PRIVACY POLICY

Nyberg Group A/S is the data controller, and we ensure that your Personal Data are processed in accordance with legislation.

When you visit our website or use Nyberg Group’s services, you entrust your information to us. This Privacy Policy has therefore been adopted to tell you how we process your personal data. 

In order to protect your Personal Data in the best way possible, we continuously assess the risk level for our data processing affecting your rights. We particularly focus on the risk of your being subjected to discrimination or identity theft or whether you will suffer any financial loss, loss of reputation or data confidentiality.

1. We collect and store your Personal Data for specific purposes 

1.1 We process your Personal Data for the purpose of being able to find the best match between your professional profile and a potential, new workplace. 

2. We process this type of Personal Data about you 

We do not process personally sensitive data, and you may therefore not enter or send us sensi-tive personal data which for example relate to religion, race, political affiliations, union matters, sexual orientation or health details when you send us your CV per mail or if you create and enter your information in our CV database. 

2.1 The personal data that we process may be:  

  • Name,
  • Gender,
  • Address,
  • Telephone number,
  • Date of birth,
  • E-mail address,
  • Age,
  • Photo,
  • Hobbies,
  • Educational background,
  • Information about your immediate family,
  • Place of residence,
  • Personal profile test (logical and personal profile test),
  • Previous occupation,
  • Salary,
  • Copy of examination certificates 
  • References

And the other categories of personal data which you may have entered on the Website. 

3. We only process relevant Personal Data

3.1 We only process the Personal Data about you that are relevant and sufficient for the purposes defined above. The purpose is decisive to determine which type of Personal Data about you are relevant to us. The same applies to the scope of the Personal Data that we use. 

4. We only process necessary Personal Data

4.1 We only collect, process and store the Personal Data that are necessary to meet the purpose determined in advance. Furthermore, the type of data that is necessary to collect and store for our business operations may be determined by legislation. The type and scope of the Personal Data that we process may also be necessary to fulfil a contract or another legal obligation.

4.2 We want to make sure that we only process Personal Data that are necessary to meet the purpose determined in advance. It is therefore embedded in our IT systems that only the necessary amount of data is collected. It is also automatically ensured that the scope of the processing is not unnecessarily large and that the duration of storage is not too long.

5. We check and update your Personal Data

5.1 As our services depend on your Personal Data being correct and updated, we ask you to in-form us of relevant changes to your Personal Data. You may use the contact information above to notify us of your changes.

6. We will delete your Personal Data when they are no longer necessary

6.1 We will delete your Personal data when they are no longer necessary to the purpose that was the reason for our collection, processing and storage. We will delete all of your Personal Data if you request us to do so in pursuance of paragraph 12 or if you choose to delete your profile in our CV database via our website 

7. We will obtain your consent before processing your Personal Data

7.1 We will obtain your consent before processing your Personal Data for the purposes described above unless we have a legal basis to obtain them. We will inform you of such a legal basis and of any legitimate interest we may have in processing your Personal Data.

7.2 Your consent is voluntary, and you may withdraw it at any time by contacting us. We will make sure that it is as easy to withdraw your consent as it is to give it. Use the above contact in-formation if you would like to receive further information.

7.3 If we wish to use your Personal Data for a different purpose than the original purpose, we will inform you of the new purpose and ask for your consent before initiating the data processing. If we have a different legal basis for the new processing, we will inform you thereof.

8. We do not transfer your Personal Data without your consent

8.1 In some cases, we will transfer your Personal Data to others. Transfer of Personal Data will only occur to the extent and to the recipients necessary for us to provide our service.

8.2 Your Personal Data may be transferred to: (i) suppliers with whom we cooperate to support our business (e.g. suppliers of services and technical support); (ii) our partners and cooperation partners in relation to matching your professional profile and a potential, new employer; (iii) employers who seek new employees or (iv) if required by law, court order or current legislation.

8.3 We may be common data controllers together with some of our partners in pursuance of paragraph 8.2 (ii) in relation to the processing of your Personal Data. To the extent that the relevant partner is processing your Personal Data, that partner is obligated to process your Personal Data securely and confidentially. The relevant partner is solely responsible for any breach of his or her obligations in relation to the personal data protection legislation in force from time to time. 

8.4 As our business is growing, we may sell and acquire companies or assets. In relation to such transactions, customer information is generally one of the most attractive business assets. In that case, Personal Data collected with reference to this Privacy Policy will be transferred to the buyer acquiring our company or assets or to companies which we may acquire. We will obtain your consent before you disclose your Personal Data to a third-party company. If we transfer your Personal Data to a recipient outside of the EU/EEA, we will ensure that the recipient’s data protection level will meet the requirements stated in this policy in pursuance of the current legislation. We make demands on, i.a., but not limited to, data processing, information security and fulfilment of your rights stated in this policy.

8.5 If we transfer your Personal Data to cooperation partners or other parties, including for mar-keting purposes, we will obtain your consent and inform you of the way in which your Personal Data will be used. You may at any time object against this form of disclosure, and you may exclude yourself from marketing requests in the Danish CPR registration database.

8.6 We will not obtain your consent if we are legally obligated to disclose your Personal Data, e.g. as part of reporting to an authority.

9. Security – we protect your Personal Data and have internal rules for information security

9.1 We have adopted internal rules for information security that contain instructions and measures to protect your Personal Data against being destroyed, lost or changed, unauthorised disclosed and against third parties gaining access thereto or knowledge thereof.

9.2 In case of a breach of security causing a risk too high for you of discrimination, identity theft, financial loss, loss of reputation or other significant inconvenience, we will notify you of the breach of security as soon as possible.

9.3 To protect you against third parties gaining access to your Personal Data, we use solutions which automatically ensure that Personal Data are available only to relevant employees. Furthermore, protection has been embedded against an unlimited number of persons gaining access to your Personal Data.

However, we cannot guarantee that the Personal Data are completely protected against persons who want to and succeed in breaking our precautions and gaining access to transfer information on the Internet, e.g. via e-mail.

10. Use of cookies

10.1 Before we place cookies on your equipment, we will ask for your consent. However, cookies necessary to ensure functionality and settings may be used without your consent.

10.2 More information about our use of cookies and how to delete or reject them is available in the Service. If you would like to withdraw your consent, see the directions in our [cookie policy].

11. Right of access – you are entitled to access your Personal Data

11.1 You are at all times entitled to be informed of which Personal Data we process about you, their origin and how we use them. You may also be informed of how long we store your Personal Data and who receive Personal Data about you to the extent that we transfer Personal Data in Denmark and abroad.

11.2 On your request, we may inform you of which Personal Data we process about you. However, access may be limited in the interests of other persons’ privacy, trade secrets and intellectual property rights.

11.3 You may make use of your rights by contacting us. Our contact information is listed at the top.

12. Rectification or deletion – you are entitled to have inaccurate Personal Data corrected or deleted

12.1 If you believe that the Personal Data we process about you are inaccurate, you are entitled to having them corrected. Please contact us and let us know what the inaccuracies are and how they may be corrected.

12.2 In certain cases, we will be obligated to delete your Personal Data. This is the case if you e.g. withdraw your consent. If you believe that the processing of your Personal Data is no longer necessary for the purposes to which we collected them, you may ask us to have them deleted. You may also contact us if you believe that your Personal Data are processed contrary to legislation or other legal obligations.

12.3 When you contact us with a request to have your Personal Data corrected or deleted, we will see if the conditions have been met and, in that case, carry out the corrections or deletion as soon as possible.

13. Objection – you are entitled to object against our processing of your Personal Data

13.1 You are entitled to object against our processing of your Personal Data. You may use the contact information at the top to submit your objection. If your objection is legitimate, we will make sure that our processing of your Personal Data will cease.

14. Data portability – you are entitled to receive your Personal Data 

14.1 You are entitled to receive the Personal Data which you made available to us and the Personal Data which we may have collected about you from other players based on your consent. If we process Personal Data about you as part of a contract to which you are a party, you may also receive your Personal Data. You are also entitled to transfer these Personal Data to a different service provider. If you wish to make use of your right to data portability, you will receive your Personal Data from us, or we will transfer your Personal Data to the relevant service provider in a commonly used format.

15. Please contact us if you wish to make use of your rights

15.1 If you wish to gain access to your Personal Data, have them corrected or deleted or object against our data processing, we will find out whether that is possible and reply to your request as soon as possible and no later than one month after we have received your request.

15.2 If we do not fully agree with your objection, you are entitled to file a complaint with the Dan-ish Data Protection Agency by following the instructions on the Danish Data Protection Agency’s website

16. Do you have any questions?

16.1 If you have any questions or comments, please feel free to contact us. Our contact information is:

Nyberg Group A/S
Tuborgvej 52
DK – 2900 Hellerup

Tel.: +45 5151 0800
E-mail address: info@nyberggroup.com
CVR no.: 29608792

Revised on 16 April 2018