PRIVACY POLICY


1. Introduction

1. When the Customer and/or a User makes use of the Desupervised Service, this Privacy Policy applies.

2. Desupervised collects and processes personal data when providing its Service to Customers, this policy ("Privacy Policy") explains which data, how, and why Desupervised processes such personal data. In regard to such personal data, Desupervised is the data controller.

3. If the Customer or a User has questions regarding Desupervised's processing of personal data, Desupervised can be contacted, at:

Desupervised ApS
Strandboulevarden 122, 3. th.
DK-2100 Copenhagen
hello@desupervised.io

4. When the Customer uses the Desupervised Service for the operation of the AI-Code which has been created through the Service, and the Customer or its associated Users enters or uploads personal data into such AI-Code, the Desupervised acts as a data processor for the Customer. In this regard please refer to the Desupervised Data Processor Agreement.

2. Legislation

1. Desupervised always processes personal data in accordance with the General Data Protection Regulation ("GDPR") and Applicable Law.

2. Personal data is defined in accordance with the GPDR, as any information relating to an identified or identifiable natural person. Information on businesses is not considered personal information unless such information is also information on a person.

3. Processing of personal data

1. In order to offer the Desupervised Service to website visitors Customers and their associated Users, Desupervised processes personal data on the Users, and sometimes regarding the Customer.

2. Whenever a website visitor, Customer, or User sends an inquiry to Desupervised, Desupervised process information registered regarding the Customer and the User making the inquiry, as well as possible personal data included in the inquiry. The purpose of this is to provide the Customer and/or User with support and/or another reply to the inquiry. The legal basis for such processing is GDPR, art. 6, sect. 1, lit. b) or lit. f) depending on the type of inquiry.

4. Security

1. All personal data is stored on secure servers within the EU.

2. Desupervised have ensured that appropriate technical, organizational, and physical measures are implemented in order to ensure an adequate level of protection of personal data from accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access in accordance with the GDPR and Applicable Law.

3. In spite of Desupervised's efforts to establish a secure environment for the processing of data, the Customer should ensure, that the Customer and all associated Users themselves on access to the Service and when processing personal data have adequate security measures in place.

5. Retention of personal data.

1. Personal data regarding Customers are retained by Desupervised for as long, as an active Agreement is in place between the Customer and Desupervised and three years thereafter. Personal data regarding Users are retained for as long as the User is associated with a Customer having an active Agreement with Desupervised and three years thereafter.

2. Personal data relating only to an inquiry is however only retained for 6 months after Desupervised's reply to the inquiry.

3. All personal data may be retained for longer if specifically necessary, e.g. for legal purposes, where personal data may be retained until such legal matter has been resolved.

6. Personal data rights

1. All persons whose personal data is being processed by Desupervised ("Data Subjects") have certain rights in accordance with the GDPR and Applicable Law. Such rights are specified below.

2. If a Data Subject wishes to exercise one or more of their personal data rights, please contact Desupervised at the address above, cf. section 1.3.

3. Data Subjects have the right to obtain access to personal data being processed by Desupervised. (right of access)

4. Data Subjects have the right to rectification of their personal data if they are inaccurate or misleading. (right of rectification)

5. In certain situations, Data Subjects have the right to have their personal data erased prior to Desupervised otherwise erasing such personal data. (right of erasure).

6. In certain situations, Data Subjects have the right to have the processing of their personal data restricted. If the Data Subject has such right, Desupervised shall only store such data, and not process them otherwise without consent, except in special situations. (right of restriction)

7. In certain situations, Data Subjects have the right to object to the otherwise legal processing of their personal data, this includes objection against processing for marketing purposes. (right of objection).

8. In certain situations, Data Subjects have the right to receive their personal data in a structured, commonly used, and machine-readable format and to have those data transmitted from one data controller to another data controller. (right of data portability)

9. To the extent that Desupervised process personal data based on the consent of a Data Subject, such Data Subject may always withdraw the consent in relation to any future processing. (right to withdraw consent).

7. Complaints

1. If a Data Subject is not satisfied with the way Desupervised processes the personal data of such Data Subject, please contact Desupervised, at the address above.

2. A Data Subject may also lodge a complaint with the Danish Data Protection Agency on their website www.datatilsynet.dk, or by e-mail: dt@datatilsynet.dk, or, if within the EEA, with their national data protection agency.

8. Amendments to this Privacy Policy

1. Desupervised may at any time amend or make changes to this Privacy Policy. If amendments or changes to the terms are made, the Customer and Users will be informed about this by e-mail to the address provided by the Customer, and a message about such amendments or changes will be posted on the Desupervised website.

2. An updated or amended version of the Privacy Policy will enter into force as of the commencement of the calendar month following the month in which the notification of the amended or changed Privacy Policy is provided.

3. Continued use of the Service after the commencement date of the amended or changed Privacy Policy, cf. section 10.2, is deemed acceptance of the new Privacy Policy. If the Customer does not wish to accept the amended or changed Privacy Policy, the Customer may at any time terminate the agreement, cf. section 12.4 of the Terms. Any User not wishing to accept the amended or changed Privacy Policy, shall cease the use of the Service.