As Nordic Solar A/S (the “Company”) processes personal data, the following policy has been adopted by the Company.
Nordic Solar A/S
Strandvejen 102E, 3. floor
Phone: (+45) 70 26 44 44
Mail: [email protected]
Purpose of the collection of personal data
The Company collects and stores the following personal data for the following specific purposes:
- Personal data of clients: Providing clients with information regarding investments, execution, and management of investments.
Additionally, the Company collects and processes personal data to the extent required by law, including money laundering regulations.
The Company only collects and stores personal data provided it is strictly required for the purposes defined above.
Information on storage of personal data
Any person, whose personal data has been collected and stored by the Company, can upon request be informed on (i) which data has been stored, (ii) how such data has been collected, (iii) to what purpose the data is being used, and (iv) to whom such data has been transmitted (if applicable). The request must be sent to the Company. Please see the contact information above.
Changes to the personal data (correction, deletion, verification and updates)
In case of a wish for correction or deletion of personal data, a request must be sent to the Company. Please see the contact information above. The Company will investigate if the conditions for such a request are met and, and in the affirmative, correct or delete the personal data as quickly as possible. Personal data is verified when collected and thereafter on a continuous basis to ensure the information is not incorrect or misleading. Personal data is continuously updated. Incorrect personal data is corrected.
Personal data is deleted as soon as storage of the personal data is no longer required in relation to the purposes that originally justified the collection of the personal data. The Company has adopted the following rule for deletion of personal data:
- Personal data of clients: personal data will be deleted 5 years after the end of the client’s investment managed by the Company.
Transmission of personal data
Personal data is not transmitted to third parties except in cases where the Company is obliged by applicable law to report such data to public authorities or based on data processor agreements which are compliant with the legal requirements to such agreements, ensuring the rights of the persons concerned.
Security of personal data
Personal data is appropriately protected against loss and unauthorized access or publication. Access to the stored data is limited to selected employees of the Company who need to access the data to fulfil the purposes. Employees with access to personal data only have access by means of personal passwords.
Procedure in case of a violation of security
In case of suspected violation of the security for personal data – such as loss of data, possibility for unauthorized access and so forth – the employee becoming aware of the suspected violation must immediately inform the director of the Company designated as the responsible manager. The director will document and collect all available information regarding the suspected violation. If the existence of a violation is confirmed, the director shall, together with the relevant employees and/or contracted data processors overseeing the personal data concerned, prepare a written assessment of the consequences of the violation which considers the gravity of the violation, as well as the type of personal data concerned. The written assessment shall be shared with the Company’s board of directors and, if assessed necessary due to the gravity of the incident, with the Danish Data Protection Authority (in Danish: Datatilsynet) as well as the persons, whose data has been concerned by the violation.
Cookies and consent