1. How do we collect information?
We collect information in the following ways;
When you give it to us DIRECTLY
There are many ways you give us your information. For example;
- When you purchase a product or service from us
- When you register to attend an event organized by us
- When you download to receive free digital information from us
- When you use our software products and services (both as demo and registered versions)
- When you request more information about a product or service that we offer
- When you register on our websites
- When you request to receive our free e-newsletters
- When you complete a survey asking for your views on various products and services
- When you communicate with us either by phone, in writing, by email or in person
Please always obtain consent first before giving us anyone else’s personal information. Please make sure that any personal details which you provide are accurate and current, and let us know if there are any changes.
When you give it to us INDIRECTLY
Your information may be shared with us by independent organisations, for example reputable trade associations within wind energy, district heating, cogeneration, trigeneration, energy storage or similar. These independent third parties will only share your information when you have consented. You should check their Privacy Notice when you provide your information to understand fully how they will process your data.
When you share your data with us via Social Media
Depending on your settings or the privacy notices for social media and messaging services like Facebook, WhatsApp, LinkedIn or Twitter, you might give us permission to access information from those accounts or services. If you use community tools, we may store the content and communications which you send and receive, and we reserve the right to monitor your communications. We may also detail your activity and personal preferences when visiting our sites (see “Cookies”, below).
When you share your data with us via information available publicly
This may include information found in places such as websites, business listings, association membership lists, directories and information that has been published in articles / newspapers.
2. What personal information do we collect?
We will only capture the minimum amount of information that we need to in relation to the purchases, products or services we provide to you, and we promise to keep your information secure. The personal data we will usually collect is:
- Your name
- Your contact details
- Your bank or credit card details (only relevant in connection with payments)
- Details of the enquiry, service or product
Where it is appropriate, we may also ask for additional information. For software products we collect personal information at various points when using software products like windPRO, energyPRO and energyTRADE:
Activation of software license
When you activate your software license, we collect the following information:
Software version, login id, computer id, username, customer number, company address, name and e-mail.
This information is required to use the software. We will periodically collect and process this information to validate that you have the right to use the software. The data will be stored for up to five years to monitor fraud.
Online data requests
When you request online data in the software, we collect the following information:
Software version, login id, computer id, username, customer number, activation key, and e-mail.
For data requests requiring information about the requested data’s geographical location (e.g. climate data and terrain data), geographical coordinates are also collected and processed in order to serve you the requested data and maintain and improve the data services.
This information is required to use the software online services. We will periodically collect and process this information to validate that you have the right to use these services. The data will be stored for up to five years to monitor fraud.
When submitting a bug-report we collect information about the software and your system such as:
Software version, Operating system, system language, system hardware, username, e-mail, computer name, processes and more.
This information is only sent to us when you submit a bug-report and is only used to diagnose errors. The bug-reports will be anonymized one month after the bug has been fixed, maximum five years after submission.
Sending project exports to support team
When you manually send a project export to EMDs Support team, the export files will be stored one month after the support ticket has been solved, or maximum five years if unsolved.
3. What do we do with the information we collect?
We will use your personal data with your consent on a contractual basis to provide you with the product or service that you have requested, such as;
- Software products and services
- Newsletters and other relevant information
- Event registration
- Any data, reports, documentation, etc. offered by us.
We will process your personal data for the legitimate interest of conducting core business activities, these will include:
- where the processing enables us to enhance, modify, personalise or otherwise improve our products / services / communications for the benefit of our customers
- to enhance the security of our network and information systems
- to operate our websites and provide the information and services you ask for, including downloads, reports and promotions
- to send you information in digital format (by email) that will be of interest and benefit to you as an individual in the renewable and decentralized energy sector
- to deal with your customer service requests
- for internal analysis and research to improve our websites and products and services
- to send you newsletters by email that will be of interest and benefit to you as an individual in the renewable and decentralized energy sector
- to send you marketing information about products, events and services by email
- to send administrative emails (for example, if you forget your password, invoice copies, service reminders, etc.)
- to prevent and detect fraud and abuse of our sites or services
Whenever we process data for legitimate interest purposes, we will ensure always to keep your Personal Data rights in high regards and take account of these rights. You have the right to object to this processing, if you wish, by e-mailing firstname.lastname@example.org. All emails will be answered within 3 working days. Please bear in mind that if you object, this may affect our ability to carry out tasks for your benefit.
How to unsubscribe
- Click the unsubscribe link at the bottom of any e-mail newsletter or other correspondence.
- Send your details to the EMD Data Controller (see section 6 below) by e-mail or post.
4. Who else has access to your information
Our service/host providers
In the course of our legitimate business activities, there may be a need for us to share, or give access to, your personal data to affiliated companies or other organisations who work for us that provide us with services or host our applications/software that you may access, for example:
- Banking organisations – those that provide our banking/payment services
- EMD agencies and subsidiaries
We will ensure that data processing agreements, compliant to GDPR, are in place before sharing with, or giving access to, your data with any of our service/host providers.
Some of these companies may process your information in countries outside the European Economic Area (EEA), such as the United States. Data protection laws in these countries may not offer the same level of protection as in the EEA. If you are not happy for us to transfer your information in this way, you should not access and use our websites.
Sharing with third parties.
We will never commercially sell your personal data to anyone else or give it to third parties who might use it for their own purposes.
We will only ever share your personal data in other circumstances, not listed above, if we have your explicit and informed consent at the time of collection.
In exceptional circumstances, we may disclose your personal information if required by law or to protect or defend ourselves or others against illegal or harmful activities. If our business is sold or restructured, your details may be transferred as part of the business.
5. How we keep your information safe and who has access to it
We ensure that there are appropriate physical and technical controls in place to protect your personal details.
We will ensure that all staff who have access to your personal data shall be obliged to keep your personal data strictly confidential.
We have a duty to report certain types of personal data breaches to the relevant supervisory authority, and where feasible, we will do this within 72 hours of becoming aware of the breach. If a breach is detected and likely to result in a high risk of adversely affecting you, we will inform you without undue delay.
We take commercially reasonable steps to protect your personal information. This includes setting up processes and procedures to minimise unauthorised access to or disclosure of your information. However, we do not guarantee that we will eliminate all risk of misuse of your personal information by intruders. Please keep any passwords for your accounts safe and do not disclose them to anyone else. You must contact us immediately if you become aware of any unauthorised use of your password or other security breach.
Any bulletin boards, chat rooms and other community areas on our sites are open to the public. We are not responsible for the protection or security of information which you disclose in these areas.
6. How long we retain your information and how we keep it up to date
We will only keep your information for as long as we need it to assist you with your enquiry, software products & services, newsletter subscription, event registration or other services associated to EMD International A/S. There are statutory timescales on how long we should keep your information, for example, financial transactions must be retained for 5 years for audit purposes. We shall delete your data when we are no longer providing you with any products or services, or when you request for us to delete your data. We shall delete your information according to guidance issued by the Information Commissioner.
7. Your rights
The General Data Protection Regulations gives you certain rights and these are listed below for your convenience, further clarification of your rights is available on the Information Commissioners website.
- You have a right to be informed when your personal data is being collected, what is collected and how it will be used or shared.
- You have the right to withdraw consent at any time.
- charge a reasonable fee, taking into account the administrative costs of providing the information; or
- refuse to respond.
- You have a right in certain circumstances to have inaccurate personal data rectified, blocked (restrict processing), erased (right to be forgotten), or destroyed.
- You have a right in certain circumstances to object to the processing of your personal data for such reasons as direct marketing, automated decision making, profiling; although we can confirm we make no decisions on you using an automated process.
- You have a right to obtain certain products or service from us without sharing your data with us, for example; website downloads and website reports. Applicants should be aware that a reasonable financial charge will be made for providing this service. Financial transactions must be retained for 5 years. All other data (except financial) relating to the transaction will be deleted once the transaction has taken place.
- You have the right for your information to be deleted. Contact EMD International A/S at email@example.com, if you wish us to delete your personal information.
- You have a right, in certain circumstances, to data portability.
We collect and process your personal data through legitimate interests or because you have provided it to us to enable us to deliver a service to you. We will only process your personal data as you would reasonably expect us to.
Finally, if you are unhappy with how we have processed your information, you have the right to lodge a complaint with the Office of the Information Commissioner.
Some of our websites contain cookies. Cookies are small text files that a website sends to your computer to record data related to your online activity on our website. Cookies may be used on our websites to help personalise your visits to our sites, improve how you use certain aspects of our sites and to record data related to your online activity on our website. You can disable cookies by adjusting your browser settings, but if you do so, some functions on our sites may not work correctly.
EMD International A/S
Phone: +45 6916 4850
Post: Niels Jernes Vej 10, 9220 Aalborg Ø, Denmark