Privacy Policy

Data Controller

Green Therma is the data controller responsible for processing the personal information of our customers and website visitors.

Green Therma ApS
Egebjerg Alle 3
2900 Hellerup
Denmark
CVR no.: 43858076

If you have any questions about our processing of your personal information, you can contact us at [email protected].

 

Processing Activities

Our processing activities as data controller include the following:

 

When You Visit Our Website

When you visit our website, we use cookies, which you can read more about in our cookie policy here.

 

When You Contact Us

When you write (via email or social media) or call us, we will process your personal information (typically name, email, and phone number) so that we can engage in a dialogue, for example, to answer questions about our solutions. We only process the personal information that you provide to us.

This processing activity is carried out under the legal basis of Article 6(1)(f) of the General Data Protection Regulation (legitimate interest).

 

Accounting

The Danish Accounting Act requires us to keep all accounting records. This includes invoices and similar documents, which may include names, addresses, and contact information.

This processing activity is carried out under the legal basis of Article 6(1)(c) of the General Data Protection Regulation (legal obligation).

This personal information is kept for a minimum of 5 years after the end of the current fiscal year.

 

Data Processors

We have entered into agreements with the following data processors to carry out the above processing activities:

  • Google Analytics (see cookie policy for more information)

 

Third Country Transfers

Our data processor, Google Analytics, which we use to analyse website visits and usage, is a service from a US company. Any information about you, such as IP addresses, browser type, referring/exit pages and other information related to user behavior, that we collect through this service may therefore be transferred outside of the EU. As USA is considered an insecure third country (the level of data protection is not equivalent to what we have in the EU) according to the EU Commission, we cannot transfer data there without additional security measures. Therefore, in our data processing agreement with Google, some standard contractual clauses (often referred to as SCCs) have been added to ensure that the security is at the level required by the General Data Protection Regulation. 

If you do not wish us to collect any of the aforementioned information about you, you can decline all cookies that are not considered strictly necessary here

 

Your Rights

The General Data Protection Regulation gives you certain rights with regard to our processing of your personal information.

To exercise your rights, please contact us at [email protected].

 

Right of Access

You have the right to see what personal information we process about you.

 

Right of Rectification

If we have inaccurate personal information about you, you have the right to have it corrected.

 

Right of Erasure

In some cases, you have the right to have your personal information erased, for example, if we have received it in connection with an email you have sent to us. However, in some cases, there may be overriding factors, such as the aforementioned legal requirement for accounting.

 

Right of Restriction

In some cases, you have the right to have our processing of your personal information restricted. If you have the right to restriction, we may only process your personal information (in addition to storage) if you have given consent, to establish, exercise, or defend a legal claim, or to protect another person or important societal interests.

 

Right of Objection

If you believe that we are processing your personal information without the necessary legal basis, you can object by contacting us at [email protected].

 

Right of Data Portability

In some cases, you have the right to receive your personal information in a structured, commonly used, and machine-readable format, so that you can easily transfer them from one data controller to another.

 

Withdrawal of Consent

When our processing of your personal information is based on your consent, you can always withdraw your consent. After that, we will immediately stop any further processing.

 

Complaint to the Danish Data Protection Agency

If you are dissatisfied with our processing of your personal information, you have the right to file a complaint with the Danish Data Protection Agency. You can find the Danish Data Protection Agency’s contact information at www.datatilsynet.dk, where you can also read more about your rights.

Last updated on May 13, 2023.

Want to meet us?

We are presenting our solution at industry events and conferences. Feel free to reach out, if you would like to meet up.