Privacy policy

Information regarding our processing of your personal data etc.

We act as the data controller – how do you contact us?

CrediWire ApS (“Crediwire”) is the data controller for the processing of the personal data that we have received related to you. You will find our contact information below.

CrediWire ApS
Gothersgade 14, 1123 Copenhagen
CVR-no.: 37264628
Phone: +45 91 54 09 65
Email: info@crediwire.com

The purposes of our processing of personal data, the types / categories of data and the legal basis for the processing of your personal data

When you use the contact form via our website, we collect the following personal data:

Purpose: Facilitate contact between you and Crediwire
What types of personal data we process: Email, name, phone number.

The legal basis for our processing of your personal data is:

Our legitimate interest in answering your inquiry; GDPR art. 6 (1)(f)

Where your personal data comes from:

Information entered

Transfer to recipients, including third countries:

In order to fulfill the above purpose, we may give third parties access to your personal data, which on the basis of a contractual relationship with Crediwire provides relevant services to us, such as IT suppliers. Such suppliers (data processors) will only process personal data in accordance with our instructions. We will transfer your personal data to recipients outside the EU and the EEA. These are recipients who are located in the United States with whom we have entered into the necessary agreements.
Certain personal data will be reported to public authorities if required by law, e.g., tax reporting. The legal basis for such disclosure of your personal data is Article 6(1)(c) of the GDPR.
In the event that Crediwire needs legal assistance, we may also disclose your personal data to our external lawyer or auditor, due to our legitimate interest in being able to establish, exercise or defend a legal claim, cf. Article 6(1)(f) of the GDPR.

Storage of your personal data:

We store your personal data for 3 months or until the correspondence ends, whichever comes last.

If you apply for a job with us, the following personal data is processed:

Purpose: Processing of job applications
What types of personal data we process: E-mail, name, address, date of birth, CV.

The legal basis for our processing of your personal data is:

The basis for our processing of your personal data is your application for the conclusion of an employment contract with Crediwire, in accordance with Article 6(1)(b) of the GDPR.

Where your personal data comes from:

Information provided in connection with job application

Transfer to recipients, including third countries:

In order to fulfill the above purpose, we may give third parties access to your personal data, which on the basis of a contractual relationship with Crediwire provides relevant services to us, such as IT suppliers. Such suppliers (data processors) will only process personal data in accordance with our instructions. We will transfer your personal data to recipients outside the EU and the EEA. These are recipients who are located in the United States with whom we have entered into the necessary agreements.
Certain personal data will be reported to public authorities if required by law, e.g., tax reporting. The legal basis for such disclosure of your personal data is Article 6(1)(c) of the GDPR.
In the event that Crediwire needs legal assistance, we may also disclose your personal data to our external lawyer or auditor, due to our legitimate interest in being able to establish, exercise or defend a legal claim, cf. Article 6(1)(f) of the GDPR.

Storage of your personal data:

We store your personal data for 6 months or as long as relevant.
If consent is given in connection with the application process, your data may be stored for a longer period.

When you are a potential or existing customer of Crediwire, the following personal data is processed:

Purpose: Purchase, administration, invoicing, sending out service announcements (e.g. about your usage) and in some cases direct marketing
What types of personal data we process:
- Contact information
- CVR number or equivalent
- Details about the collaboration (start date, duration, contact persons and their information)
- Financial information such as pricing, bank details and general information needed to provide services
- Financial information about sole proprietorship

The legal bases for our processing of your personal data are:

GDPR art. 6 (1)(b) - implementation of measures taken at the request of the data subject prior to the conclusion of a contract
GDPR art. 6(1)(f) - the legitimate interest in contacting potential customers / partners
GDPR art. 6(1)(f) - the legitimate interest in sending out service announcements, including notifications regarding usage
GDPR art. 6(1)(b) - performance of a contract
GDPR art. 6(1)(c) - legal obligation
GDPR art. 6(1)(f) - the legitimate interest in processing your personal data for the purpose of direct marketing. However, we only send direct marketing if we have received your prior marketing law consent, cf. section 10 (1) of the Marketing Practices Act.

Where your personal data comes from:

Publicly available information and entered information

Transfer to recipients, including third countries:

In order to fulfill the above purpose, we may give third parties access to your personal data, which on the basis of a contractual relationship with Crediwire provides relevant services to us, such as IT suppliers. Such suppliers (data processors) will only process personal data in accordance with our instructions. We will transfer your personal data to recipients outside the EU and the EEA. These are recipients who are located in the United States with whom we have entered into the necessary agreements.
Certain personal data will be reported to public authorities if required by law, e.g., tax reporting. The legal basis for such disclosure of your personal data is Article 6(1)(c) of the GDPR.
If Crediwire needs legal assistance, we may also disclose your personal data to our external lawyer or auditor, due to our legitimate interest in being able to establish, exercise or defend a legal claim, cf. Article 6(1)(f) of the GDPR.

Storage of your personal data:

As long as the customer relationship, or the potential for it, exists. If a customer relationship has existed, data is stored until 5 years after the end of the financial year in which the customer relationship ends.

When you are a Crediwire user, the following personal data is processed:

Purpose: Login, communication of relevant information, such as information about activity in the Crediwire system, as well as contact in connection with support.
What types of personal data we process: E-mail, name, phone number, login details, workplace.

The legal basis for our processing of your personal data is:

The agreement we enter into with you regarding the use of our service in accordance with our terms and conditions, cf. GDPR Article 6(1)(b).

Where your personal data comes from:

Entered information

Transfer to recipients, including third countries:

To fulfill the above purpose, we may give third parties access to your personal data, which on the basis of a contractual relationship with Crediwire provides relevant services to us, such as IT suppliers. Such suppliers (data processors) will only process personal data in accordance with our instructions. We will transfer your personal data to recipients outside the EU and the EEA. These are recipients who are located in the United States with whom we have entered into the necessary agreements.
Certain personal data will be reported to public authorities if required by law, e.g., tax reporting. The legal basis for such disclosure of your personal data is Article 6(1)(c) of the GDPR.
If Crediwire needs legal assistance, we may also disclose your personal data to our external lawyer or auditor, due to our legitimate interest in being able to establish, exercise or defend a legal claim, cf. Article 6(1)(f) of the GDPR.

Storage of your personal data:

We store your personal data as long as your user exists. If you wish to delete your user, your data will be removed at the same time. Backups of your data may exist, however, for a maximum of 30 days after the request for deletion.
Your personal data submitted for the purpose of direct marketing will be deleted when the marketing consent is withdrawn, but the consent statement is kept for 2 years after the withdrawal of the consent. Once the marketing consent has been withdrawn, Crediwire will no longer process your personal data for this purpose.

When using Crediwire’s website:

When you use Crediwire's website, cookies are used to collect personal data about your behavior and your IP address.

Among other things, various social media plugins are used via Google and Facebook. For these types of processing, Crediwire is jointly responsible for the data together with the supplier of the third-party cookies in question. You can read more about this in Crediwire's Cookie Policy.

We process your personal information in connection with your use of our website, as described above and as further described in the cookie overview, which is also linked to in our cookie policy, on the basis of:

Article 6(1)(a) of the General GDPR (consent) in relation to marketing. Consent can be withdrawn via our Cookie Policy.
Article 6(1)(f) of the General GDPR (legitimate interest) where the legitimate interest is to offer you an interesting website that works optimally and keep statistics about our website.
Article 6(1)(b) of the General GDPR (contract) in relation to necessary and functional cookies.
Purpose: Communication of relevant information, such as information about activity in the CrediWire system, as well as contact in connection with support.
What types of personal data we process: E-mail, name, phone number.

Your rights

Under the General GDPR, you have a number of rights in relation to our processing of your personal data.

Please contact us if you wish to exercise any of your rights below.

Right to view information (right of access): You have the right to access the data we process about you, as well as several additional data.

Right to rectification (correction): You have the right to have incorrect data about you corrected.

Right to erasure: In certain cases, you have the right to have data about you deleted before the time of our regular deletion occurs.

Right to restriction of processing: In certain cases, you have the right to have the processing of your personal data restricted. If you have the right to have the processing restricted, we may only process the information going forward - apart from storage - with your consent, or for the purpose of establishing, exercising, or defending legal claims or to protect a person or important public interests.

Right to object: In certain cases, you have the right to object to our processing of your personal data. You can also object to the processing of your personal data for direct marketing.

Right to transmit data (data portability): In certain cases, you have the right to receive your personal data in a structured, commonly used, and machine-readable format and to have this personal data transferred from one data controller to another without hindrance.

You can read more about your rights in the Danish Data Protection Agency's guide to the data subjects' rights, which you will find at www.datatilsynet.dk.

You have the right to lodge a complaint with the Danish Data Protection Agency if you are dissatisfied with the way we process your personal data. You will find the Danish Data Protection Agency's contact information at www.datatilsynet.dk.