In connection with your contractual relationship with Deloitte, Deloitte will as a data controller collect and process your personal data for the purposes specified below. Deloitte processes personal data in accordance with the prin-ciples in EU’s General Data Protection Regulation (GDPR) and the Danish Data Protection Act.
Please read carefully below, how we process your personal data in connection with our provision of services.
Topics:
We may collect and process the following types of personal data for the pur-poses of providing services to you; relationship management; collecting your feed-back and optimising our services to you; compliance with applicable le-gal or regulatory requirements and/or internal policies; documentation re-quirements; handling requests, complaints and claims; handling inspections and queries by supervisory authorities; receiving external audit and legal ad-vice:Your nameemail address
We mostly collect your personal data from you directly, however, we may also collect data from public authorities (e.g. tax authorities), pension companies, insurance providers, banks, legal counsels and other third-party advisors and other Deloitte entities depending on the nature of the engagement.
We collect and process your data based on the following articles in GDPR:
In connection with one or more purposes outlined above, your personal data may be disclosed to and shared with the following recipients: Public authori-ties; our professional advisors (e.g. auditor and legal advisors); service and IT vendors; and other Deloitte entities.
Transfer of personal data to data processors
We may transfer your personal data to other Deloitte entities. We may also transfer your data to IT providers, including cloud service providers, or to ex-ternal service providers, who process and /or store your personal data on our behalf.
Transfer of personal data to recipients in countries outside the EU/EEA
We may transfer your personal data to recipients located in countries outside the EU/EEA for the purposes listed in section 1. In such case, the legal basis for the international transfer will be EU’s Standard Contractual Clauses (SCC), or other applicable legal basis.
We store your personal data for as long as necessary to fulfil the purposes above.
Subject to the conditions set out in the applicable data protection legislation, you have the following rights:
Please note that these rights are not absolute, as they should be balanced against legal requirements and Deloitte’s legitimate interests.
You also have the right to file a complaint with the Danish Data Protection Agency (Datatilsynet):
Borgergade 28, 5
1300 København K
Telephone: 33 19 32 00
dt@datatilsynet.dk
Please contact us at dkdatabeskyttelse@deloitte.dk if you have any questions with regards to the protection of your personal data, or if you wish to exercise your legal rights.
Deloitte Statsautoriseret Revisionspartnerselskab
CVR-nr. 33 96 35 56
Weidekampsgade 6
2300 Copenhagen S
Denmark
CVR-no. 33963556
We keep our privacy notice under regular review and thus the privacy notice may be subject to changes. The date of the latest revision of the privacy no-tice can be found at the top of the document.