Privacy Policy
1. General
This policy for processing personal data (“Privacy Policy”) describes how the Port of Aarhus collects and processes personal information about you in one or more cases:
- When you are travelling around the port area – including the Port Centre
- When you are a customer of the Port of Aarhus
- When you use our website
- When you communicate with us via e-mail or in other written communication
- When you receive out newsletter or press releases, or subscribe to the digital version of RePORTagen.
This Privacy Policy is applicable to personal data which you provide to us or which we collect via our website or other sources on account of your relationship with the Port of Aarhus.
The Port of Aarhus is the data controller responsible for your personal data. All communication with Port of Aarhus regarding your personal data can be sent to the contact details listed under Sec. 6.
We use cookies on our website to improve your use of our websites, as described in our Cookie Policy.
1.1 What is personal data?
Personal data is information that can be attributed to a specific person, even if that person can only be identified if this information is combined with other information.
Personal information could be a personal ID number, registration number, photo, fingerprint, voice or biological material which, based on the information itself or in combination with other information, makes it possible to identify a person. I.e. any data that is described as “personally identifiable”.
2. What personal information do we collect and for what purpose?
2.1 When you travel around the port area – Video surveillance and access cards
As part of access controls and video surveillance at the Port of Aarhus, we collect and store personal information about persons who travel around the facility. This applies to both persons with permanent access to the port area and Port Centre, including persons who are employed by the Port’s tenants or other partners, and persons who temporarily have access.
The Port of Aarhus is the data controller responsible for this processing.
Persons with permanent access to the port are issued an access card or use a private Brobizz. (The Port of Aarhus does not provide Brobizz). The following personal information is stored in connection with the issuing of access cards/use of a private Brobizz: Name, photo, company name, tel. no., e-mail address, reg. no., access rights, and date of issue. Traffic is continuously logged through the use of access cards/Brobizz.
Access controls are necessary in order to ensure that only persons with lawful grounds to be in the port/Port Centre can gain access.
In connection with video surveillance around the port, it is possible that recordings will be made of persons’ conduct and movements.
In connection with the access cards provided by the port, conduct and movements will be logged for each individual card.
Video surveillance and access cards are required in order to comply with ISPS port security requirements.
The grounds for the processing above is Article 6(1), point c) or d) GDPR.
2.2. When you are a customer of the Port of Aarhus
When you order a service from us or receive an offer from us: We collect information on your name, what company you represent, your tel. no., payment method, information on the services you are ordering, and the time and method of delivery. The aim of this processing is for us to be able to deliver the offered or agreed services, and to otherwise fulfil the contract we have concluded with you/the company you represent, including our ability to manage your rights to lodge a complaint.
The grounds for the processing above is Article 6(1), point e) GDPR.
2.3 When you visit our website
We automatically collect information on you and your use of the Port of Aarhus website when you visit it, provided you have accepted cookies. This information includes your IP address, what type of browser you are using, what pages you visit, what links you activate, and generally how you navigate on our website and how you use it. The aim of this is to improve user experience and the functionality of the website, and to be able to record how long visitors spend on the website and show you relevant information.
The grounds for the processing above is Article 6(1), point e) GDPR.
2.4 When you communicate with us
If you have questions or otherwise communicate with us, we collect information on your name, e-mail, tel. no. what company you represent, and your question. The aim of this processing is to answer questions or to be able to otherwise communicate with you in order to render the service you require.
The grounds for the processing above is Article 6(1), point e) GDPR.
2.5 When you subscribe to our newsletter, press releases or RePORTagen
We collect information on your name, e-mail address, tel. no. what company you represent, your industry, your consent, and your interests and preferences if you choose to provide this information. The aim of this processing is to be able to send you newsletters and otherwise pursue our legitimate interest in sending you marketing.
The grounds for the processing above is Article 6(1), point e) GDPR.
3. Recipients of personal data
We only ever share your personal data with third parties where we are obliged to do so by law or in order to render the services we offer via the port website.
Your information may be transferred to external partners who process information on our behalf. These companies are data processors for the port and process personal data according to our instructions. These data processors may not use this information for any purposes other than executing their contract with the Port of Aarhus, and are required to observe confidentiality regarding this information. We have concluded written data processing agreements with all processors who process personal data on behalf of the Port of Aarhus.
The Port of Aarhus uses https://piwik.pro/ to collect statistics relating to user behaviour on our website.
4. When we erase your personal data
4.1 When you travel around the port area – Video surveillance and access cards
In connection with video surveillance around the port, it is possible that recordings will be made of persons’ conduct and movements. All recordings are stored for up to 30 days, after which time they are erased unless there are reasonable grounds for keeping them for longer. Recordings are reviewed in the event of accidents, and in case of concrete suspicions of unlawful or disloyal conduct.
In connection with access cards, persons’ conduct and movements will be logged using access cards. Logs are stored for up to 3 months, after which time they are erased unless there are reasonable grounds to keep them for longer. Logs are reviewed in the event of accidents, and in case of concrete suspicions of unlawful or disloyal conduct.
For inactive cards that are not returned, logs are erased after max. 6 months.
4.2 When you are a customer of the Port of Aarhus
Personal data relating to a customer relationship or collaboration, cf. Danish Accounting Act (Regnskabsloven), is erased no later than 5 years after the customer relationship or collaboration has ended and any balances have been settled.
4.3 When you visit our website
Information collected on your use of our website, cf. Sec. 2.3, is erased no later than 36 months after you last visited our website.
4.4 When you communicate with us
Information collected in connection with your communication with us, your enquiries and requests for information from us are erased once they are no longer necessary for the respective processing of your message.
4.5 When you subscribe to our newsletter, press releases or RePORTagen
Information collected when you subscribe to our newsletter is erased as soon as you withdraw your consent to the newsletter. However, information may be kept for a longer period of time if we have a legitimate need to do so.
5. Your rights
With a view to creating transparency when it comes to the processing of your information, we as data controller must inform you of your rights.
5.1 Right of access
You are entitled at all times to request from us information on what information we have collected about you, what purpose this registration of information serves, what categories of personal information we collect and who might be receiving this, and information on the source of this information. You have the right to request a copy of the personal information we are processing about you. If you would like a copy of your personal information, please send a written request to port@portofaarhus.dk. You may be asked to provide documentation proving that you are who you say you are.
5.2 Right to rectification
You have the right to have incorrect information about yourself rectified. If you become aware of errors in the information we have registered for you, you are requested to write to us so that this information can be corrected.
5.3 Right to erasure
In certain cases, you have a right to have all or some of your personal data erased, e.g. if you withdraw your consent or we do not have any other legal basis for continuing processing. To the extent that it is necessary to continue processing your information, e.g. so that we can comply with our legal obligations or to establish, exercise or defend legal claims, we shall not be obliged to erase your personal data.
5.4 Right to withdraw consent
You have the right at all times to withdraw consent you have given us to process personal information, including consent given in connection with subscribing to our newsletter.
5.5 Right to lodge a complaint
You have the right at all times to lodge a complaint with the Danish Data Protection Agency (Datatilsynet), Borgergade 28, 5, 1300 Copenhagen K regarding our processing of your personal data. Complaints can be lodged by sending an e-mail to dt@datatilsynet.dk or calling +45 33 19 32 00 – or using the form on Datatilsynet’s website which is available here: https://www.datatilsynet.dk/media/7766/klage-til-datatilsynet.pdf
6. Contact details
If you have any questions or comments about this Privacy Policy or if you would like to make use of one or more of your rights, you can contact the Port of Aarhus:
E-mail: port@portofaarhus.dk
Telefon: +45 86 13 32 66.
6.1 Aarhus Havns Data Protection Officer er:
Advokat Karen Kaalund, Advokatpartnerselskabet Kirk, Larsen & Ascanius
H.C. Andersens Blvd. 45,
1553 København V
www.kirklarsen.dk
Direkte +45 76 11 54 20
kka@kirklarsen.dk
7. Changes to this Privacy Policy
This Privacy Policy was updated in July 2022. Insofar as we make changes to this Privacy Policy, the new version will be made available on the website.