Privacy policy for Vahle A/S

In the Privacy Policy of Vahle A/S you will find information on which personal data we collect about you, why we collect personal data and what we as data controller use the collected personal data for. 

  1. Generally

1.1. This Privacy Policy applies to the personal data you provide to us and/or we collect about you when you are a customer of or supplier to Vahle A/S.

It also applies to the personal data you provide to us and/or we collect about you when you visit our websites and social media, regardless of how you access or use them, including via mobile devices.

Additionally, it applies to the personal data you provide to us when you give your consent to receive marketing material from us, participate in events etc.

  1. Data controller

2.1. Vahle A/S is the data controller of the personal data being processed about you. The company information of Vahle A/S is as follows:

Vahle A/S

Fabriksvej 5
8544 Mørke
Company reg. (CVR) no. 34587051

E-mail: info@vahle.dk

Telefon: +45 8637 2477

2.2. When processing personal data, we will comply with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation or the “GDPR”), as well as with the Danish data protection rules in force from time to time.

  1. Processing of personal data

3.1. If you are a customer

3.1.1. If you are a customer, or if you contact us, we will process your general personal data in order to process your query and, if relevant, enter into and perform our obligations under an agreement with you.  

Depending on the circumstances, we will process your ID, contact and professional details, including your name, address, email address, telephone number, photo, position or title, information about our business relationship and language preference. In addition, we may process data about financial matters such as currency preference, prior purchases, payment history, payment details as well as credit rating.  

If necessary in order for us to perform our obligations under the agreement with you, we will process supplementary data obtained from third parties. 

The legal basis for processing is article 6(1)(b) of the GDPR. 

3.1.2. In order for us to deliver the order to the end customer we will process the end customer’s general personal data in order to perform our obligations under an agreement with you.

Depending on the circumstances, we will process the end customer’s ID and contact details, including name, address, email address and telephone number.  

The legal basis for processing is article 6(1)(b) of the GDPR. 

3.2 If you are a supplier

3.2.1. If you are a supplier, we will process your general personal data in order to enter into and perform our obligations under an agreement with you. 

Depending on the circumstances, we will process your ID, contact and professional details, including your name, address, email address, telephone number, photo, position or title, information about our business relationship and language preference. In addition, we will process information about financial matters, including currency preference and payment details.

If necessary in order for us to perform our obligations under the agreement with you, we will process supplementary personal data obtained from third parties. 

The legal basis for processing is article 6(1)(b) of the GDPR.

3.3. If you visit our websites or interact with us on social media  

3.3.1. If you visit our websites, we will anonymize your personal data. Hence, we do not process personal data about you. We will only place cookies necessary for the websites to function.  

3.3.2. If you visit our social media profiles, we will process the personal data on your profile and the personal data you choose to share with us. If you contact us via the social media, we will process the personal data involved in our communication with you.

The legal basis for processing is the legitimate interests principle of article 6(1)(f) of the GDPR as we have a legitimate interest in gaining knowledge about visitors on our social media pages and in responding to people who contact us via the social media.

We have joint data controller liability with the social media for the collection of your personal data. Information about the joint data controller liability is available here: 

Facebook: https://www.facebook.com/legal/terms/page_controller_addendum

LinkedIn: https://legal.linkedin.com/pages-joint-controller-addendum

Instagram: https://www.facebook.com/legal/terms/page_controller_addendum

YouTube: https://business.safety.google/gdprcontrollerterms/

In general, reference is made to the social media privacy policies where further information on how they process your personal data is available. 

3.4. If you receive marketing material, participate in events etc.

3.4.1. If you give your consent to receive marketing material from us, we will process your personal data in order to manage your consent and send you marketing material. 

We will process your ID and contact details, including your name and email address.

The legal basis for processing is article 6(1)(a) of the GDPR on consent. You may withdraw your consent at any time by clicking the link at the bottom of any of the marketing emails you receive from us, or by writing us at info@vahle.dk.   

3.4.2. If you participate in an event held by us, we will process your ID, contact and professional details, including your name, email address, telephone number, position or title, information about our business relationship and language preference in order to perform our obligations under the agreement with you concerning your participation in the event in question and for the purposes of our legitimate interest in event administration and organisation. 

The legal basis for processing is article 6(1)(b) of the GDPR and the legitimate interests principle of article 6(1)(f) of the GDPR.

3.4.3. If you participate in one of our market research surveys, we will process different personal data about you such as your name, address, email address, age, gender, social media profiles, marital status, income, educational level, household, location data, IP data and any feedback you give.     

The legal basis for processing is article 6(1)(a) of the GDPR on consent. You may withdraw your consent at any time by writing us at info@vahle.dk.

3.5. Video surveillance

3.5.1. We carry out CCTV surveillance at our address for crime prevention purposes. The TV recordings may be passed on to the police. We delete image recordings no later than 30 days after they have been recorded, cf. section 4(c)(4) of the Danish TV Surveillance Act, unless storage for a longer period is necessary for a specific dispute or for crime prevention purposes. 

The legal basis for processing is article 10 of the GDPR, cf. article 6(1)(f), cf. section 8(3), second sentence, of the Danish Data Protection Act, as we have a legitimate and justified interest in preventing crime and, if relevant, processing information about criminal offences.

3.6. Processing personal data for other purposes

3.6.1. If we want to process your personal data for purposes other than those they were collected for, we will inform you in advance and, where necessary, request your consent. However, we will always obtain your consent to process your personal data for marketing purposes.

  1. Sharing your personal data

4.1. Where necessary, reasonable, and relevant, we will share your personal data with group companies, suppliers and partners assisting us in our business and, thus, the service we provide to you. This means, by way of example, that we may share your data with our service providers, technical support, and bankers. If the recipient is a data processor, the personal data will be processed only on our behalf and in accordance with our instructions.

4.2. We may also share your personal data with other third parties if we are ordered to do so or if such sharing takes place in the course of the service we provide to you. By way of example, we may share such data with the Danish Tax Agency and other public authorities.

  1. Data transfers to non-EU/EEA countries

5.1 In some cases, we will transfer your personal data to non-EU/EEA countries. We will do so when we use data processors in non-EU/EEA countries. Such transfers will take place in compliance with the GDPR, for example through the use of the European Commission’s standard contractual clauses, on the basis of European Commission Adequacy Decisions, or on the basis of the recipient’s adherence to the EU-US Data Privacy Framework.  

  1. Protecting your personal data

6.1. Your personal data will be kept in a safe place and protected by appropriate technical and organisational security measures.

We will keep your personal data on restricted access computers which are placed in controlled facilities, and our security measures are regularly checked to ensure that personal data are safe and your rights as a user are safeguarded. However, we are unable to guarantee 100 % security for data transfers via the internet. This means that there may be a (limited) risk of unauthorised access to data during transmission and in electronic storage.

6.2. We will keep your personal data for as long as necessary to fulfil the purposes for which the personal data are processed.

6.2.1. If you are a customer, as a general rule we will erase your personal data no later than five years after the expiry of the calendar year in which the customer relationship ended, unless we have a legitimate interest in keeping them longer, including in order to establish a legal claim, or are required or entitled under special rules to keep them longer. However, we will keep personal data pertaining to an order for up to 75 years after the order has been delivered. We do so in order to live up to our goal of contributing with product repair throughout the product’s life. All products are produced to order, and the customer specific information form the basis of our response to all customer queries.  

6.2.2. If you are a supplier, as a general rule we will erase your personal data no later than five years after the expiry of the calendar year in which the supplier relationship ended, unless we have a legitimate interest in keeping them longer, including in order to establish a legal claim, or are required or entitled under special rules to keep them longer.

  1. Your rights

7.1. You have the following rights concerning our processing of your personal data:

  • You have the right to request access to, rectification or erasure of the personal data we process about you. If so requested by you, we will erase the personal data without undue delay, unless we are allowed to continue processing on another legal basis.
  • You also have the right to object to our processing and to restrict the processing of your personal data. If you object to processing or if you wish to restrict processing, this may affect our possibility of dealing with any queries received from you and entering into and performing our obligations under an agreement with you.
  • In particular, you have an unconditional right to object to our use of your personal data for marketing purposes.
  • If your personal data are processed based on your consent, you have the right to withdraw consent at any time. If you decide to withdraw consent, this will not affect the lawfulness of the processing carried out before you withdrew consent.
  • You have the right to receive in a structured, commonly used, and machine-readable format the personal data which you yourself have provided to us (data portability).

Please note that these rights may be subject to conditions or restrictions laid down by law.

7.2. If you have any questions to our Privacy Policy or our data processing or if you want to exercise one or more of your rights as described above, please contact Vahle A/S at info@vahle.dk or tel. +45 8637 2477.

If you contact us, please make sure that you provide us with sufficient information, including your name and email address, to enable us to identify you and respond. We will respond as soon as possible.

7.3. You may lodge a complaint about our data processing with the Danish Data Protection Agency. The Agency’s contact details are available at www.datatilsynet.dk.

  1. Changes to the Privacy Policy

8.1. We reserve the right to update and change this Privacy Policy as and when needed.

  1. Latest version

9.1. This Privacy Policy was last updated on 21 February 2024.