On account of the new EU regulation General Data Protection Regulation, GDPR, we want to inform how personal information is processed by this website.
What personal data we collect and why we collect it
No personal information beyond what is mentioned below is collected and stored by this website.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
How long we retain your data
For users that are registered on our website, we store the personal information in the user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
This website is provided with virus protection and firewall which protects your personal information. In connection to unauthorized attempts to compromise the security of this website (“hacker-attacks”) personal information from visitors may be collected and stored for security analyzes. All information collected and stored which shows not be connected to the attack will be deleted.
Is information transferred outside EU/ESS?
User information stored on the site is stored inside EU (on servers in Denmark). Personal information that may be stored because of suspected unauthorized attempts to compromise the security of the website are stored in a third country, in USA. Applicable protection is used, which means that appropriate safeguards according to GDPR for such storage exists. If a suspected unauthorized attempt to compromise the security of the website directly can be excepted as incorrect suspected, the personal information is automatically deleted within a few days after storage, and if not certain latest after 90 days after storage.
What data breach procedures we have in place
If discovered that any unauthorized has succeeded to force the virus and firewall protection the following steps are executed: 1. The Swedish Data Protection Authority is informed. 2. The website is cleaned from virus and unauthorized code. 3. You will get information in case of that your personal information are suspected to have been transmitted to unauthorized.
What rights you have over your data
If you have an account on this site you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
If you have any questions or wishes regarding these matters, please contact firstname.lastname@example.org.