Privacy Policy
Background
This policy outlines how Momentum handles personal data to ensure compliance with GDPR and the Danish Data Protection Act. Our commitment is to process all personal data securely and confidentially, ensuring the integrity, confidentiality, and security of personal data.
Momentum: Momentum is defined as Momentum Energy Group A/S and its Danish subsidiaries.
Applicability
This policy applies to anyone who has agreements with Momentum, is a customer, seeks employment, is an employee, a former employee, a supplier, a stakeholder in business or project development or in any other way submits personal data to Momentum.
Responsibility
Momentum is responsible for handling your personal data as outlined in this Privacy Policy. As the data controller, we ensure that your information is managed in compliance with relevant data protection laws. If you have any questions about how we process your personal data, please feel free to reach out to us.
Momentum Energy Group A/S
Roskilde Office (HQ)
VAT no. / CVR-no. DK28888430
Københavnsvej 81
DK-4000 Roskilde
Denmark
+45 46 33 70 10
compliance@momentumgreenenergy.com
Momentum does not process personal data to the extent that a Data Protection Officer (DPO) is needed and as such no DPO is appointed.
Data subject
Momentum will process personal data about you if you are
– An applicant for a position
– An employee or former employee
– A customer
– A supplier
– A Stakeholder in Business and product development
Personal data collection
We collect personal data either directly from individuals or through their interactions with our services. This data may include general personal information, confidential details, and special categories of personal data. For a comprehensive overview of the types of personal data collected based on your interactions with Momentum, please refer to this Privacy Policy Overview . The link also provides information on the purposes for which the data is used, the legal basis for processing, retention periods, deletion policies, and categories of recipients.
Data principles
Momentum as data controller adheres to the following principles in connection with the processing of personal data:
– Lawfulness, Fairness, and Transparency: Process data lawfully, fairly, and transparently. Ensure individuals know how their data is used.
– Purpose Limitation: Collect data only for specific, legitimate purposes. Do not use data beyond those purposes unless allowed for research or public interest.
– Data Minimization: Limit data collection to what is necessary.
– Accuracy: Keep data accurate and up-to-date. Correct or delete inaccurate data promptly.
– Storage Limitation: Store data only as long as necessary. Set time limits for data deletion or review.
– Integrity and Confidentiality: Protect data with appropriate security measures to prevent unauthorized access or loss.
– Accountability: Be responsible for and demonstrate compliance with all data protection principles.
Data subject rights
According to the General Data Protection Regulation (GDPR), you have several rights regarding our processing of your information. If you wish to exercise your rights, please contact us using the information provided in the top section.
Your rights include the following:
– Access: You can contact us anytime to find out what personal data we have about you and its source.
– Rectification: If you notice that your personal data is erroneous or incomplete, you may request that we correct it.
– Erasure: You may ask us to delete your personal data (except in certain cases, e.g. for documentation of a transaction or to comply with legal requirements).
– Restriction: You can request to limit the processing of your data while its accuracy is verified.
– Objection: You can object to our use of your personal data, including for direct marketing like newsletters.
– Data Portability: You have the right to have your data transferred to another service provider.
– Withdraw Consent: You can withdraw consent at any time if your data is processed based on your consent. Withdrawal does not affect the legality of data processing based on prior consent.
You are not required to pay any charge for exercising your rights. If you make a request, we will respond to you within one month.
Security measures
We implement technical and organizational measures such as encryption, access controls, firewalls, back-up, secure servers, risk assessments, training for employees and data protection policies and procedures to protect personal data.
Data retention
Personal data is retained as long as necessary for the purposes outlined and in compliance with legal requirements. Retention periods vary depending on the type of data and regulatory requirements.
Profiling
We do not use your personal data for profiling.
Data processors
Momentum uses data processors who handle personal data under Momentum’s instructions, and with whom data processing agreements have been established. Data may be shared with service providers (e.g., payment processors and IT services), business partners (for joint marketing), and legal and regulatory authorities (to comply with legal obligations).
International transfers
Momentum’s processing of personal data will predominantly take place within the EU/EEA. If your personal data is transferred outside the EU/EEA it is protected by appropriate safeguards such as SCCs or binding corporate rules.
Risk analysis and DPIA
We conduct regular risk assessments. The obligation to conduct an impact assessment arises only in exceptional cases of high risk to individual rights and freedoms, which we rarely encounter. Therefore, the rules on impact assessments will generally have limited applicability to our processing of your personal data. If an assessment is conducted, its results will be taken into account in implementing appropriate measures.
Complaint
You have the right to file a complaint with the Danish Data Protection Agency (“Datatilsynet”) if you are dissatisfied with the way we handle your personal data. You can find the contact details for the Danish Data Protection Agency at www.datatilsynet.dk
Updated: December 1, 2024