Privacy Policy

Purpose of this policy

At Ibsen, we aim to be a responsible and trusted partner to our customers and business partners. We do our utmost to ensure that the data we are trusted to manage is processed as safely as possible, respecting the individual’s right to privacy as well as applicable laws on data privacy, data protection, and data security.

This policy provides you with an overview of the principles that apply within Ibsen with regard to the collection and processing of personal data. It is meant to inform you about our use of any personal data we collect from you directly, or indirectly via third-party data providers.

Content

  1. How we obtain your personal data and how we use it
    • Personal data provided by you
    • Personal data provided to us by third parties
  2. How we protect your personal data and international transfers
  3. How long we retain your personal data
  4. Managing and Controlling Data
  5. Enforcement and Oversight
  6. Your right to lodge a complaint
  7. How to contact Ibsen
  8. Changes to this Privacy Policy

1. How we obtain your personal data and how we use it

We collect information about you, including your personal data, when you:

  • Visit our website
  • Contact us / register with us
  • Attend or register to attend our events (including online events) or other events where Ibsen participates
  • Purchase our products and services
  • Voluntarily complete customer surveys or participate in competitions
  • Provide feedback
  • Supply products or services to Ibsen
  • Have applied to work for Ibsen, or are current or former employees of Ibsen, or have contracted to work for or on behalf of Ibsen

The personal data fall within the following groups of information:

  • Identity Data, which may include your first name, last name, username or similar identifier and your job title.
  • Contact Data, which may include your email address, postal address and telephone number(s).
  • Technical Data, which may include internet protocol (IP) address, your login data, browser type, and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access our websites.

i) Personal data provided by you

Purchase of our products and services

Ibsen collects personal data from you (Identity Data and Contact Data) when you purchase our products or services. We use this personal data:

  •  To carry out obligations arising from your purchasing of our products and services. The lawful basis for processing your personal data for this purpose is “contractual need”. In this regard, please note that Ibsen may use third parties for payment processing. Such third parties are solely a link in the distribution chain and are not permitted to store, retain or use the information provided except for the sole purpose of payment processing.
  • To provide, maintain, protect and improve our products and services, and to develop new ones.
  • To send you personalized communications, which you have requested or that may be of interest to you. This may include information about webinars, events, surveys and industry news as well as product and service developments. The lawful basis for processing your personal data for this purpose is “legitimate interest”.

Individuals contacting us

Ibsen collects personal data from you (Identity Data and Contact Data) when you contact us about our products or services, register for our newsletter, participate in competitions or provide feedback. We will use this personal data:

  • To help solve any issues you might be facing. The lawful basis for processing your personal data for this purpose is “contractual need”.
  • To send you personalized communications, which you have requested or that may be of interest to you. This may include information about webinars, events, surveys and industry news as well as product and service developments. The lawful basis for processing your personal data for this purpose will be “legitimate interest”.

Please note that Ibsen is strongly opposed to sending unsolicited emails and does not knowingly send out unsolicited emails (Spam).

Attendees or registrants to attend our events (including online events) or other events where Ibsen participates

Ibsen collects personal data from you (Identity Data and Contact Data) when you attend or register to one of our events or other events in which Ibsen participates. We will use this personal data:

  • To carry out obligations arising from being a registered attendee of our event or other events in which Ibsen participates. The lawful basis for processing your personal data for this purpose will be “legitimate interest” as this will allow Ibsen to manage and deliver events on topics requested by you.
  • To send you personalized communications, which you have requested or that may be of interest to you. This may include information about webinars, events, surveys and industry news as well as product and service developments. The lawful basis for processing your personal data for this purpose is “legitimate interest”.

Individuals who complete surveys or participate in competitions Ibsen has published

Ibsen collects personal data from you (Identity Data and Contact Data) when you complete surveys we have published. We will use this personal data:

  • To send you personalized communications, which you have requested or that may be of interest to you. This may include information about webinars, events, surveys and industry news as well as product and service developments. The lawful basis for processing your personal data for this purpose is “legitimate interest”.

Companies who supply products or services to Ibsen

Ibsen collects personal data from you (Identity Data and Contact Data) when you supply products or services to Ibsen. We will use this personal data:

  • To carry out obligations arising from you providing us with products or services. The lawful basis for processing your personal data for this purpose is “contractual need”.

Individuals who have applied to work for Ibsen

Ibsen collects personal data from you when you apply to work for Ibsen. The lawful basis for processing your personal data for this purpose is “contractual need” and no later than at the time of collection you will be informed of how we process and use your data in this regard.

Individuals who are current or former employees of Ibsen or have contracted to work for or on behalf of Ibsen

Ibsen collects personal data from you when you work for Ibsen, including first name, last name, username, email address, postal address, telephone number, date of birth, employee identification number, bank details, national insurance number, emergency contact details and children’s first name, last name, and date of birth (for health insurance purposes). Proper information has been given to you at the time of collection and can be found in your local version of the employee handbook or the like. The lawful basis for the processing of your personal data in this regard is:

  • “Contractual need” with regard to enabling us to employ, pay and manage your work.
  • “Vital interests” in case of true emergencies (a matter of life and death) when we will utilize your emergency contact details.
  •  “Compliance with legal obligations” with regard to enabling us to comply with applicable tax, employment, and health and safety laws.

 ii) Personal data provided to us by third parties

Visitors to our websites

As you interact with our websites, we may automatically collect Technical Data about your equipment, browsing actions and patterns. We collect this personal data by using cookies, server logs, and other similar technologies. Please see our Cookie Policy for further details.

We use the website traffic and visitor information to analyze trends, help diagnose problems with our servers, monitor traffic/usage in order to provide better service and to improve our understanding of the use of the Ibsen website and in order to determine what Ibsen services are the most popular. The data is also used to deliver customized content and advertising within the Ibsen website to individuals whose behavior indicates that they are interested in a particular subject area. The lawful basis for processing your personal data for this purpose is “legitimate interest”.

2. How we protect your personal data and international transfers

Ibsen is committed to protecting the security of your personal data. Thus, we have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed:

  • The personal data we process is stored in data centers in Denmark certified in ISO27001 Information Security Management and ISO22301 Business Continuity Management.
  • We use only recognized, industry-leading hosting partners and market-leading suppliers for software services such as email, industry surveys, etc.
  • When we use consulting partners to support our business we ensure their contractual commitments include compliance with applicable data law(s) and that they maintain the safety and privacy of any client data they may access.
  • We do not share your data with anyone other than the suppliers described above. Hence, we never sell your data.

In addition to the above, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality. In addition, we have put in place procedures to deal with any suspected personal data breach and will, when applicable, notify you and any applicable regulator of a breach.

We share your personal data within Ibsen and with third-party service providers both within and outside the EU / EEA. Whenever we transfer your personal data out of the EU / EEA, we ensure a similar degree of protection is afforded to it by ensuring relevant safeguards are implemented. Any transfer of your data outside the EU / EEA will be based on the EU Commission’s Standard Contractual Clauses, Binding Corporate Rules or other valid legal bases for such transfer.

3. How long we will retain your personal data

We will retain and process your personal data as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting or reporting requirements under applicable law(s). After this period, your personal data will be deleted from all systems.

If you have consented to receive marketing material from us, you may opt-out at any later date via our website or by email to GDPR@ibsen.com.

4. Managing and Control of Data

We are committed to ensuring that you are in control of how your personal data is used and processed. You can review, edit or delete your personal data free of charge by contacting us directly via your local contact person or by email to GDPR@ibsen.com.

At any time your rights concerning your personal data are:

  • Request access. You can ask about the personal data we hold about you and we will inform you, free of charge.
  • Request correction. You can request that your personal data is corrected and we will update the details and inform you when completed, free of charge.
  • Object to processing. You can object to your personal data being processed and we will stop processing your personal data, once no longer required for the performance of a contract or legal obligations, free of charge.
  • Withdraw consent. You can object to receiving direct marketing communications from us and we will stop all communications, free of charge.
  • Request erasure. You can ask for your personal data to be erased, once no longer required for the performance of a contract or legal obligations, free of charge.

5. Enforcement and Oversight

We have established policies and procedures for compliance with this policy and we conduct an annual self-assessment to verify that the attestations and assertions we make about our privacy practices are true and that our privacy practices have been implemented as intended.

6. Your right to lodge a complaint

You have the right to lodge a complaint with your local data protection agency. In Denmark, this is the Danish Data Protection Agency: https://www.datatilsynet.dk/kontakt/

7. How to Contact Ibsen

We welcome your comments and questions regarding this Privacy Policy or about Ibsen’s privacy practices. Please do not hesitate to contact us via your local contact person, by email to GDPR@ibsen.com, by written letter to Ibsen Photonics A/S, Ryttermarken 15-21, DK-3520 Farum, Denmark, or by phone to +45 4434 7000.

8. Changes to this Privacy Policy

We keep our Privacy Policy under regular review and we will place any updates on this webpage. Our Privacy Policy was last updated on 31 May 2018 and historic versions can be obtained by contacting us.