Privacy policy
1. Data controller
We are the data controller for the processing of the personal data we handle about our customers and partners. You can find our contact information below.
AnotherWaiter I/S
Vestergade 32, 1. tv., 7600 Struer
CVR-nr.: 43672762
Phone: +45 40 30 10 10
It is not a requirement for our company to have an external DPO, but if you have questions regarding the processing of your personal data, you can contact us at aw@anotherwaiter.com.
2. Processing activities
As the data controller according to GDPR, we have the following processing activities.
Visiting the website
When you visit our website, we use cookies for the website to function, which you can read more about in our cookie policy.
Communication with potential customers
When you have questions about our site or want to learn more about our services, you can contact us via:
- Contact form
- Phone
Through these channels, we will process your personal data so we can engage in a dialogue with you, e.g., respond to inquiries about our services. We only process the information you provide us during our communication.
We will typically process the following general information: name, email, phone number.
Our legal basis for processing this personal data is Article 6, paragraph 1, letter f of the Data Protection Regulation.
We will delete our communication with you once it is clear whether you want our services or not.
If, in a particular case, there arises a need to retain your personal data for a longer period, this may occur.
Customers
We need to communicate with our customers to ensure that the service is delivered correctly. Through this, we may process information about name, address, services, special agreements, payment information, and similar.
The legal basis for processing this personal data is Article 6, paragraph 1, letter b of the Data Protection Regulation.
Once the service is delivered and any outstanding matters are resolved, we will immediately delete the personal data.
Newsletter
We have a newsletter that is voluntary to subscribe to – and you can always unsubscribe from it again.
The purpose of the newsletter is to send registered emails with new information from the company, which can include new content on the website and advertising of our services.
We will only send you emails if you have given your active consent for this. This initially requires you to provide your email address, to which we will subsequently send an email so that you can confirm your subscription. In this way, we ensure that you have indeed subscribed to the newsletter yourself, i.e., provided active consent.
Our legal basis for processing your personal data (i.e., email address) in connection with the newsletter will be Article 6, paragraph 1, letter a of the Data Protection Regulation.
We will process your personal data as long as you remain subscribed to the newsletter. Upon unsubscribing from the newsletter, we will also stop sending this to you. If we have not sent you a newsletter in 1 year, your consent will lapse as a result of our inactivity.
When unsubscribing from the newsletter, we will retain your previous consent for 2 years after it was last used due to limitation periods according to the Consumer Ombudsman’s spam guidelines section 11.3.
Accounting
We must retain all accounting documents according to the Accounting Act. This means that we store invoices and similar documents for accounting purposes. Personal data such as name, address, service description may appear here.
Our legal basis for processing personal data for accounting is Article 6, paragraph 1, letter c of the Data Protection Regulation.
We retain this information for a minimum of 5 years after the end of the current financial year.
Job applications
We gladly accept job applications to assess whether they match a hiring need in our company.
If you send your job application to us, our legal basis for processing your personal data is Article 6, paragraph 1, letter f of the Data Protection Regulation.
If you have submitted an unsolicited application, we will immediately assess whether your application is relevant, and then delete your information again if there is no match.
If you have applied for a posted job, we will dispose of your application if you are not hired, and immediately after the right candidate is found for the job.
If you are involved in a recruitment process and/or hired for the job, we will provide you with separate information on how we process your personal data in this context.
3. Data processors
Few can do everything themselves, and the same goes for us. Therefore, we have partners and use suppliers, some of whom may be data processors.
External suppliers may provide systems to organize our work, services, advice, IT hosting, or marketing.
- Freepay
- Adyen
- Hetzner
- Google Analytics
- Finaro
It is our responsibility to ensure that your personal data is handled properly. Therefore, we set high standards for our partners, and our partners must guarantee that your personal data is protected.
AnotherWaiter’s privacy policy is solely applicable to our own website (www.anotherwaiter.com and www.anotherwaiter.dk) and software developed by AnotherWaiter. We therefore encourage you to examine the privacy policies of our data processors for more information.
4. Disclosure of personal data
We do not disclose your personal data to third parties.
5. Profiling and automated decisions
We do not perform profiling or automated decisions.
6. Transfers to third countries
We primarily use data processors in the EU/EEA or those who store data in the EU/EEA.
In some cases, this is not possible, and data processors outside the EU/EEA may be used if they can provide adequate protection for your personal data.
7. Processing security
We maintain the security of personal data processing by implementing appropriate technical and organizational measures.
We have conducted risk assessments of our processing of personal data and have subsequently implemented appropriate technical and organizational measures to enhance processing security.
One of our most important measures is to keep our employees updated on GDPR through ongoing awareness training, GDPR courses, and by reviewing our GDPR procedures with employees.
8. Rights of the data subjects
Under the Data Protection Regulation, you have a number of rights regarding our processing of information about you.
If you wish to exercise your rights, please contact us so we can assist you with this.
Right to access information (right of access)
You have the right to access the information we process about you, as well as a number of additional information.
Right to rectification
You have the right to have inaccurate information about yourself corrected.
Right to erasure
In certain cases, you have the right to have information about you deleted before the time of our usual general deletion occurs.
Right to restriction of processing
In certain cases, you have the right to have the processing of your personal data restricted. If you have the right to have the processing restricted, we may only process the information – except for storage – with your consent, or for the establishment, exercise, or defense of legal claims, or to protect a person or important public interests.
Right to object
In certain cases, you have the right to object to the processing of your personal data. You can also object to the processing of your information for direct marketing purposes.
Right to data portability
In certain cases, you have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit this personal data from one data controller to another without hindrance.
You can read more about your rights in the Danish Data Protection Authority’s guidance on the rights of data subjects, which you can find at www.datatilsynet.dk.
9. Right to withdraw consent
When our processing of your personal data is based on your consent, you have the right to withdraw your consent.
10. Complaint to the Danish Data Protection Authority
You have the right to lodge a complaint with the Danish Data Protection Authority if you are dissatisfied with the way we process your personal data. You can find the contact information for the Danish Data Protection Authority at www.datatilsynet.dk.
We generally encourage you to read more about GDPR so that you are updated on the rules.