Private Policy – GreenOil Standard A/S

1. Data Controller

We are responsible for the processing of personal data about our customers and business partners.

GreenOil Standard A/S
Erhvervsparken 10
8400 Ebeltoft
Denmark
CVR no.: 26997976
Email: info@greenoil.dk

It is not a requirement for us to appoint an external Data Protection Officer (DPO). However, if you have questions regarding the processing of your personal data, you are welcome to contact us.

Recognized worldwide as a trusted partner and reliable manufacturer, we take immense pride in our reputation. We are relentless in our pursuit of excellence, constantly improving our products and services to uphold our strong brand identity and ensure our solutions withstand the test of time—even in the harshest conditions.

Performance to Rely On — this is our promise, the core of everything we do. It drives every process, every decision, and every innovation. With GreenOil, you’re guaranteed the highest standard of oil filtration that keeps your operations running smoothly and efficiently.

2. Processing Activities

2.1 Website Visits

When you visit our website, we use cookies to ensure the site functions properly. You can read more about this in our cookie policy.

2.2 Communication with Potential Customers

If you contact us via our contact form, email, or telephone, we process your personal data in order to respond to your inquiry and provide information about our services.

  • Personal data processed: name, email, phone number
  • Legal basis: GDPR Article 6(1)(f)
  • Retention: We delete the communication once it is clear whether you wish to use our services. In special cases, data may be stored longer.

2.3 Customers

To ensure proper delivery of our services, we process customer data such as:

  • Name, address
  • Services and agreements
  • Payment details
  • Legal basis: GDPR Article 6(1)(b)
  • Retention: Data is deleted once services are delivered and any outstanding matters are resolved.

2.4 Newsletter

You may voluntarily subscribe to our newsletter and unsubscribe at any time.

  • Purpose: To send updates and information about our services and activities
  • Legal basis: GDPR Article 6(1)(a) (consent)
  • Retention: Data is stored as long as you remain subscribed. If no newsletters are sent within 1 year, consent lapses. Unsubscribed consents are retained for 2 years in accordance with the Danish Consumer Ombudsman’s spam guidelines.

2.5 Bookkeeping

We are legally required to store accounting records such as invoices. These may include personal data (name, address, service description).

  • Legal basis: GDPR Article 6(1)(c)
  • Retention: At least 5 years after the end of the financial year.

2.6 Job Applications

We welcome applications for open positions or unsolicited applications.

  • Legal basis: GDPR Article 6(1)(f)
  • Retention:
    • Unsolicited applications are deleted immediately if no match is found.
    • Applications for advertised positions are deleted once the right candidate is hired.
    • If you are hired, you will receive separate information about the processing of your data.

3. Data Processors

We use trusted partners and suppliers (data processors) to provide services such as IT hosting, marketing, consultancy, and system management.

  • We ensure all partners comply with GDPR and protect your data.
  • Data processing agreements are signed with all relevant providers.

4. Disclosure of Personal Data

We do not share your personal data with third parties.

5. Profiling and Automated Decisions

We do not use profiling or automated decision-making.

6. Transfers to Third Countries

As a general rule, we use data processors within the EU/EEA.
If data is transferred outside the EU/EEA, this will only occur where adequate safeguards are in place.

7. Security of Processing

We have implemented appropriate technical and organizational measures to ensure the security of your personal data.

  • Regular risk assessments
  • GDPR training and awareness sessions for employees
  • Ongoing review of GDPR procedures

8. Your Rights

Under GDPR, you have the following rights:

  • Right of access: To see the data we process about you.
  • Right to rectification: To have incorrect data corrected.
  • Right to erasure: To request deletion of data in special cases.
  • Right to restriction: To restrict processing in certain circumstances.
  • Right to object: To object to processing, including for direct marketing.
  • Right to data portability: To receive your data in a structured, machine-readable format and transfer it to another controller.

You can read more about your rights in the Danish Data Protection Agency’s guidance at www.datatilsynet.dk.

9. Withdrawal of Consent

Where processing is based on your consent, you may withdraw your consent at any time.

10. Complaints

If you are dissatisfied with our processing of your personal data, you have the right to file a complaint with the Danish Data Protection Agency (Datatilsynet). Contact details are available at www.datatilsynet.dk.