Lorenz Technology ApS © 2017   |  Sivlandvænget 3, 1. 5260 Odense S   |   Tlf. 66806056  |  CVR: 38459228

PRIVACY POLICY 

Effective date: 18-09-19

Thank you for reviewing Lorenz Technology’s Privacy Policy. When using “we”, “our”, and “us” it refers to Lorenz Technology and all our services.

We design our technology for data protection from the ground up and are continuously working on improving our standards for security and safety in regards to data protection. With this Privacy Policy, we wish to respect your privacy and be compliant with the General Data Protection Regulation (GDPR) of the European Union.

This Privacy Policy describes the information we collect, how it is used and shared, and your choices regarding this information.

When we refer to Lorenz Technology, we refer to our services Lorenz AI-Link® and Lorenz Hive, our webpage, and our internal procedures, where we often switch between being the data processor and data controller, which are further explained in the section; “Data Controller or Processor”.

We always seek to provide the best and most secure processing of your data and please do not hesitate to contact us, if you have questions concerning our privacy policy and storing of your data.

 

To contact us about your data, please write: data@lorenztechnology.com

 

Application of this Privacy Policy

This Privacy Policy applies to all entities of Lorenz Technology including the use of our services; The Lorenz AI-Link® and Lorenz Hive, our webpage www.lorenztechnology.com, and all other interactions you may have with Lorenz Technology. If you do not agree with the terms of this privacy policy, please do not use any of our services, website or any other aspect of Lorenz Technology’s business.

This Privacy Policy does not apply to any third-party application you may share your data with through or from our services.

   

Data Controller or Processor?

In general, when using our services, our client will be the controller of data collected in the Lorenz Hive. Lorenz Technology acts in general as a data processor of clients’ data and as a controller of other information. With our services we offer a secure way of storing data and only the minimum number of employees at Lorenz Technology can access client data at our hosting partners through a virtual private network (VPN). The protection and security of data stored by us is described in the next paragraph as well as the certifications of our hosting partner.  

 

Security

At Lorenz technology, security and privacy is important, whereby all client’s data is encrypted by military standards (AES-256) both  at rest in our Lorenz Hive and in transit from the Lorenz AI-Link.
We and our hosting provider have employed procedures and technological measures for data loss prevention and encrypting data at rest will ensure that in the case of data loss, data will be unreadable/usable. However, it is impossible to guarantee absolute safety of your information from intrusion by others. We recommend that you create a strong and unique password to our services and that you logoff, whenever you have completed your session.   

 

Complying with the European General Data Protection Regulation (GDPR)
 

Being compliant with the GDPR means we process all personal data by the following principles:

  1. Lawfulness, fairness, and transparency: we obey the law; we only process personal data in a way that people would reasonably expect, and we are always open about our data protection practices.

  2. Purpose limitation: we only process personal data for the specific reason we collected it and nothing else.

  3. Data minimization: we do not process any more data than we need.

  4. Accuracy: we make sure that any personal data we hold is adequate and accurate.

  5. Storage limitation: we do not store personal data for longer than we need to.

  6. Integrity and confidentiality: we always process personal data securely.

Types of personal data Lorenz Technology process:

 

a) Personal data you provide to Lorenz Technology

You provide Lorenz Technology with personal data when you correspond with us via our website, by email, telephone and/or social media either on your own behalf or on behalf of an organization. You also provide us with personal information when you subscribe to our marketing, e.g. our newsletter.

 

b) Personal data Lorenz Technology collect automatically

As you use our website, Lorenz Technology collects technical data including your browser type, device and the Internet Protocol (IP) address used to connect your computer to the internet, and your usage habits like time spend on our website, which sites is visited and for how long etc. We collect these data using cookies to improve our customer service.

 

How and why we process personal data

Lorenz Technology has implemented workflows and technical systems to secure the personal data we process. We make use of the services Microsoft Office 365 and Azure Cloud to ensure data protection.  

The following list provides for what purposes we use personal data:

  • To provide clients with log in to our service based on the contract information needed also for billing our clients. 

  • To inform about our services and/or promotional offers if you have given consent to receiving marketing from us.

  • To send out service announcements for our clients regarding the use of our services.

  • To improve the design and style of our website.

  • To produce more relevant content for our media channels.

 

Our legal basis for processing personal data

According to the GDPR, we can only process your personal data when one of the following six circumstances are met:

  1. When consent has been given by the data subject for a specific purpose.

  2. When processing is necessary to perform or prepare for a contract with the data subject.

  3. When there is a legal obligation.

  4. When protecting the vital interests of the data subject or someone else.

  5. For the public interest or when exercising official authority.

  6. To carry out the legitimate interests of the data controller or a third party where these interests do not infringe on the rights, freedoms, or interests of the data subject.

Retention of Personal Data

Lorenz Technology only stores personal data as long as it is necessary to fulfill specific purposes outlined previously in this privacy policy.

If we do not have a specific purpose for storing the personal data it is deleted and maximum kept for 5 years.

 

Who do we share personal data with?

At Lorenz Technology we seek to practice that only the relevant employees within our organization have access to the personal data we process. We delimited the number by securing the access to personal client data and anonymize it if needed.

Lorenz Technology make use of third party processors, where we might share some elements of your personal data. We only share information relevant to conduct our business and improving your customer experience.

The following list includes the type of third party processors, which we make use of:

  • providers of online cloud storage services and other essential IT support.

  • providers of email management and distribution tools.

  • payment processors and accountant engaged by us to securely store and handle payment information.

  • Google Analytics to process data from visitors on our website. Read more about privacy and cookies set by Google

 

Your Rights

 

The right to be informed:

With this policy, we inform you of how we process your data and which third party processors we make use of.

 

The right of access:

You have the right to view what data is held about you.

 

The right to rectification:

You have the right to have your data corrected or amended if the data we hold is incorrect in some way.

 

The right to erasure (known as “the right to be forgotten”):

You can ask for a full erasure of your data by withdrawing your consent from us to process it.

 

The right to restrict processing:

You can ask for a temporary halt to processing your data or a restriction on what data to process.

 

The right to data portability:

You have the right to ask for your data in a structured, commonly used, and machine-readable format.

 

The right to object:

You have the right to object to further processing of your data if we might use it for other purposes than your primary intention.

 

Rights in relation to automated decision-making:

Your data is protected from being automated processed without human involvement in the decision-making process.

 

Changes to this Policy

Lorenz Technology might update and change this policy from time to time due to changes in legislation or to our business. The latest effective date will always be present at the top of the privacy policy. If changes are made, we will post them to this page and encourage you to review the policy to stay informed. If we make changes that materially alter your privacy right, Lorenz Technology will give you notice e.g. on our webpage and/or by email.