Fortrolighedserklæring: Data Sikkerhed

1. Introduction

This Privacy Statement ("Statement") describes how GITC ApS ("Company") protects and processes confidential information in accordance with Danish and EU law, including GDPR.

2. Definition of confidential information

Confidential information includes, but is not limited to:

Trade secrets
Teknisk information, software, kildekode, scripts og systemarkitektur
Customer data and information
Market strategies and business plans
Financial information
Any other information that is marked as confidential or by its nature should be treated as confidential

3. Processing of confidential information

The company undertakes to:

To protect and keep confidential all confidential information received in accordance with applicable law.
Not to disclose confidential information to third parties without the written consent of the original owner of the information.
Only use the confidential information for the purpose for which it was collected.
To implement appropriate technical and organizational security measures to protect information against unauthorized access, modification or deletion.
To limit access to confidential information to employees or partners who have a business need and are subject to corresponding confidentiality obligations.

4. Exceptions

The following information is not covered by the confidentiality obligation:

Information that is publicly available at the time of receipt.
Information that the Company has received from a third party who has the right to disclose it.
Information that the Company is legally obliged to disclose pursuant to legislation or an order from an authority.

5. Duration

The obligation to maintain confidentiality applies as long as the information is of a confidential nature, and at least 5 years after the termination of any collaborations or contractual relationships between the parties.

6. GDPR compliance

The company ensures compliance with the EU General Data Protection Regulation (GDPR), including:

Right of access: Customers and partners can request insight into what personal data is stored.
Right to correction and deletion: Information can be corrected or deleted upon request, if in accordance with legislation.
Right to restriction of processing: Information may be restricted in processing if there is a legal reason for it.
Data portability: Personal data can be transferred to another service provider upon request.

7. Consequences of a breach

Violations of this Statement may result in legal action, including claims for damages for any losses incurred as a result of the breach. In the event of a security breach that compromises confidential information, relevant authorities and affected parties will be notified in accordance with the GDPR.