2. Collecting personal data with cookies

By visiting and using our website(s), cookies are collected and used on the basis of consent. Information in these cookies include search terms on our website(s), IP address, location at login, browser type. See more at: veo.co/cookies (hereinafter "Cookiedata").

2.2 Cookiedata is used for improvement of the website(s) and the user experience, to perform targeted marketing, to deliver our products, services or goods, customer support.

2.3 If you wish to limit or decline the cookies placed on your computer when visiting our website you can do so at any time by changing your browser settings. However, you should be aware that if you decline or reject cookies it will impact the functionality of the website which means that there are features on the website that you will not be able to see. Any browser allows that you delete cookies collectively or individually. How this is done depends on the used browser. Remember to delete the cookies in all browsers, if you use several different browsers.

2.4 You can set your browser not to save any cookies of this Website on your hard disk, or have your browser delete the cookies already saved on your device respectively. However you should bear in mind that by doing so you may no longer be able to use all the provided functions of the Website in full. The procedure to change the browser settings vary from browser to browser, information regarding adaptations and definition of your browser settings can be found in the "Help" menu of each browser

3. Types of personal data processed

3.1 We process personal data about you when this is necessary and in accordance with the applicable legislation. Depending on the specific circumstances, the processed personal data include the following types of personal data: name, address, telephone number, email, purchasing history, invoicing and bookkeeping data and documentation, IP addresses, username, password, account status (customer points, payments etc.), age Information relating to applications when you apply for a job at VEO, e.g. information contained in CV’s, educational papers and information, information stated in application and other relevant information you may choose to disclose to us in the application process.

3.2 If we need to collect more personal data than what is specified above, we will inform about this. Such information may be provided by our updating of this Policy.

4. Purposes for processing the personal data

4.1 We only process personal data for legitimate purposes in accordance with the GDPR. Depending on the circumstances, the personal data is processed for the following purposes:

a) To deliver products or services to a user, customer or member.
b) To answer enquiries or complaints from users, customers or members.
c) To store personal data to comply with applicable legislation requirements such as bookkeeping acts.
d) To send direct marketing to users, customers or members.
e) To send newsletters on e-mail.
f) To communicate and exchange data with public authorities when required by law.
g) To facilitate a sales process.
h) To improve our products, services or website.
i) To provide service messages and information to users, customers or members.
j) To give support and service messages, including answering questions and complaints and send updates about our products and services.

5. Legal basis for processing personal data

5.1 We only process your personal data when we have a legal basis to do so in accordance with the GDPR. Depending on the specific circumstances, the processing of personal data is done on the following legal basis:

a) If we have asked for a consent for the processing of specific personal data, the legal basis for such personal data is a consent, cf. article 6(1)(a) of the GDPR, as the consent can always be withdrawn by contacting us via the contact details provided at the end of this Policy, and, if the consent is withdrawn, the personal data processed on the basis of consent is deleted, unless it can or must be processed, for example, in order to comply with legal obligations.
b) The processing is necessary for the performance of a contract to which the data subject is party, cf. the GDPR, article 6(1)(b), the first indent.
c) The processing is necessary for compliance with applicable legislation, cf. the GDPR, article 6(1)(c).
d) The processing is necessary for the purposes of the legitimate interests where such interests are not overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, cf. the GDPR, article 6(1)(f).
e) The processing is necessary in order to take steps at the request of the data subject prior to entering into a contract, cf. the GDPR, article 6(1)(b), last indent.

5.2 If we send you direct marketing, including by email, we will ask for your prior consent in accordance with the applicable rules such as marketing acts.

6. Disclosure and transfer of personal data

6.1 We only pass on personal data to others when the law allows it or requires it. Our company is part of a concern/company group where personal data is shared between the group companies depending on the circumstances.

6.2 We transfer personal data to the following recipients to/from the EU/EEA and the US:

a) Data processors
b) Authorities
c) Suppliers

6.3 From time to time we use external companies as suppliers to assist us in delivering our services. The external suppliers will not receive or process personal data unless the applicable law allows for such transfer and processing. Where the external parties are data processors, the processing is always performed on the basis of a data processor agreement in accordance with the requirements hereto under GDPR. Where the external parties are data controllers, the processing of personal data will be performed based on said external parties’ own data privacy policy and legal basis which the external parties are obligated to inform about unless the applicable legislation allows otherwise.

6.4 We transfer personal data to countries or international organisations outside the EU/ EEA. When we make such transfers, these are primarily based on the standard contractual clauses of the European Commission.

6.5 If you have any questions about our use of data processors, cooperation with other data controllers, including subsidiary companies, or transferring of data to third countries, please contact us for more information or documentation of our legal basis for said transfers.

7. Erasure and retention of personal data

7.1 We ensure that the personal data is deleted when it is no longer relevant for the processing purposes as described above. We also retain personal data to the extent that it is an obligation from applicable law, as is the case with for example accounting and bookkeeping materials and records. If you have any questions about our retention of personal data, please contact the email mentioned below.

8. Data subject rights

8.1 Data subjects have a number of rights that we can assist with. If a data subject wants to make use of his or her rights, he or she can contact us. The rights include the following:

8.1.1 The right of access: Data subjects have a right to ask for copies of the information that we process about them, including relevant additional information.

8.1.2 The right to rectification: Data subjects have a right to ask for rectification of inaccurate personal data concerning him or her.

8.1.3 The right to erasure: In certain circumstances data subjects have a right to obtain the erasure of personal data concerning him or her before the time when erasure would normally occur.

8.1.4 The right to restrict processing: Data subjects have, in certain situations, a right to have the processing of his or her personal data restricted. If a data subject has the right to have the processing of his or her personal data restricted, such personal data shall, with the exception of storage, only be processed with the data subject’s consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest in the European Union or of a European member state.

8.1.5 The right to object: Data subjects have, in certain situations, a right to object to the legal processing of his or her personal data. Objection can also be to the processing of personal data for the purpose of direct marketing.

8.1.6 The right to data portability: Data subjects have, in certain situations, a right to receive his or her personal data in a structured, commonly used and machine-readable format and have the right to transmit those data to another data controller without hindrance from the data controller to which the personal data has been provided.

8.2 More information about data subject rights can be found in the guidelines of the national data protection authorities. If a data subject wishes to make use of his or her rights as described above, the data subject is asked to use the contact details provided at the end of this Policy. We strive to do everything to meet wishes regarding our processing of personal data and the rights of data subjects. If you or others despite our endeavors wish to file a complaint, this can be done by contacting the national data protection authorities.

9. Children Under 13

9.1 The Platform where this Policy is located are meant for adults. We do not knowingly collect personally identifiable data from persons under the age of 13 on this Platform, and strive to comply with the provisions of COPPA (The Children’s Online Privacy Protection Act) and similar legislation. If you are a parent or legal guardian and think your child under 13 has provided us with information, please contact us at support.veo.co. You can also write to us at the address listed at the end of this Policy.

10. Use of social Network plugins

10.1 The Website uses social plug-ins ("plug-ins") of facebook.com, operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"), of twitter.com, operated by Twitter Inc., 795 Folsom Street, Suite 600, San Francisco, CA 94107 USA ("Twitter") and plus.google.com, operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, California 94043, USA ("Google+"; Facebook, Twitter and Google+ hereinafter referred to as "Social Networks"). The plug-ins are labelled with an icon of the corresponding Social Network.

10.2 When you visit a website containing plug-ins, your browser establishes a direct connection to the servers of the corresponding Social Network. The content of the plug-ins is directly transmitted from the Social Network to your browser and linked to the Website.

10.3 If you are logged in on the corresponding Social Network, it can assign the access of the Website to your account of the corresponding Social Network. When you interact with the plug-ins, for instance with Facebook's "Like" button, or add a comment, the corresponding information is transmitted from your browser directly to the corresponding Social Network.

10.4 Please refer to the data privacy statements of Facebook, Twitter or Google+ regarding purpose and extent of data collection, processing and usage by the corresponding Social Networks, as well as your rights in this respect and setting options for protecting your privacy.

11. Third-Party Links

11.1 Our Website may contain links to other third-party sites that are not governed by this Policy. If you click on a link to a third-party site, you will be taken to a site we do not control. We are not responsible for the privacy practices used by third-party sites. We suggest that you read the privacy policies of those sites carefully. We are not responsible for these third-party sites.

12. Our security

12.1 We have put in place reasonable security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality. However, the Internet is not 100% secure. We cannot promise that your use of our Website will be completely safe. We encourage you to use caution when using the Internet. A user id and a password are needed to access certain areas of the Website. It is your responsibility to protect your username and password.

13. Changes to this Policy

13.1 We reserve the right to update and amend this Policy. If we do, we correct the date and the version at the bottom of this Policy. In case of significant changes, we will provide notification in the form of a visible notice, for example on our website or by direct message.

14. Contact

14.1 If you have questions or comments to this Policy or if you would like to invoke one or more data subject rights, please contact us at gdpr@veo.co.

14.2 UK GDPR Representative

Veo Technologies ApS, which processes the personal data of individuals in the United Kingdom, in either the role of ‘data controller’ or ‘data processor’, has appointed DataRep as its Data Protection Representative for the purposes of UK GDPR, as part of The Data Protection Act 2018 (as amended) (hereafter the “UK GDPR”) in the UK.

If Veo Technologies ApS has processed or is processing your personal data, you may be entitled to exercise your rights under UK GDPR in respect of that personal data. Certificate reference: VEO01-1-21

Contact information related to GDPR in the UK

If you want to raise a question to Veo Technologies ApS, or otherwise exercise your rights in respect of your personal data, you may do so by: Sending an email to DataRep at datarequest@datarep.uk quoting "Veo Technologies ApS" in the subject line, or contacting us on our online webform at www.datarep.uk/data-request.