GDPR
Introduction
I, Thomas Hainer, am committed to protecting and respecting your privacy. This GDPR Compliance statement outlines how I collect, use, store, and protect your personal data in accordance with the General Data Protection Regulation (GDPR) and Danish data protection laws.
Who I Am
Thomas Hainer
Website: https://hainer.dk
Email: [your email address]
Data Protection Officer: [DPO email address, if applicable]
What Data I Collect
I may collect and process the following types of personal data:
– Name
– Email address
– IP address
– Browser user agent string
– Comments and messages you leave on my site
– Images and media you upload
– Location data (if you use the Forminator Geolocation Add-on)
– Payment information (if you use Forminator Stripe Subscriptions Add-on)
How I Collect Data
I collect data through:
– Forms you fill out on my website
– Cookies and similar tracking technologies
– Comments and messages you leave on my website
– Plugins used on my website (e.g., Forminator, Defender Pro, Hummingbird Pro)
Legal Basis for Processing Personal Data
I process your personal data based on:
– Your consent
– The necessity to perform a contract
– My legitimate interests, provided these are not overridden by your rights and interests
How I Use Your Data
I use your personal data for the following purposes:
– To provide and maintain my website
– To manage user accounts
– To respond to your inquiries and comments
– To process payments and subscriptions
– To improve website performance and security
– To send newsletters and marketing communications (only if you have opted in)
Data Sharing and Transfers
I may share your data with:
– Service providers who assist me in operating my website and providing my services
– Legal authorities if required by law
– Automated spam detection services
I ensure that any third-party service providers I use comply with GDPR and have appropriate safeguards in place to protect your data.
Data Retention
I retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. Specifically:
– Comments and their metadata are retained indefinitely
– User profile information is retained as long as the account is active
– Payment information is retained as required by law
Your Rights
Under GDPR, you have the following rights regarding your personal data:
– The right to access – You can request copies of your personal data.
– The right to rectification – You can request that I correct any inaccurate or incomplete data.
– The right to erasure – You can request that I delete your personal data, under certain conditions.
– The right to restrict processing – You can request that I restrict the processing of your personal data, under certain conditions.
– The right to object to processing – You can object to my processing of your personal data, under certain conditions.
– The right to data portability – You can request that I transfer your data to another organization, or directly to you, under certain conditions.
To exercise any of these rights, please contact me at: [your email address].
Data Security
I implement appropriate technical and organizational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These measures include data encryption, access controls, and regular security audits.
Cookies
My website uses cookies to improve your experience and analyze website traffic. You can manage your cookie preferences through your browser settings.
Changes to This GDPR Compliance Statement
I may update this GDPR Compliance statement from time to time. I will notify you of any changes by posting the new statement on this page. You are advised to review this page periodically for any changes. Changes are effective when they are posted on this page.
Children’s Privacy
My website does not address anyone under the age of 13. I do not knowingly collect personally identifiable information from children under 13. If you are a parent or guardian and you are aware that your child has provided me with personal data, please contact me. If I become aware that I have collected personal data from children without verification of parental consent, I take steps to remove that information from my servers.
Data Protection Officer
For any privacy-related issues, you can contact my Data Protection Officer at: [DPO email address, if applicable].
Contact Information
If you have any questions or concerns about this privacy policy or how your data is handled, please contact me at: [your email address].
Supervisory Authority
If you believe that I have not processed your personal data in accordance with GDPR, you have the right to lodge a complaint with the Danish Data Protection Agency (Datatilsynet):
Datatilsynet
Borgergade 28, 5
1300 Copenhagen
Denmark
Phone: +45 33 19 32 00
Email: dt@datatilsynet.dk
Website: https://www.datatilsynet.dk