Home
/
Privacy Policy

Privacy Policy

Here you can read more about how we process your personal data.

Introduction

When you visit Gibotech’s website, we collect information about you that we use to improve our content and tailor our ads on other digital channels. If you do not want us to collect information about you, you should delete your cookies and refrain from using our website in the future.

At Gibotech, we ensure the fair and transparent processing of personal data in accordance with all applicable laws and local and international regulations, including the EU General Data Protection Regulation (GDPR). We protect personal data and individuals’ privacy in all areas of our business in accordance with the terms of this Privacy Policy.

Below, we’ve provided more details about what information we collect and why we collect it. If you’d like to see which third parties have access to this information—and why—please refer to our Cookie Policy.

Personal data and data subjects

In this Privacy Policy, “personal data” refers to any information relating to an identified or identifiable natural person (the “data subject”).

Personal data is generally categorized as either “ordinary personal data” or “sensitive personal data.”

Sensitive personal data is always confidential and includes racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic and biometric data, health, and sexual orientation.

General personal data is partially confidential and includes information about criminal offenses, national identification numbers, information about a person’s salary, debt, or pension, application materials, and so on, as well as all other types of general personal data; including name, customer number, (business) contact information such as email and phone number, photos, IP address, and other usage data collected via cookies.

This Privacy Policy applies to all personal data that Gibotech collects and processes regarding individuals, visitors, customers, suppliers (including third-party service providers), other stakeholders, and users of Gibotech’s website and services.

Principles for the Protection of Personal Data

Gibotech adheres to the following principles to ensure the protection of personal data in accordance with the GDPR.

  • Purpose limitation: We collect and process personal data—including sensitive data (if any)—only for specified, explicit, and legitimate purposes that are relevant to Gibotech’s business.
  • Lawfulness, fairness, and transparency: Personal data must be processed lawfully, fairly, and in a transparent manner in relation to the data subject. Where legally required, Gibotech will inform the individual of the purpose of the processing of their personal data, their right to have their personal data corrected, deleted, or blocked, as well as the identity of the company responsible for the collection and processing of their personal data.
  • Accuracy: To ensure that personal data processing is accurate, Gibotech must ensure that personal data is reviewed and updated at regular intervals, where appropriate.
  • Retention limit: Personal data may only be retained for the period necessary to fulfill the purpose or as required by law.
  • Integrity and confidentiality: When processing personal data, it is important that such data be protected by appropriate security measures to minimize risks such as data loss, unauthorized access, destruction, and accidental disclosure.
  • Accountability: To ensure that the processing of personal data is carried out in accordance with the GDPR, Gibotech has implemented appropriate technical and organizational measures, which are reviewed and updated as necessary.
  • Cross-border transfer rules apply when Gibotech transfers personal data from the EU/EEA to third countries or international organizations, as further described in the section on data transfers below.

The types and purposes of personal data collection

Gibotech collects and processes personal data solely for specified, explicit, and legitimate purposes that are relevant to our business. The purpose of collecting and processing personal data also depends on the type of data subject. Relevant departments and employees who have access to personal data must comply with legal requirements, the principles of this privacy policy, and internal guidelines.

  • Employment: Gibotech collects and processes personal data—including sensitive data (if any)—on applicants and candidates for employment purposes and in accordance with legal requirements.
  • Gibotech Website Users: When you visit our website, we collect data about you that is used to improve and customize the content on the site. The following types of data are typically collected and processed: a unique ID and technical information about the computer, tablet, or mobile phone you use to access the website, your IP address, geographic location, and which pages you click on. To the extent that you yourself give explicit consent to the processing of data in connection with job applications or newsletter subscriptions, data processing takes place in Gibotech’s HR system or newsletter system.

    Data regarding your use of the website, which ads you have received and possibly clicked on, your geographic location, gender, and age group, among other things, is shared with third parties to the extent that such data is known. You can see which third parties are involved in our cookie policy. The data is used for ad targeting.

    In addition, we use certain third parties for the storage and processing of data. They process data exclusively on our behalf and are not permitted to use it for their own purposes.

    Disclosure of personal information such as your name and email address will only occur if you consent to it. We only use data processors located in the EU or in countries that can provide adequate protection for your data.

    Articles on this website may contain embedded content (such as videos and images). Embedded content from other websites collects data in exactly the same way as if you had visited that website directly. These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with the embedded content.
  • Cookies: This website uses cookies. Cookies are text files stored on your computer, mobile phone, or tablet to recognize the website, remember your settings, collect statistics, and target advertisements. Cookies cannot contain harmful code such as viruses. You can delete or block cookies. If you delete or block cookies, the website may not function optimally, and there may be content that you will no longer be able to view or access. You can view the complete list of cookies we use and read about how they are handled on our cookie policy page.
  • Marketing: Gibotech collects and processes data (including names and contact information) about current and new customers, business partners, suppliers—including third-party service providers—distributors, prospects, website users, and individuals who have subscribed to Gibotech’s newsletter for the following purposes: analysis, contact, contact management and sending of messages, remarketing and behavioral targeting, advertising, and exhibitions. We may use third parties as service providers to send marketing information on our behalf, but only in accordance with applicable legal requirements.
  • Contracts, purchase orders, and other transactional agreements: In connection with sales and purchase transactions, Gibotech collects and processes personal data—including names, contact information, shipping details, correspondence, and payment information—that is necessary to conduct business and comply with export compliance regulations and other legal due diligence obligations.
  • Accounting and Finance: Gibotech collects personal data for accounting and financial purposes in accordance with applicable requirements. This information is provided for accounting purposes by other internal departments or received directly from individuals or companies and includes details such as name, address, company name, registration number, payment and bank details, shipping address, and other required information.
  • Legal Proceedings: In the event of a dispute, Gibotech may retain personal data necessary for our legitimate interest to ensure that we can properly bring or defend legal claims in court or during the stages leading up to a potential lawsuit. Gibotech may need to share this information with third parties such as insurance and/or legal advisors, and we may also be required to disclose personal data upon request from public authorities.
  • Consent and withdrawal of consent: To the extent that our processing activities are based on your consent, you have the right to withdraw your consent at any time. If you withdraw your consent, we will stop processing your personal data, unless and to the extent that continued processing is permitted or required under applicable data protection laws or other applicable laws. If you withdraw your consent, this will not affect the lawfulness of the processing carried out prior to the withdrawal. If personal data is processed for reasons of public interest, the exercise of official authority vested in Gibotech, or for the purposes of Gibotech’s legitimate interests, an individual may object to such processing by citing their particular situation. However, if the data is processed for direct marketing purposes, an individual may object to such processing at any time without providing any justification. In both cases, Gibotech must be contacted via gibotech@gibotech.dk.

Location and data transfer

Personal data is processed at Gibotech’s headquarters and at other locations where the parties involved in the processing are located. Special rules apply when Gibotech transfers personal data from the EU/EEA to third countries or international organizations. When transferring data to third countries or international organizations, we are required to implement appropriate safeguards prior to the transfer. In practice, these are established by adopting the European Commission’s Standard Contractual Clauses.

In accordance with the GDPR, Gibotech has entered into a Data Processing Agreement (DPA) and/or a Joint Controller Agreement (JDCA) and/or agreements containing Standard Contractual Clauses (SCCs) with external parties and affiliated companies, as applicable.

Retention period

Personal data collected by Gibotech must be processed and stored for as long as is necessary for the purpose for which the data was collected. Gibotech may be permitted to store personal data for a longer period if we have obtained valid consent and as long as that consent is not withdrawn. Furthermore, we may be required to retain personal data for a longer period when necessary to comply with a legal obligation or to establish, exercise, or defend a legal claim.

Once the retention period has expired, the personal data will be deleted. Therefore, the right of access, the right to erasure, the right to rectification, and the right to data portability cannot be exercised after the retention period has expired.

Data Security and Personal Data Breaches

Gibotech takes appropriate security measures to prevent unauthorized access, disclosure, alteration, or unauthorized destruction of personal data. Data processing is carried out using computers and/or IT-enabled tools in accordance with organizational procedures and protocols strictly related to the specified purposes. To protect your personal data, we continuously assess the risks that may be associated with our processing of your personal data. We are particularly attentive to protecting your personal data against discrimination, identity theft, financial loss, loss of reputation, and data confidentiality breaches. To prevent the loss of personal data, we regularly back up our systems and use encryption or other security measures where necessary.

In the event of a personal data breach that poses a high risk to your rights, we will notify you of the breach as soon as possible under the circumstances. “A personal data breach” means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data. In short, a data breach occurs when personal data is lost, destroyed, damaged, disclosed without proper authorization, or rendered inaccessible.

If you experience or suspect a breach of personal data security, please contact Gibotech at gibotech@gibotech.dk.

Individual Rights

Individuals have the following rights:

  • Withdrawal of consent – the right to withdraw previously given consent to the processing of one’s personal data at any time.
  • Objection to the processing of personal data – the right to object to the processing of personal data if such processing is carried out on a legal basis other than the one for which consent was given. Further information can be found in the dedicated section of this Privacy Policy.
  • Access to personal data – the right to know whether Gibotech is processing your data, to obtain information about certain aspects of the processing, and to receive a copy of the data being processed.
  • Confirm and request correction – the right to verify the accuracy of your personal data and request that it be updated or corrected.
  • Restriction of the processing of personal data – the right, under certain circumstances, to restrict the processing of one’s personal data. In such cases, Gibotech will not process the personal data in question for any purpose other than storing it.
  • Deleted or otherwise removed personal data – the right, under certain circumstances, to have one’s personal data deleted from Gibotech.
  • Have personal data transferred to another data controller – the right, under certain circumstances, to have one’s personal data transferred to another data controller without hindrance.
  • File a complaint – the right to lodge a complaint with the competent data protection authority, the Danish Data Protection Agency.

Please contact Gibotech using the options below if you have any questions about how to exercise your rights.

Ongoing monitoring

Through a combination of external and internal controls, ongoing audits, and monitoring, Gibotech strives to ensure the secure handling of data and prevent data loss.

Reporting System and Contact Information

If you have any questions or if you believe there has been a violation of this privacy policy, please contact Gibotech at gibotech@gibotech.dk.

Any request can be made free of charge and will be processed as quickly as possible, and always within one month or sooner if required by applicable law.

Changes to this Privacy Policy

Gibotech reserves the right to amend this Privacy Policy. The latest version will always be available on our website, www.gibotech.dk.

Last revised: January 9, 2023

Owner and Data Controller

Gibotech owns and publishes this website. We are the owner and data controller of the personal data covered by this Privacy Policy.

Contact information:

Gibotech A/S
Datavej 15
5220 Odense SØ
Phone: 6595 8262
Email: gibotech@gibotech.dk