE: 

  • ONLINE IDENTIFIERS (IP-ADDRESS, COOKIES, LOCATION DATA ETC.) 
  • INFORMATION ABOUT WHICH DEVICE YOU USE (PC, TABLET, MOBILE PHONE ETC.) AND DEVICE SETTINGS (LANGUAGE, BROWSER INFO, OPERATING SYSTEM ETC.) 
  • INFORMATION ABOUT YOUR BEHAVIOUR ON OUR WEBSITE, SUCH AS CLICKS, INTERESTS, AND BROWSING HISTORY. 

3.1.2 Why do we process the personal data? 

WE PROCESS YOUR PERSONAL DATA FOR THE FOLLOWING PURPOSES: 

  • For administration, maintenance, and development of the website 
  • To analyse the use of our website and collect statistics about visitors 
  • For marketing purposes from us and third parties, such as our newsletter service 

3.1.3 What is the legal basis for our processing?  

OUR PROCESSING OF PERSONAL DATA IS BASED ON THE FOLLOWING LEGAL BASES: 

  • CONSENT: WHEN YOU VISIT OUR WEBSITE, WE ASK FOR YOUR CONSENT TO PLACE COOKIES IN ACCORDANCE WITH OUR COOKIE POLICY. WE PROCESS YOUR PERSONAL DATA TO OFFER FUNCTIONS ON THE WEBSITE, COLLECT STATISTICS AND PROMOTE PRODUCTS FOR MARKETING PURPOSES BASED ON YOUR CONSENT. THIS LEGAL BASIS IS FOUND IN ARTICLE 6(1)(A) OF THE GDPR. YOU CAN WITHDRAW YOUR CONSENT AT ANY TIME BY CONTACTING US (SEE SECTION 2 ABOVE). 
  • LEGITIMATE INTEREST: WE MAY COLLECT PERSONAL DATA ABOUT YOU TO BE ABLE TO RUN THE WEBSITE, PERFORM STATISTICS AND ANALYTICS, MAINTENANCE, DEVELOPMENT OF THE WEBSITE, AND FOR SECURITY REASONS. THIS LEGAL BASIS IS FOUND IN ARTICLE 6(1)(F) OF THE GDPR. THE LEGITIMATE INTERESTS ARE OUR LEGITIMATE INTERESTS IN PROVIDING AND OPTIMISING OUR WEBSITE TO YOU AND PROVIDING YOU WITH THE BEST ONLINE EXPERIENCE AND PRODUCTS. YOU CAN OBJECT TO THIS PROCESSING AT ANY TIME BY CONTACTING US (SEE SECTION 2 ABOVE). 

3.1.4 Who do we share your personal data with? 

YOUR PERSONAL DATA MAY BE SHARED WITH ONLINE SERVICE AND AD PROVIDERS AND ANY OF OUR CORPORATE ENTITIES. 

WE MAY TRANSFER YOUR PERSONAL DATA TO COUNTRIES OUTSIDE OF THE EU/EEA IF NECESSARY TO CARRY OUT THE RELEVANT TASK. ANY TRANSFER WILL TAKE PLACE SUBJECT TO VALID LEGAL GROUNDS FOR SUCH TRANSFER (THE GDPR CHAPTER 5), E.G. THE STANDARD CONTRACTUAL CLAUSES PUBLISHED BY THE EU COMMISSION WHICH CAN BE FOUND HERE: STANDARD CONTRACTUAL CLAUSES FOR INTERNATIONAL TRANSFERS (EUROPA.EU). WE MAY ALSO RELY ON THE EU-U.S DATA PRIVACY FRAMEWORK, IF WE TRANSFER PERSONAL DATA TO THE US WHICH CAN BE FOUND HERE: HOME (DATAPRIVACYFRAMEWORK.GOV). 

3.1.5 For how long do we store your personal data?  

THE RETENTION PERIOD DEPENDS ON THE COOKIE. YOUR PERSONAL DATA IS STORED IN ACCORDANCE WITH OUR COOKIE POLICY WHICH YOU CAN FIND HERE: HTTPS://WWW.PHASEONE.COM/LEGAL/COOKIE-POLICY/. 

WE MAY STORE AND PROCESS DATA FOR LONGER IN ANONYMISED FORM MEANING WE CAN NO LONGER IDENTIFY YOU. 

3.2 When you subscribe to our newsletter 

WHEN YOU SUBSCRIBE TO OUR NEWSLETTER FOR DIRECT MARKETING PURPOSES, WE PROCESS DIFFERENT PERSONAL DATA ABOUT YOU. 

3.2.6 What personal data is processed and where does it come from? 

WE PROCESS THE FOLLOWING PERSONAL DATA ABOUT YOU IN RELATION TO OUR NEWSLETTER SERVICES: 

  • Contact information (name, email, phone number, and country) 
  • Employer information  
  • Marketing preferences, interests, and click behaviour on published content, including pixels in newsletters 
  • Your consent and the date of your consent. 

3.2.7 Why do we process the personal data? 

WE PROCESS YOUR PERSONAL DATA FOR THE FOLLOWING PURPOSES: 

  • For direct marketing purposes, and to provide you with our newsletter service. 

3.2.8 What is the legal basis for our processing?  

OUR PROCESSING OF GENERAL PERSONAL DATA IS BASED ON THE FOLLOWING LEGAL BASES: 

  • CONSENT: WHEN YOU SUBSCRIBE TO OUR NEWSLETTER, WE ASK FOR YOUR CONSENT FOR DIRECT MARKETING PURPOSES. THIS LEGAL BASIS IS FOUND IN THE DANISH MARKETING ACT S. 10. YOU CAN WITHDRAW YOUR CONSENT AT ANY TIME BY CONTACTING US (SEE SECTION 2 ABOVE), OR BY UNSUBSCRIBING TO OUR NEWSLETTERS IN THE BOTTOM OF THE EMAIL. 

3.2.9 Who do we share your personal data with? 

WE MAY SHARE YOUR PERSONAL DATA AND/OR MAKE THEM AVAILABLE TO OTHER SUPPLIERS AND/OR SERVICE PROVIDERS IN CONNECTION WITH THE GENERAL OPERATION OF OUR BUSINESS, E.G. IN CONNECTION WITH THE ADMINISTRATION OF OUR NEWSLETTER SOLUTION, ANALYSIS, AND MARKETING TASKS. 

WE MAY TRANSFER YOUR PERSONAL DATA TO COUNTRIES OUTSIDE OF THE EU/EEA IF NECESSARY TO CARRY OUT THE RELEVANT TASK. ANY TRANSFER WILL TAKE PLACE SUBJECT TO VALID LEGAL GROUNDS FOR SUCH TRANSFER (THE GDPR CHAPTER 5), E.G. THE STANDARD CONTRACTUAL CLAUSES PUBLISHED BY THE EU COMMISSION WHICH CAN BE FOUND HERE: STANDARD CONTRACTUAL CLAUSES FOR INTERNATIONAL TRANSFERS – EUROPEAN COMMISSION (EUROPA.EU). WE MAY ALSO RELY ON THE EU-U.S DATA PRIVACY FRAMEWORK, IF WE TRANSFER PERSONAL DATA TO THE US WHICH CAN BE FOUND HERE: HOME (DATAPRIVACYFRAMEWORK.GOV). 

3.2.10 For how long do we store your personal data?  

YOUR PERSONAL DATA IS STORED AS LONG AS YOUR CONSENT TO RECEIVE NEWSLETTERS IS ACTIVE AND FOR A PERIOD THEREAFTER TO DOCUMENT THE VALIDITY OF THE CONSENT. 

IN ACCORDANCE WITH THE RECOMMENDATIONS OF THE DANISH CONSUMER OMBUDSMAN, WE KEEP DOCUMENTATION OF YOUR MARKETING CONSENT FOR AT LEAST TWO YEARS AFTER YOU HAVE WITHDRAWN YOUR CONSENT AND IN ANY CASE FOR AS LONG AS IT IS RELEVANT FOR US TO BE ABLE TO DOCUMENT THE VALIDITY OF THE CONSENT. 

THE RETENTION PERIOD IS BASED ON OUR LEGITIMATE INTEREST IN BEING ABLE TO DEMONSTRATE THAT DIRECT MARKETING HAS TAKEN PLACE IN ACCORDANCE WITH APPLICABLE LEGISLATION (ARTICLE 6(1)(F) OF THE GDPR).   

WE MAY STORE AND PROCESS DATA FOR LONGER IN ANONYMISED FORM MEANING WE CAN NO LONGER IDENTIFY YOU, OR IF WE ARE OBLIGED TO DO SO BY LAW OR AS PART OF A SPECIFIC CASE. 

3.3 When you participate in courses, webinars, and other events 

WHEN YOU PARTICIPATE IN OUR COURSES, COMPETITIONS, WORKSHOPS, SEMINARS (ONLINE OR IN PERSON), OR OTHER EVENTS, WE PROCESS DIFFERENT PERSONAL DATA ABOUT YOU. 

3.3.11 What personal data is processed and where does it come from? 

WE PROCESS THE FOLLOWING PERSONAL DATA ABOUT YOU: 

  • Contact information (name, phone number, and email)  
  • Title and employer information 
  • Video recordings if the event takes place online 
  • Photos for marketing purposes 
  • Other information you may provide us with in connection with the event. 

3.3.12 Why do we process the personal data? 

WE PROCESS YOUR PERSONAL DATA FOR THE FOLLOWING PURPOSES: 

  • For administration, maintenance, and development of our (existing or future) relationship 
  • To communicate with you, such as providing service info and support about the event 
  • For marketing purposes, such as providing info about relevant topics and the events 
  • Financial purposes 

3.3.13 What is the legal basis for our processing?  

OUR PROCESSING OF GENERAL PERSONAL DATA IS BASED ON THE FOLLOWING LEGAL BASES: 

  • CONSENT: IF SEND OUT EVALUATION FORMS, WE MAY ASK FOR YOUR CONSENT. THIS LEGAL BASIS IS FOUND IN THE ARTICLE 6(1)(A) OF THE GDPR. YOU CAN WITHDRAW YOUR CONSENT AT ANY TIME BY CONTACTING US (SEE SECTION 2 ABOVE) 
  • CONTRACTUAL OBLIGATION: WHEN YOU ENTER INTO A CONTRACT WITH US FOR OUR EVENT SERVICES, WE PROCESS YOUR PERSONAL DATA IN ACCORDANCE WITH THE RIGHTS AND OBLIGATIONS AGREED BETWEEN US AND TO OFFER YOU THE SERVICES. THIS LEGAL BASIS IS FOUND IN ARTICLE 6(1)(B) OF THE GDPR. 
  • LEGITIMATE INTEREST: THE PERSONAL DATA MAY ALSO BE PROCESSED BASED ON THE LEGITIMATE INTERESTS RULE (GDPR ARTICLE 6(1)(F)) WHERE THE LEGITIMATE INTEREST IS TO COMPLETE THE EVENT, COMMUNICATE WITH YOU, IF THE EVENT DOES NOT REQUIRE SIGN-UP ETC. 

3.3.14 Who do we share your personal data with? 

WE MAY SHARE YOUR PERSONAL DATA AND/OR MAKE THEM AVAILABLE TO OTHER SUPPLIERS AND/OR SERVICE PROVIDERS IN CONNECTION WITH THE SERVICES, E.G. IF EXTERNAL PARTIES ARE INCLUDED IN THE EVENT. 

WE MAY TRANSFER YOUR PERSONAL DATA TO COUNTRIES OUTSIDE OF THE EU/EEA IF NECESSARY TO CARRY OUT THE RELEVANT TASK. ANY TRANSFER WILL TAKE PLACE SUBJECT TO VALID LEGAL GROUNDS FOR SUCH TRANSFER (THE GDPR CHAPTER 5), E.G. THE STANDARD CONTRACTUAL CLAUSES PUBLISHED BY THE EU COMMISSION WHICH CAN BE FOUND HERE: STANDARD CONTRACTUAL CLAUSES FOR INTERNATIONAL TRANSFERS (EUROPA.EU). WE MAY ALSO RELY ON THE EU-U.S DATA PRIVACY FRAMEWORK, IF WE TRANSFER PERSONAL DATA TO THE US WHICH CAN BE FOUND HERE: HOME (DATAPRIVACYFRAMEWORK.GOV). 

3.3.15 For how long do we store your personal data?  

YOUR PERSONAL DATA IS STORED AS LONG AS WE ARE IN A CONTRACTUAL RELATIONSHIP. PERSONAL DATA IS DELETED NO LATER THAN 5 YEARS AFTER THE END OF THE EVENT OR CONTRACTUAL RELATIONSHIP. 

WE MAY STORE AND PROCESS DATA FOR LONGER IN ANONYMISED FORM MEANING WE CAN NO LONGER IDENTIFY YOU, OR IF WE ARE OBLIGED TO DO SO BY LAW OR AS PART OF A SPECIFIC CASE. 

ACCOUNTING MATERIAL, INCLUDING PERSONAL DATA, WHICH WE ARE OBLIGED TO STORE, IS DELETED NO EARLIER THAN 5 YEARS AFTER THE END OF THE FINANCIAL YEAR TO WHICH THE INFORMATION RELATES ACCORDING TO THE DANISH BOOKKEEPING ACT. 

3.4 When you communicate with us, e.g. by e-mail, phone, request support, or use our contact form 

WHEN YOU CONTACT US FOR SUPPORT, OR OTHERWISE COMMUNICATE WITH US, WE COLLECT AND PROCESS YOUR PERSONAL DATA. 

WE URGE YOU NOT TO DISCLOSE ANY SENSITIVE OR CONFIDENTIAL PERSONAL DATA TO US UNLESS IT IS STRICTLY NECESSARY FOR YOUR INQUIRY. FOR SECURITY REASONS, WE ENCOURAGE YOU TO SEND THE INFORMATION IN ENCRYPTED FORM IF YOU SUBMIT CONFIDENTIAL OR SENSITIVE PERSONAL DATA VIA EMAIL. 

3.4.16 What personal data is processed and where does it come from? 

WE COLLECT, PROCESS, AND STORE THE FOLLOWING TYPES OF PERSONAL DATA ABOUT YOU: 

  • CONTACT INFORMATION (NAME, EMAIL, AND PHONE NUMBER) 
  • THE SUBJECT OF YOUR INQUIRY, INCLUDING DATE, AND ANY ATTACHMENTS YOU INCLUDE 
  • EMPLOYER INFORMATION 
  • COMMUNICATION HISTORY 
  • CUSTOMER ID 
  • OTHER PERSONAL DATA THAT YOU PROVIDE IN CONNECTION WITH YOUR INQUIRY. 

3.4.17 Why do we process the personal data? 

WE PROCESS YOUR PERSONAL DATA FOR THE FOLLOWING PURPOSES: 

  • To process your inquiry or request 
  • Customer service and sales 
  • General communication with you 
  • Statistics and analysis to improve our Services 
  • Financial purposes. 

3.4.18 What is the legal basis for our processing?  

OUR PROCESSING OF GENERAL PERSONAL DATA IS BASED ON THE FOLLOWING LEGAL BASES: 

  • Contractual obligations: If your enquiry concerns a (potential) agreement, we process your data to implement contractual measures or fulfil the agreement with you (Article 6(1)(b) of the GDPR). 
  • LEGITIMATE INTEREST: WE MAY COLLECT PERSONAL DATA ABOUT YOU TO BE ABLE TO HANDLE YOUR INQUIRY, COMMUNICATE WITH YOU, PROVIDE CUSTOMER SERVICE, AND DEVELOP OUR SERVICES. THIS LEGAL BASIS IS FOUND IN ARTICLE 6(1)(F) OF THE GDPR. YOU CAN OBJECT TO THIS PROCESSING AT ANY TIME BY CONTACTING US (SEE SECTION 2 ABOVE). 

3.4.19 Who do we share your personal data with 

THE PERSONAL DATA MAY BE SHARED WITH OUR IT SUPPLIERS (DATA PROCESSORS) WHO PROCESS AND STORE THE PERSONAL DATA ON OUR BEHALF AND IN ACCORDANCE WITH OUR INSTRUCTIONS AND BASED ON A DATA PROCESSING AGREEMENT ENTERED INTO. 

WE MAY TRANSFER YOUR PERSONAL DATA TO COUNTRIES OUTSIDE OF THE EU/EEA IF NECESSARY TO CARRY OUT THE RELEVANT TASK. ANY TRANSFER WILL TAKE PLACE SUBJECT TO VALID LEGAL GROUNDS FOR SUCH TRANSFER (THE GDPR CHAPTER 5), E.G. THE STANDARD CONTRACTUAL CLAUSES PUBLISHED BY THE EU COMMISSION WHICH CAN BE FOUND HERE: STANDARD CONTRACTUAL CLAUSES FOR INTERNATIONAL TRANSFERS (EUROPA.EU). WE MAY ALSO RELY ON THE EU-U.S DATA PRIVACY FRAMEWORK, IF WE TRANSFER PERSONAL DATA TO THE US WHICH CAN BE FOUND HERE: HOME (DATAPRIVACYFRAMEWORK.GOV). 

3.4.20 For how long do we store your personal data?  

YOUR PERSONAL DATA WILL BE DELETED WHEN WE NO LONGER NEED TO PROCESS IT FOR THE FULFILMENT OF ONE OR MORE OF THE ABOVE PURPOSES. IN MOST CASES, WE WILL DELETE YOUR INQUIRY ONCE WE HAVE HANDLED AND COMPLETED YOUR INQUIRY. 

DEPENDING ON THE NATURE OF THE INQUIRY, WE MAY RETAIN YOUR PERSONAL DATA FOR UP TO 5 YEARS FROM THE RESPONSE TO YOUR INQUIRY FOR THE PURPOSE OF DOCUMENTATION AND WITH REFERENCE TO THE STATUTE OF LIMITATIONS RULES ON THE LIMITATION OF ORDINARY MONETARY CLAIMS. 

ACCOUNTING MATERIAL, INCLUDING PERSONAL DATA, WHICH WE ARE OBLIGED TO STORE, IS DELETED NO EARLIER THAN 5 YEARS AFTER THE END OF THE FINANCIAL YEAR TO WHICH THE INFORMATION RELATES ACCORDING TO THE DANISH BOOKKEEPING ACT 

THE PERSONAL DATA MAY BE PROCESSED AND STORED FOR LONGER IF WE ARE OBLIGED TO DO SO BY LAW. 

WE MAY STORE AND PROCESS DATA FOR LONGER IN ANONYMISED FORM MEANING WE CAN NO LONGER IDENTIFY YOU. 

3.5 When you visit our office 

WHEN YOU VISIT OUR OFFICE, WE PROCESS YOUR PERSONAL DATA FOR ACCESS CONTROL AND GUEST REGISTRATION PURPOSES. 

3.5.21 What personal data is processed and where does it come from? 

WE COLLECT, PROCESS, AND STORE THE FOLLOWING TYPES OF PERSONAL DATA ABOUT YOU: 

  • CONTACT INFORMATION (NAME, EMAIL, AND PHONE NUMBER) 
  • WORK INFORMATION 
  • LICENSE PLATE (IF YOU ARRIVED BY CAR) 
  • VISIT HISTORY, INCLUDING DATE, TIME, AND PURPOSE OF VISIT 
  • OTHER PERSONAL DATA THAT YOU PROVIDE IN CONNECTION WITH YOUR VISIT. 

3.5.22 Why do we process the personal data? 

WE PROCESS YOUR PERSONAL DATA FOR THE FOLLOWING PURPOSES: 

  • To provide you access to our office facilities 
  • To administer your visit with us 
  • To ensure safety of our employees and to prevent and investigate crime on our office premises 

3.5.23 What is the legal basis for our processing?  

OUR PROCESSING OF PERSONAL DATA IS BASED ON THE FOLLOWING LEGAL BASES: 

  • Legitimate interest: Pursuing our or a third party’s legitimate interests, which outweigh your fundamental rights and freedoms. This legal basis is found in Article 6(1)(f) of the GDPR. The legitimate interests referred to are our legitimate interests in providing you with access to our office and in protecting our employees. You can object to this processing at any time by contacting us (see section 2 above). 

3.5.24 Who are the personal data shared with?  

THE PERSONAL DATA MAY BE SHARED WITH OUR IT SUPPLIERS (DATA PROCESSORS) WHO PROCESS AND STORE THE PERSONAL DATA ON OUR BEHALF AND IN ACCORDANCE WITH OUR INSTRUCTIONS AND BASED ON A DATA PROCESSING AGREEMENT ENTERED INTO. 

3.5.25 For how long do we store your personal data?  

YOUR PERSONAL DATA IS DELETED WHEN WE NO LONGER NEED TO PROCESS IT TO FULFIL ONE OR MORE OF THE ABOVE-MENTIONED PURPOSES. IF YOU ARE A CUSTOMER, WE DELETE THE PERSONAL DATA 5 YEARS AFTER TERMINATION OF OUR CONTRACTUAL RELATIONSHIP. 

THE INFORMATION MAY BE PROCESSED FOR A LONGER PERIOD IN ANONYMIZED FORM, OR IF WE ARE REQUIRED TO DO SO BY LAW. 

3.6 When you are a customer at Phase One 

WHEN WE PROVIDE YOU WITH OUR SERVICES, WE COLLECT, PROCESS, AND STORE YOUR PERSONAL DATA. WE TYPICALLY PROCESS YOUR PERSONAL DATA WHEN YOU USE OUR SOFTWARE SOLUTIONS (“IX SUITE”), WHEN YOU CREATE A CUSTOMER PROFILE ON OUR PLATFORM, INTERACT WITH US, AND REQUEST SUPPORT OR CONSULTING SERVICES DURING OUR RELATIONSHIP. 

3.6.26 What personal data is processed and where does it come from? 

WE COLLECT, PROCESS, AND STORE THE FOLLOWING TYPES OF PERSONAL DATA ABOUT YOU: 

  • CONTACT INFORMATION (NAME, EMAIL, ADDRESS, AND PHONE NUMBER) 
  • WORK, TITLE, AND EMPLOYER INFORMATION 
  • USER DATA RELATED TO YOUR USER PROFILE 
  • PRODUCT INFORMATION (E.G. LICENSE CODE, SERIAL NUMBER, MODEL, AND PRODUCT VERSION, ETC.) 
  • LOGGING INFORMATION RELATED TO OUR SERVICES 
  • STATISTICS AND ANALYTICAL DATA ABOUT YOUR USE OF OUR SERVICES 
  • COMMUNICATION HISTORY, INCLUDING ANY COMPLAINTS, ISSUES 
  • OTHER PERSONAL DATA THAT YOU PROVIDE US WITH DURING OUR PROFESSIONAL RELATIONSHIP 

WE USUALLY COLLECT THIS DATA DIRECTLY THROUGH YOU, BUT WE MAY COLLECT DATA FROM YOUR EMPLOYER, PUBLIC DATABASES, AND GOVERNMENT ENTITIES. 

3.6.27 Why do we process the personal data? 

WE PROCESS YOUR PERSONAL DATA FOR THE FOLLOWING PURPOSES: 

  • To administer our contractual relationship and provide you with our Services 
  • To communicate with you, provide service updates, product updates, security alerts, and other relevant notices 
  • For customer service, support, and sales 
  • For statistical and analytical purposes to improve our Services 
  • For security reasons and to maintain availability and functionality in our Services 
  • To comply with any applicable law, court order, other judicial process, or the requirements of a regulator 
  • To assert or defend legal claims in case of any disputes.

3.6.28 What is the legal basis for our processing?  

OUR PROCESSING OF GENERAL PERSONAL DATA IS BASED ON THE FOLLOWING LEGAL BASES: 

  • Contractual obligations: If you are privately owned company, we process your data to implement contractual measures or fulfil the agreement with you when providing our Services (Article 6(1)(b) of the GDPR). 
  • Legal obligation: We have to comply with a legal obligation to which we or you are subject to. This legal basis is found in Article 6(1)(c) of the GDPR. The legal obligations, among others, include, depending on our relationship the Danish Bookkeeping Act, Tax regulation etc.
  • LEGITIMATE INTEREST: WE MAY PROCESS YOUR PERSONAL DATA TO COMMUNICATE WITH YOU, DEFEND OR PURSUE LEGAL CLAIMS, TO MAINTAIN SECURITY, AND TO DEVELOP OUR SERVICES. THIS LEGAL BASIS IS FOUND IN ARTICLE 6(1)(F) OF THE GDPR. YOU CAN OBJECT TO THIS PROCESSING AT ANY TIME BY CONTACTING US (SEE SECTION 2 ABOVE). 

3.6.29 Who do we share your personal data with 

THE PERSONAL DATA MAY BE SHARED WITH OUR IT SUPPLIERS (DATA PROCESSORS) WHO PROCESS AND STORE THE PERSONAL DATA ON OUR BEHALF AND IN ACCORDANCE WITH OUR INSTRUCTIONS AND BASED ON A DATA PROCESSING AGREEMENT ENTERED INTO. WE MAY ALSO SHARE YOUR PERSONAL DATA WITH OUR INTRAGROUP ENTITIES, IF NECESSARY TO PROVIDE YOU WITH OUR SERVICES, SUCH AS PHASE ONE IN JAPAN, USA, UK, ISRAEL AND CHINA. 

WE MAY TRANSFER YOUR PERSONAL DATA TO COUNTRIES OUTSIDE OF THE EU/EEA IF NECESSARY TO CARRY OUT THE RELEVANT TASK. ANY TRANSFER WILL TAKE PLACE SUBJECT TO VALID LEGAL GROUNDS FOR SUCH TRANSFER (THE GDPR CHAPTER 5), E.G. THE STANDARD CONTRACTUAL CLAUSES PUBLISHED BY THE EU COMMISSION WHICH CAN BE FOUND HERE: STANDARD CONTRACTUAL CLAUSES FOR INTERNATIONAL TRANSFERS (EUROPA.EU). WE MAY ALSO RELY ON THE EU-U.S DATA PRIVACY FRAMEWORK, IF WE TRANSFER PERSONAL DATA TO THE US WHICH CAN BE FOUND HERE: HOME (DATAPRIVACYFRAMEWORK.GOV). 

3.6.30 For how long do we store your personal data?  

YOUR PERSONAL DATA WILL BE DELETED WHEN WE NO LONGER NEED TO PROCESS IT FOR THE FULFILMENT OF ONE OR MORE OF THE ABOVE PURPOSES. IN MOST CASES, WE RETAIN YOUR PERSONAL DATA FOR UP TO 5 YEARS FROM THE END OF OUR CONTRACTUAL RELATIONSHIP AND FOR THE PURPOSE OF DOCUMENTATION AND WITH REFERENCE TO THE STATUTE OF LIMITATIONS RULES ON THE LIMITATION OF ORDINARY MONETARY CLAIMS. 

ACCOUNTING MATERIAL, INCLUDING PERSONAL DATA, WHICH WE ARE OBLIGED TO STORE, IS DELETED NO EARLIER THAN 5 YEARS AFTER THE END OF THE FINANCIAL YEAR TO WHICH THE INFORMATION RELATES ACCORDING TO THE DANISH BOOKKEEPING ACT. 

IN CASE WE HANDLE ANY LEGAL CLAIMS, THE PERSONAL DATA MAY BE KEPT ACCORDING TO THE DANISH STATUTE OF LIMITATIONS ACT. 

THE PERSONAL DATA MAY BE PROCESSED AND STORED FOR LONGER IF WE ARE OBLIGED TO DO SO BY LAW. 

WE MAY STORE AND PROCESS DATA FOR LONGER IN ANONYMISED FORM, MEANING WE CAN NO LONGER IDENTIFY YOU. 

3.7 When you engage with us as a supplier 

WHEN YOU COMMUNICATE WITH US AS A SUPPLIER, WE PROCESS PERSONAL DATA ABOUT CONTACT PERSONS IN YOUR ORGANISATION, SUCH AS EMPLOYEES, CONSULTANTS, INTERNS, AND OTHER STAFF WHO COMMUNICATES WITH US. 

3.7.31 What personal data is processed and where does it come from? 

WE COLLECT, PROCESS, AND STORE THE FOLLOWING TYPES OF PERSONAL DATA ABOUT YOU: 

  • CONTACT INFORMATION (NAME, WORK EMAIL, AND PHONE NUMBER) WHEN YOUR EMPLOYER ENTERS INTO A CONTRACT WITH US 
  • COMMUNICATION HISTORY WHEN YOU WORK, COMMUNICATE WITH, AND VISITS US AT OUR OFFICE 
  • CONTRACTUAL RELATIONSHIP INFO, SUCH AS AGREEMENTS, INVOICES ETC. 
  • EMPLOYER INFORMATION, TITLE, WORKPLACE, AND AREA OF EXPERTISE 
  • OTHER PERSONAL DATA THAT YOU PROVIDE IN CONNECTION WITH OUR RELATIONSHIP 

3.7.32 Why do we process the personal data? 

WE PROCESS YOUR PERSONAL DATA FOR THE FOLLOWING PURPOSES: 

  • To administer our contractual relationship 
  • General communication with you 
  • Financial purposes 
  • To assert or defend legal claims in case of any disputes. 

3.7.33 What is the legal basis for our processing?  

OUR PROCESSING OF GENERAL PERSONAL DATA IS BASED ON THE FOLLOWING LEGAL BASES: 

  • Contractual obligations: We process your data to implement contractual measures or fulfil the agreement with you if you are a privately owned company (Article 6(1)(b) of the GDPR). 
  • Legal obligation: We have to comply with a legal obligation to which we are subject. This legal basis is found in Article 6(1)(c) of the GDPR. The legal obligations may include the Danish Bookkeeping Act and local tax legislation. 
  • LEGITIMATE INTEREST: WE MAY COLLECT PERSONAL DATA ABOUT YOU TO BE ABLE TO ADMINISTER OUR CONTRACTUAL RELATIONSHIP, COMMUNICATE WITH YOU, OR TO DEFEND OR PURSUE ANY LEGAL CLAIMS. THIS LEGAL BASIS IS FOUND IN ARTICLE 6(1)(F) OF THE GDPR. YOU CAN OBJECT TO THIS PROCESSING AT ANY TIME BY CONTACTING US (SEE SECTION 2 ABOVE). 

3.7.34 Who do we share your personal data with 

THE PERSONAL DATA MAY BE SHARED WITH OUR IT SUPPLIERS (DATA PROCESSORS) WHO PROCESS AND STORE THE PERSONAL DATA ON OUR BEHALF AND IN ACCORDANCE WITH OUR INSTRUCTIONS AND BASED ON A DATA PROCESSING AGREEMENT. 

WE MAY TRANSFER YOUR PERSONAL DATA TO COUNTRIES OUTSIDE OF THE EU/EEA IF NECESSARY TO CARRY OUT THE RELEVANT TASK. ANY TRANSFER WILL TAKE PLACE SUBJECT TO VALID LEGAL GROUNDS FOR SUCH TRANSFER (THE GDPR CHAPTER 5), E.G. THE STANDARD CONTRACTUAL CLAUSES PUBLISHED BY THE EU COMMISSION WHICH CAN BE FOUND HERE: STANDARD CONTRACTUAL CLAUSES FOR INTERNATIONAL TRANSFERS (EUROPA.EU). WE MAY ALSO RELY ON THE EU-U.S DATA PRIVACY FRAMEWORK, IF WE TRANSFER PERSONAL DATA TO THE US WHICH CAN BE FOUND HERE: HOME (DATAPRIVACYFRAMEWORK.GOV). 

3.7.35 For how long do we store your personal data?  

YOUR PERSONAL DATA WILL BE DELETED WHEN WE NO LONGER NEED TO PROCESS IT FOR THE FULFILMENT OF ONE OR MORE OF THE ABOVE PURPOSES. IN MOST CASES, WE MAY RETAIN YOUR PERSONAL DATA FOR UP TO 5 YEARS AFTER THE END OF OUR CONTRACTUAL RELATIONSHIP. 

ACCOUNTING MATERIAL, INCLUDING PERSONAL DATA, WHICH WE ARE OBLIGED TO STORE, IS DELETED NO EARLIER THAN 5 YEARS AFTER THE END OF THE FINANCIAL YEAR TO WHICH THE INFORMATION RELATES ACCORDING TO THE DANISH BOOKKEEPING ACT 

THE PERSONAL DATA MAY BE PROCESSED AND STORED FOR LONGER IF WE ARE OBLIGED TO DO SO BY LAW, OR FOR THE PURPOSE OF DOCUMENTATION AND WITH REFERENCE TO THE DANISH STATUTE OF LIMITATIONS RULES ON THE LIMITATION OF ORDINARY MONETARY CLAIMS. 

WE MAY STORE AND PROCESS DATA FOR LONGER IN ANONYMISED FORM. 

3.8 If you apply for a job with us 

If you apply for a job with us, we process your personal data in connection with the recruitment process. 

3.8.36 WE ENCOURAGE YOU TO NOT INCLUDE ANY SENSITIVE OR CONFIDENTIAL INFORMATION, SUCH AS HEALTH DATA OR SOCIAL SECURITY NUMBER, UNLESS THIS IS A REQUIREMENT OR IS EXPLICITLY REQUESTED FOR THE POSITION YOU ARE APPLYING FOR. 

3.8.37 What personal data is processed and where does it come from? 

WE PROCESS THE FOLLOWING PERSONAL DATA ABOUT YOU DURING OUR RECRUITMENT PROCESS: 

  • Contact information (name, email, phone number, address) 
  • Information included in your resumé, application and any attachments you provide 
  • Employment history, including experience, skills, performance, and general appearance 
  • Publicly available information, e.g. on the internet and on social media 
  • Results from tests, such as personality tests 
  • Personal data collected via interviews (physically and online) 
  • References you have listed, or you have consented for us to contact 
  • Other personal data you may share with us during the recruitment process. 

3.8.37 Why do we process the personal data? 

WE PROCESS YOUR PERSONAL DATA FOR THE FOLLOWING PURPOSES: 

  • To assess whether you are the right fit for a position at Phase One 

3.8.38 What is the legal basis for our processing?  

OUR PROCESSING OF GENERAL PERSONAL DATA IS BASED ON THE FOLLOWING LEGAL BASES: 

  • CONSENT: WE MAY ASK FOR YOUR CONSENT TO COLLECT REFERENCES FROM PREVIOUS/CURRENT EMPLOYERS THAT YOU HAVE NOT PROVIDED AS REFERENCES. IF WE CANNOT OFFER YOU EMPLOYMENT, WE MAY OFFER TO SAVE YOUR APPLICATION FOR LATER USE BASED ON YOUR CONSENT. THIS LEGAL BASIS IS FOUND IN ARTICLE 6(1)(A) OF THE GDPR. YOU CAN WITHDRAW YOUR CONSENT AT ANY TIME BY CONTACTING US (SEE SECTION 2 ABOVE). 
  • LEGITIMATE INTEREST: WE MAY PROCESS PERSONAL DATA ABOUT YOU TO ASSESS YOUR ELIGIBILITY AND TO OFFER YOU EMPLOYMENT, BASED ON THE INFORMATION YOU PROVIDE IN YOUR RESUMÉ, APPLICATION AND ANY ATTACHMENTS, PUBLICLY AVAILABLE INFORMATION, RESULTS OF PERSONALITY TESTS, REFERENCES YOU HAVE PROVIDED IN YOUR APPLICATION, AND OTHER INFORMATION YOU PROVIDE TO US IN CONNECTION WITH THE RECRUITMENT PROCESS. THIS LEGAL BASIS IS FOUND IN ARTICLE 6(1)(F) OF THE GDPR. YOU CAN OBJECT TO THIS PROCESSING AT ANY TIME BY CONTACTING US (SEE SECTION 2 ABOVE). 
  • CONTRACTUAL OBLIGATION: IF WE OFFER YOU EMPLOYMENT, THE PROCESSING OF YOUR PERSONAL DATA WILL BE BASED ON THE EMPLOYMENT AGREEMENT WE ENTER INTO WITH YOU (ARTICLE 6(1)(B) OF THE GDPR). 

3.8.39 Who do we share your personal data with? 

WE MAY SHARE YOUR PERSONAL DATA AND/OR MAKE THEM AVAILABLE TO OTHER SUPPLIERS AND/OR SERVICE PROVIDERS IN CONNECTION WITH THE GENERAL OPERATION OF OUR BUSINESS, E.G. IN CONNECTION WITH THE EXTERNAL ADMINISTRATION OF OUR IT SYSTEMS AND HR ADMINISTRATION. 

WE MAY TRANSFER YOUR PERSONAL DATA TO COUNTRIES OUTSIDE OF THE EU/EEA, INCLUDING OUR AFFILIATED COMPANIES. ANY TRANSFER WILL TAKE PLACE SUBJECT TO VALID LEGAL GROUNDS FOR SUCH TRANSFER (THE GDPR CHAPTER 5), E.G. THE STANDARD CONTRACTUAL CLAUSES PUBLISHED BY THE EU COMMISSION WHICH CAN BE FOUND HERE: STANDARD CONTRACTUAL CLAUSES FOR INTERNATIONAL TRANSFERS (EUROPA.EU). WE MAY ALSO RELY ON THE EU-U.S DATA PRIVACY FRAMEWORK, IF WE TRANSFER PERSONAL DATA TO THE US WHICH CAN BE FOUND HERE: HOME (DATAPRIVACYFRAMEWORK.GOV). 

3.8.40 For how long do we store your personal data?  

IF YOU ARE OFFERED A POSITION WITH US, YOUR APPLICATION AS WELL AS ADDITIONAL RELEVANT PERSONAL DATA COLLECTED IN CONNECTION WITH THE RECRUITMENT PROCESS WILL BE STORED IN YOUR HR FILE WITH US. 

IF YOU ARE NOT OFFERED A POSITION, WE WILL KEEP YOUR APPLICATION AND ANY ADDITIONAL PERSONAL INFORMATION COLLECTED DURING THE RECRUITMENT PROCEDURE FOR A PERIOD OF SIX (6) MONTHS AFTER OUR REFUSAL, UNLESS YOU HAVE GIVEN YOUR CONSENT TO FOR US TO STORE YOUR PERSONAL DATA FOR A LONGER PERIOD IN CASE OTHER EMPLOYMENT OPPORTUNITIES ARISE. 

WE MAY STORE AND PROCESS DATA FOR LONGER IN ANONYMISED FORM MEANING WE CAN NO LONGER IDENTIFY YOU. WE MAY ALSO STORE YOUR PERSONAL DATA IN CASE OF ANY DISPUTES RELATED TO THE RECRUITMENT ACTIVITIES. 

3.8.40 When you visit our social media profiles 

IF YOU VISIT OUR SOCIAL MEDIA PROFILES, WE MAY PROCESS YOUR PERSONAL DATA AS THE DATA CONTROLLER. IN SOME CASES, WE ACT AS JOINT DATA CONTROLLERS TOGETHER WITH THE PROVIDER OF THE SOCIAL MEDIA PLATFORM AND HAS ENTERED INTO A JOINT DATA CONTROLLER AGREEMENT. WE REFER YOU TO THE INDIVIDUAL SOCIAL MEDIA PROVIDERS’ PRIVACY POLICIES FOR MORE INFORMATION ABOUT THEIR AND OUR JOINT PROCESSING OF YOUR PERSONAL DATA. 

WE HAVE THE FOLLOWING SOCIAL MEDIA PROFILES: 

  • LINKEDIN (LINKEDIN IRELAND UNLIMITED COMPANY) 
  • FACEBOOK (META PLATFORMS 
  • INSTAGRAM (META PLATFORMS 
  • YOUTUBE (GOOGLE IRELAND) 
  • X (FORMER TWITTER) 

3.9.41 What personal data is processed and where does it come from? 

WHEN YOU VISIT OUR SOCIAL MEDIA PROFILES, WE AND THE SOCIAL MEDIA PROVIDER MAY PROCESS THE FOLLOWING PERSONAL DATA ABOUT YOU: 

  • Publicly available information on the platform such as user information (name, email, phone number, address), gender, workplace, interests etc. 
  • Any likes, comments, posts, messages, shares and other interactions with our social media profile page 
  • Other personal data you may share with our profile 

3.9.42 Why do we process the personal data? 

WE PROCESS YOUR PERSONAL DATA FOR THE FOLLOWING PURPOSES: 

  • For analysis and statistical purposes to improve and develop our business, Services, and social media profile pages 
  • To communicate with you and general marketing initiatives 

The social media providers may process your personal data for their: 

  • Adverting and sales initiatives 
  • To provide us with statistics data about you visit to our social media profile 
  • To improve their social media offerings, features, and products 

3.9.43 What is the legal basis for our processing?  

OUR PROCESSING OF YOUR PERSONAL DATA IS BASED ON THE FOLLOWING LEGAL BASES: 

  • LEGITIMATE INTEREST: WE MAY PROCESS YOUR PERSONAL DATA TO COMMUNICATE WITH YOU, FOR MARKETING PURPOSES ON OUR SOCIAL MEDIA PROFILES, AND TO IMPROVE OUR BUSINESS, PRODUCTS, AND SERVICES. THIS LEGAL BASIS IS FOUND IN ARTICLE 6(1)(F) OF THE GDPR. YOU CAN OBJECT TO THIS PROCESSING AT ANY TIME BY CONTACTING US (SEE SECTION 2 ABOVE). 

3.9.44 Who do we share your personal data with? 

WE MAY SHARE YOUR PERSONAL DATA AND/OR MAKE THEM AVAILABLE TO OTHER SUPPLIERS AND/OR SERVICE PROVIDERS IN CONNECTION WITH THE GENERAL OPERATION OF OUR BUSINESS, E.G. IN CONNECTION WITH THE ADMINISTRATION OF OUR IT SYSTEMS. 

WE MAY TRANSFER YOUR PERSONAL DATA TO COUNTRIES OUTSIDE OF THE EU/EEA, INCLUDING OUR AFFILIATED COMPANIES. ANY TRANSFER WILL TAKE PLACE SUBJECT TO VALID LEGAL GROUNDS FOR SUCH TRANSFER (THE GDPR CHAPTER 5), E.G. THE STANDARD CONTRACTUAL CLAUSES PUBLISHED BY THE EU COMMISSION WHICH CAN BE FOUND HERE: STANDARD CONTRACTUAL CLAUSES FOR INTERNATIONAL TRANSFERS (EUROPA.EU). WE MAY ALSO RELY ON THE EU-U.S DATA PRIVACY FRAMEWORK, IF WE TRANSFER PERSONAL DATA TO THE US WHICH CAN BE FOUND HERE: HOME (DATAPRIVACYFRAMEWORK.GOV). 

3.9.45 For how long do we store your personal data?  

WE STORE YOUR PERSONAL DATA AS LONG AS IT IS ACTIVE ON OUR SOCIAL MEDIA PROFILES, AND UNTIL YOU DELETE ANY “LIKES”, SHARED POSTS, COMMENTS, MESSAGES ETC. ON OUR SOCIAL MEDIA PROFILES. 

THE DATA CAN BE STORED FOR A LONGER PERIOD IN ANONYMISED FORM. 

4 Disclosure of personal data to other controllers

DISCLOSURES 

IN CERTAIN SITUATIONS AND IN ADDITION TO THE ACTIVITIES ABOVE, IT MAY BE NECESSARY FOR US TO DISCLOSE YOUR PERSONAL DATA TO THIRD PARTIES. UNDER SPECIFIC CIRCUMSTANCES AND IN ACCORDANCE WITH THE LAW, IT MAY BE NECESSARY TO DISCLOSE YOUR PERSONAL DATA TO THE FOLLOWING THIRD PARTIES (DATA CONTROLLERS): 

  • LAWYERS, AUDITORS, BANKS, AND OTHER CONSULTANTS 
  • COURTS AND OTHER PUBLIC AUTHORITIES SUCH AS THE POLICE 
  • POTENTIAL BUYERS OF PHASE ONE 

OUR COMPANY STRUCTURE MAY CHANGE AS WE DEVELOP, FOR EXAMPLE, THROUGH THE COMPLETE OR PARTIAL SALE OF PHASE ONE. IN THE EVENT OF THE TRANSFER OF ASSETS CONTAINING PERSONAL DATA, WE DISCLOSE YOUR PERSONAL DATA BASED ON OUR LEGITIMATE INTEREST IN TRANSFERRING PARTS OF OUR ASSETS AND MAKING COMMERCIAL CHANGES (ARTICLE 6(1)(F) OF THE GDPR). 

5 Your rights

YOU ARE ENTITLED TO EXERCISE YOUR RIGHTS UNDER THE DATA PROTECTION LEGISLATION AT ANY TIME AND UNDER CERTAIN CONDITIONS: 

  • ACCESS: YOU HAVE THE RIGHT TO OBTAIN ACCESS TO AND RECEIVE A COPY OF THE PERSONAL DATA WE PROCESS ABOUT YOU AND SEVERAL ADDITIONAL DATA. WE RESPOND WITHIN A REASONABLE TIME AND NO LATER THAN ONE MONTH AFTER RECEIVING YOUR REQUEST. 
  • RIGHT TO OBJECT: IN CERTAIN CASES, YOU HAVE THE RIGHT TO OBJECT TO OUR COLLECTION AND PROCESSING OF YOUR PERSONAL DATA. 
  • RECTIFICATION: YOU HAVE THE RIGHT TO HAVE PERSONAL DATA ABOUT YOU RECTIFIED. 
  • ERASURE: IN SPECIAL CIRCUMSTANCES, YOU HAVE THE RIGHT TO HAVE PERSONAL DATA ABOUT YOU ERASED BEFORE THE TIME FOR OUR ORDINARY ERASURE. 
  • RESTRICTION: IN CERTAIN CASES, YOU HAVE THE RIGHT TO RESTRICTION OF PROCESSING OF YOUR PERSONAL DATA. IF THE RIGHT APPLIES, WE MAY THEN ONLY PROCESS THE DATA – EXCEPT FOR RETENTION – WITH YOUR CONSENT OR FOR THE ESTABLISHMENT, EXERCISE, OR DEFENCE OF LEGAL CLAIMS OR FOR THE PROTECTION OF THE RIGHTS OF ANOTHER PERSON OR FOR REASONS OF IMPORTANT PUBLIC INTEREST. 
  • DATA PORTABILITY: IN CERTAIN CASES, YOU HAVE THE RIGHT TO RECEIVE A COPY OF THE PERSONAL DATA YOU HAVE PROVIDED IN A STRUCTURED COMMONLY USED AND MACHINE-READABLE FORMAT. 

IF YOU WISH TO EXERCISE YOUR RIGHTS OR HAVE ANY OTHER QUESTIONS RELATING TO OUR PROCESSING OF YOUR PERSONAL DATA, PLEASE CONTACT US AT GDPR@PHASEONE.COM. YOUR REQUEST WILL BE PROCESSED IN ACCORDANCE WITH THE LEGISLATION IN FORCE AT THE GIVEN TIME. TO THE EXTENT NECESSARY, WE WILL CONTACT YOU AND ASK FOR ADDITIONAL INFORMATION REQUIRED TO HANDLE YOUR REQUEST CORRECTLY. 

IF YOU WOULD LIKE TO LEARN MORE ABOUT YOUR RIGHTS, PLEASE VISIT THE WEBSITE OF THE DANISH DATA PROTECTION AGENCY, WWW.DATATILSYNET.DK. 

6 Making a complaint

IF YOU WOULD LIKE TO MAKE A COMPLAINT ABOUT OUR PROCESSING OF YOUR PERSONAL DATA, YOU ARE WELCOME TO CONTACT US. OUR CONTACT DETAILS ARE LISTED IN SECTION 2 ABOVE. 

YOU ALSO HAVE A RIGHT TO FILE A COMPLAINT TO THE DANISH DATA PROTECTION AGENCY, CARL JACOBSENS VEJ 35, DK-2500 VALBY. A COMPLAINT MAY BE FILED BY EMAIL TO DT@DATATILSYNET.DK OR THROUGH THE WEBSITE OF THE DANISH DATA PROTECTION AGENCY WWW.DATATILSYNET.DK 

7 Updating our privacy policy

PHASE ONE MAY UPDATE THIS PRIVACY POLICY ON AN ONGOING BASIS WHEN THIS IS NECESSARY TO PROVIDE A FAIR DESCRIPTION OF OUR PROCESSING OF PERSONAL DATA. 

IN THE EVENT OF MATERIAL CHANGES TO OUR PROCESSING OF YOUR PERSONAL DATA ALREADY IN OUR POSSESSION, YOU WILL BE NOTIFIED OF THE UPDATE OR WE WILL ANNOUNCE THE UPDATE ON OUR WEBSITE. 

THIS PRIVACY POLICY WAS LAST UPDATED IN MARCH 2024.