Privacy Policy
Welcome to Unioo's Personal Data Protection Policy (Privacy Policy).
1. ABOUT UNIOO'S PRIVACY POLICY
This privacy policy describes how Unioo ApS, Niels Brocks Gade 8, 1., 8900 Randers C, CVR-no. 40390030 ("us", "we" and "our"), collects and uses your personal data when (i) you use our website (www.unioo.io), (ii) we send you newsletters via email that you have requested, (iii) we process information about you when you visit our Unioo business pages on social media, (iv) you contact us with questions, and/or (iv) you create a user account on our platform on behalf of your association.
In many situations, Unioo is a data processor on behalf of our customers, but regarding information covered by this privacy policy, we are the data controller. This privacy policy contains an overview of our processing activities, including their purpose and legal basis.
If you have questions about this privacy policy or if you wish to exercise your rights as a data subject under Chapter III of the General Data Protection Regulation ("GDPR") and in accordance with section 5 of this privacy policy, you can contact us at hey@unioo.io.
2. PROCESSING ACTIVITIES
Purpose
Categories of personal data
Legal basis
Recipients
Retention period
We use our own and third-party cookies on our website.
The purpose of using cookies and similar technologies is to ensure that the website functions, to improve user experience and functionality, to compile statistics, and to enable marketing (targeting content to your needs and optimizing ads).
You can read more about how we use cookies in our cookie policy here.
When you visit our website, we process the following personal data about you through the use of cookies: browser information, information about your device, IP address, and behavior on the website, including which subpages you visit.
When we use necessary cookies, the basis for processing your personal data is our legitimate interests, and it is our assessment that your interests or fundamental rights and freedoms do not override these, cf. GDPR Article 6(1)(f). The legitimate interests we pursue are to provide a website that works optimally for you.
For cookies used for other purposes, the legal basis is your consent, which we will ask you to provide when you visit the website, cf. GDPR Article 6(1)(a), cf. the Cookie Order.
We use third-party cookies to collect data for optimizing our ads in general.
When we use third-party cookies from, for example, social media such as Facebook, LinkedIn, and Instagram or Google Ads, we will be joint data controllers with these providers and will therefore, in some cases, share information collected through cookies.
See more below under "Social media".
Personal data collected through cookies during visits to our website is stored for different periods depending on the type of cookie and the purpose of the cookie.
See our retention period per cookie in our cookie policy here.
If you have a user profile on our platform, you can subscribe to our newsletter, which we will then send to you via email.
The personal data we process for this purpose is your name and email address.
The legal basis for our processing of your personal data is your consent, cf. GDPR Article 6(1)(a), cf. the Marketing Act § 10.
N/A
We process your data for this purpose until you withdraw your consent to receive relevant news or 1 month after we stop sending newsletters.
If you choose to follow us or communicate with Unioo on social media (Facebook, Instagram, LinkedIn, and YouTube), we process your data. The purpose of processing personal data on our social media is to communicate and interact with you and to market ourselves to you.
When you interact with us on social media (like, comment, follow, etc.), we gain insight into the personal data you have made available on the social media, including, for example, your name, gender, marital status, job, interests, city, comments, visits, and "likes" on our page or posts.
When we process your personal data on social media, the basis for processing is our legitimate interest in being able to communicate with and market ourselves to you and to improve our business. It is our assessment that your interests or fundamental rights and freedoms do not override these, cf. GDPR Article 6(1)(f).
Providers of the respective online services, Meta Platforms Ireland Limited (Facebook and Instagram), LinkedIn, and Google Ireland Limited (YouTube), are data controllers for their own processing of your personal data and joint data controllers with us for sharing your personal data for the purpose of displaying our news and offers and excluding recipients from irrelevant messages and target groups.
We have no control over the social media's independent processing of your personal data, and we therefore refer you to their individual privacy policies for more information about the social media's processing and sharing of your personal data.
We process your data for this purpose until you withdraw your consent to receive relevant news or 1 month after we stop sending newsletters.
When you contact us (via phone, chat, or email), we process the personal data you provide to us in order to handle your inquiry.
The personal data we typically process is your name, phone number, email address, and the content of your inquiry.
The legal basis for processing your personal data is our legitimate interests in providing customer service and managing our customer relationships, and it is our assessment that your interests or fundamental rights and freedoms do not override these, cf. GDPR Article 6(1)(f).
In certain specific cases, such as in connection with disputes, including if disclosure is necessary for our legal claims to be established, exercised, or defended, we may disclose your personal data to advisors or other relevant third parties, provided it is deemed lawful and necessary.
Inquiries from potential customers are deleted when the case is closed.
Inquiries from existing customers are deleted 12 months after the end of the membership. Longer retention periods may be necessary for documentation purposes, such as due to a dispute, including for legal claims to be established, exercised, or defended.
When you create a user account for our software to manage your association, we process your personal data (profile data) to provide the administration service you request.
The personal data we collect is your name, email, phone number, and account numbers (if required for billing). We also generate a username and password.
The legal basis for processing your personal data is that it is necessary to process your personal data to fulfill the agreement we have entered into with you, cf. GDPR Article 6(1)(b).
The legal basis for processing your personal data after the end of the contractual relationship is our legitimate interests, and it is our assessment that your interests or fundamental rights and freedoms do not override these, cf. GDPR Article 6(1)(f). The legitimate interests we pursue are the consideration of documentation in connection with previous contractual relationships.
In certain cases, the processing of your personal data is necessary to comply with a legal obligation imposed on us, such as in connection with the retention of accounting material in accordance with the Accounting Act. In such cases, the legal basis is GDPR Article 6(1)(c).
In certain specific cases, such as in connection with disputes, including if disclosure is necessary for our legal claims to be established, exercised, or defended, we may disclose your personal data to advisors or other relevant third parties, provided it is deemed lawful and necessary.
Customer data is deleted 14 days after you delete your profile with us, unless it is necessary to retain the personal data for documentation purposes, such as due to a dispute, including for legal claims to be established, exercised, or defended.
To the extent that your personal data is included in our accounting material, such as in connection with billing, your personal data is retained for 5 years from the end of the financial year to which the accounting material relates, in order to comply with our legal obligations under the Accounting Act.
3. SOURCES
Most of the information we process is received from you, for example, when you create a profile with us on behalf of your association, send us a question, or subscribe to our newsletter.
4. USE OF DATA PROCESSORS AND TRANSFERS OF PERSONAL DATA TO THIRD COUNTRIES
In connection with the processing of your data as mentioned above, we use data processors who act solely on our instructions and in accordance with a data processing agreement. The data processors provide, for example, IT systems that we use to process your data.
We prioritize that all data is processed within the EU. However, in certain limited cases, your personal data may be transferred to countries outside the EU/EEA. Transfer may be relevant, for example, if we use an IT provider located in a third country. We ensure that the transfer is carried out in accordance with applicable data protection legislation. This means that a recipient of your personal data who is not located in the EU/EEA will ensure an adequate level of protection, for example, by entering into an agreement with us on the use of the EU Commission's standard contractual clauses. We ensure the implementation of additional protective measures if deemed necessary in each case.
You can request a copy of the legal basis for the transfer by contacting us at hey@unioo.dk.
5. YOUR RIGHTS
We have implemented a number of measures to protect your personal data and ensure your rights. Because your personal data is processed, you can exercise the rights described below. However, some of the rights only apply under certain circumstances. The Danish Data Protection Agency has prepared a guide on the rights of data subjects. More information about your rights can be found here.
- You have the right to request access to, including a copy of, the personal data we process about you and, in this context, also the right to receive a number of additional information.
- You have the right to request the rectification of inaccurate personal data about yourself and the right to request the completion of incomplete personal data.
- If you have requested targeted marketing content, the right to rectification naturally also applies to you, but you should be aware that it is not possible for us to change the behavioral data that has already been collected and used to target our content on the website and in our newsletters. However, we can always mark the behavioral data that you - for any reason - believe is not accurate, after which you will no longer be included in the relevant segment, and the future targeting of content will not be based on it.
- You have the right to request the deletion of personal data about yourself under certain circumstances, for example, if the processing is based on your explicit consent and you withdraw your consent. The right to deletion also applies to personal data that has been collected and processed for the purpose of targeting content.
- You have the right to request the restriction of the processing of your personal data, for example, in connection with the accuracy of the personal data being disputed.
- When our processing is carried out automatically and is based on your consent or the fulfillment of an agreement with you, you have the right to request to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format and the right to request the transmission of this personal data to another data controller, if technically possible (data portability).
- You have the right to object to the processing of your personal data by us, particularly in relation to direct marketing.
- You have the right to request not to be subject to a decision based solely on automated processing, including profiling, which has legal effects or similarly significantly affects you.
- If you have given consent to the processing of your personal data, for example, for targeted marketing, you have the right to withdraw your consent at any time. To unsubscribe from our newsletters, you can use the link included in each newsletter. You can always contact us at hey@unioo.io to withdraw your consent. If you withdraw your consent, this will not affect the processing of your personal data that took place before the withdrawal.
If you wish to exercise any of the above rights, or if you wish to withdraw a previously given consent, you are welcome to contact us at hey@unioo.io.
6. INQUIRIES AND COMPLAINTS
If you have questions regarding this Privacy Policy, if you wish to exercise any of the above rights, or if you disagree with the way we process your personal data, you can contact us at hey@unioo.dk.
If you disagree with the way we process your personal data, you have the right to file a complaint with the Danish Data Protection Agency. You can find the Danish Data Protection Agency's contact information here. However, we sincerely hope that you will first contact us using the above contact information so that we can try to reach an agreement.
7. CHANGES TO THE PRIVACY POLICY
This privacy policy will be updated and amended regularly, and when necessary due to changes in law and practice in the field of data protection. We therefore recommend that you stay informed regularly.
Date of last amendment to this Privacy Policy: February 20, 2025
