1.2 This Policy applies to all City Caps users and customers from 10 December. City Caps may change this Policy at any time, which City Caps will inform users and customers.
2. Data responsibility.
2.1 Data controller. City Caps is the data controller, and we ensure that your data is processed by following the law.
2.2 We take your data protection seriously. We collect and process personal data as a natural part of www.citycaps.dk and have adopted this Policy. It tells you how we process the personal data we collect and use when you use our services.
2.3 We ensure fair and transparent data processing. When we ask you to make your data available to us, we inform you of what personal data we process about you and its purpose. You will receive information about this at the time of collection of your data.
2.4 Contact information. If you would like to get in touch with us, our contact information is:
City Caps ApS
Troldhøj Alle 118
VAT No .: 41766107
Phone: +45 52 50 04 45
3. Processing of your data. Part 1.
3.2 When you register for services on the website, make purchases or contact us. We use personal data about you to provide our services to you, improve our service and ensure quality in our services and our contact with you.
The personal data we use includes in particular:
- General personal data in the form of contact and bank information.
- Information included in inquiries to us, complaints, feedback, etc.
City Caps does not collect personally identifiable information from third parties about our users or customers.
3.3 We collect and store your data for specific purposes. We collect and store your personal data in connection with specific purposes or other lawful business purposes. The treatment happens when we need:
- Manage your relationship with us, incl. The creation process.
- Delivery of our services, including processing your order.
- Fulfilment of your request for special services.
- Customizing our communication and marketing for you.
You can read about the individual services in the following. We always strive to adhere to the general principles described after the respective services.
3.3.1 Orders. City Caps processes the following information:
- First name.
- Last name.
- Phone number.
- Registration and account number.
- Login & password.
- IP address (es).
For our service, City Caps performs treatment for:
- Login data and browser data where the user permits for this.
- Administration of payments and bookkeeping.
- Order history.
- Messages on the page.
If you order items on our website, we pass on your information as follows:
- Name and address of GLS to ship your goods.
- Email information to Trustpilot solely for Trustpilot being able to contact you by email. An email regarding your assessment of the purchase process.
We process this information based on your consent and comply with the other terms of the Policy.
3.3.2 Newsletter. You can sign up for our newsletter separately on our website and during ordering. You will always be able to unsubscribe from this service in every inquiry. You will not receive newsletters or other unsolicited commercial questions from our partners without prior consent.
We use the Mailchimp service to send out our newsletters if you have subscribed to our newsletter, who will pass on your name and email address to Mailchimp.
We use technology from Mailchimp, where we can see if you have clicked on one of our links in our news mail. We only use the information for static purposes.
4. Processing of data. Part 2.
4.1 Disclosure of personal information to business partners. It is necessary to pass on relevant personal information about you to our subcontractors by providing our service to you, such as order handling/returns, payment solutions, etc.
We only use data processors who provide the necessary guarantees to have introduced appropriate technical and organizational measures so that the processing will comply with relevant requirements in applicable data protection legislation, incl—the protection of the data subject's rights.
4.2 We only process relevant personal data. We only process personal data about you that is relevant and sufficient about the purposes defined above. The goal is decisive for the type of personal data about you that is relevant to us. The same applies to the scope of the personal data we use. We use, e.g. no more personal data than we need for a specific purpose.
4.3. We only process necessary personal data. We collect, process and store only the personal data required to fulfil our stated purpose. Also, it may be determined by law what type of personal data is necessary to collect and store for our business operations, e.g. accounting legislation. The type and extent of personal data we process may also be required to fulfil a contract or other legal obligation.
4.4 We check and update your data. We check that the personal data we process about you is not incorrect or misleading. We also make sure to update your information regularly.
As our services depend on your data being correct and up to date, we ask you to inform us of your data's relevant changes. You can either log in to your profile via our website or use the contact information above under section 2.4 to notify us of your changes.
4.5 We delete your data when it is no longer needed. We delete your information when we don't need your data any more for the purpose that was the reason for our collection, processing and storage of your personal data.
We store personal information that we collect by law to keep, e.g., the Accounting Act.
We delete inactive user profiles, which we call "members", after one year of inactivity. Beforehand, we will have reminded the user about this.
4.6 We do not pass on your data without your consent. If we give on your person to partners and actors, i.a. for marketing purposes, we obtain your prior consent and information about how we will use your data. You can object to this type of disclosure at any time, and you can also refuse inquiries for marketing purposes in CPR-registered (the so-called Robinson list).
We do not obtain your consent if we are legally obliged to disclose your data, e.g. as part of statutory reporting to an authority.
5.1 We protect your data. We take care of your data to prevent it from being accidentally lost or altered, against unauthorized disclosure and unauthorized access or knowledge of it.
We use EU data processors who store and process personal data on behalf of City Caps, following this data policy and applicable law.
If you have subscribed to our newsletter, we will transmit your name and email to Mailchimp's servers in the United States. Mailchimp is Privacy Shield certified, cf. https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG, which is why that Mailchimp ensures an adequate level of protection.
In the event of a security breach that results in a high risk for you, e.g. discrimination, ID theft or fraud, financial loss, loss of reputation or other significant inconvenience, we will notify you of the security breach as soon as possible.