SameSystem Privacy Policy

SameSystem (or “we”) understands and respects the importance of privacy rights and data protection of our customers. We have thus amended our Privacy Policy to adhere to new privacy and data protection laws, including the European Union’s General Data Protection Regulation (GDPR), also known as Regulation (EU) 2016/679, while remaining compliant with other legal regulations.

1. Introduction

SameSystem’s Privacy Policy delineates our guidelines for the collection, usage, storage, and disclosure of personal data, which we define below. This policy clarifies how we handle your data in each of the following circumstances:

1. When you visit SameSystem’s website (www.samesystem.com) while browsing the internet (during and after which you are known as a “Website User”), although you may not have necessarily procured or plan to procure an account of any kind with SameSystem. SameSystem collects a limited amount of data (which means we are a “data controller,” according to data protection laws) from Website Users primarily to improve our users’ experiences with the site.

2. You call or email SameSystem’s customer service or sales team (during and after which you are known as a “Contact User”). SameSystem may store your call or email for our own purposes, which means we are a “data controller,” according to data protection laws. When we do so, it is primarily to improve our users’ experiences with our customer service team.

SameSystem reserves the right to update or amend this policy in the future.

 

2. Types of Personal Data

Website Users

In order to help us improve users’ experiences with our website, we collect a limited amount of your personal data. Such data may include some or all of the following:

  • Log data, including your Devices’ Internet Protocol (IP) addresses; type of browser; the website you visited before entering SameSystem’s site; information you search for within SameSystem’s site; identification data associated with your Devices; mobile carrier information; dates and timestamps associated with transactions; system configurations; and other data related with your perusal of SameSystem’s website.
Contact Users

In order to improve users’ experiences with our customer service, we collect a limited amount of your personal data when you place a call or send an email to our service and sales teams. We will notify you if the call is being recorded. Some of the data we will collect include:

  • Name
  • Contact information (phone number(s), email addresses, physical addresses, etc.)

 

3. Manner of Collection

Website Users

We collect a limited amount of data automatically when users visit our website. We collect some of these data via cookies, according to the cookie settings you have set in your browser. To find out more about cookies, please see section 11.

Contact Users

We collect a limited amount of data when users place a call to us or email us by storing information.

 

4. What Does SameSystem Do with Your Personal Data?

Website Users

Our primary purpose in collecting and making use of your data is to improve users’ experiences with SameSystem’s website. When we do so, we act as a “data controller,” according to data protection laws. This data is, however, collected in an aggregate and can’t be personalized.

Contact Users

Our primary purpose in collecting and making use of your data is to improve users’ experiences with SameSystem’s customer service. When we do so, we act as a “data controller,” according to data protection laws.

 

5. How Long Does SameSystem Keep Your Data?

SameSystem will only retain your data for the amount of time stipulated in the terms of your company or organization’s user agreement. The only exceptions to this rule involve regulations and legal circumstances that require us to keep your data (e.g., tax laws).

When we are no longer permitted to retain your data according to the stipulations in the terms of your company or organization’s user agreement, or when it is no longer legally necessary for us to keep your data, we will anonymise your personal data from our systems. When we delete your data, we attempt to do so on a permanent basis, but some information may remain in our systems for the purpose of providing the service or for legal reasons. We do not have access to that information, nor can we make use of it.

Contact Users

Stored emails are retained up to five years.

 

6. Data Sharing & Disclosure

In accordance with relevant privacy and data protection regulations, we (as “data processors”) may share your data in the following manners:

  • Your use: SameSystem displays your personal data on your user profile page, and this information may be viewable by other users in your company or organization, depending on their access level. Furthermore, if you use any of the public or group features, such as the newsfeed, be aware that any data you share may be collected, stored, or used by other SameSystem Application users who have access to them. Your posts may remain visible even after you close your account.
  • Service providers, business partners, and third parties: SameSystem may employ trusted third party companies, individuals, and third party service providers (including consultants and telecommunication service providers) that require access to your personal data in order to provide their services to SameSystem. Such companies, individuals, and providers will not be permitted to use your information for any other purposes.
  • Third-Party Applications: We may share data through third-party applications that your company elect to use. We maintain no responsibility for what third-party applications do with your personal data. In order to ensure that your data is in good hands, please read relevant privacy policies and proceed only if you agree with their terms of service.
  • Compliance with Laws and Law Enforcement Requests: We may disclose your personal information to parties outside of SameSystem, including files stored in SameSystem’s Application when we believe in good faith that such a disclosure is reasonably necessary to comply with a law, regulation, or mandatory legal request, or to protect SameSystem’s intellectual property rights.
  • Business Transfers: If SameSystem is involved in a merger, acquisition, or we sell part or all of our assets, we may transfer your personal data as part of that transaction. Before doing so, we will notify your company or organization and you via email or website banner of any change in the control or use of your data, or if your data will be subject to a new or revised Privacy Policy.
  • Non-Private or Non-Personal Data: We may disclose your non-private, non-personal data (e.g., usage statistics of the SameSystem Application).

 

7. Keeping Your Data Safe

SameSystem will take reasonable, pertinent steps to protect any personal data that we collect and store from unauthorized access, misuse, loss, and destruction. We do so by implementing a number of measures.

 

8. Your Rights with Regard to Your Personal Data

You have a number of rights related to the personal data of yours that we collect and store. To learn more about these rights, please contact us directly or your company or organization.

If you are an Application User and would like to make a request relating to our use of your personal data in the context of the Service we provide to your company or organization and for which we are a data processor, please contact your company or organization initially. If you contact us initially, we will refer you to your company or organization.

If you are an Application User and would like to make a request relating to our use of your personal data in a context outside of the Service we provide to your company or organization, or if you are a Former Application User or Website User, please contact us directly with your request.

Data protection laws outline the following rights for individuals in relation to their personal data:

  • Right to object: You have the right to object to our processing your personal data.
  • Right to withdraw consent: In instances in which you have consented to our processing your personal data, you may withdraw your consent at any time. We will then cease to undertake any activity or practice that you previously consented to, unless we have a legal basis or justification for the continued processing of your personal data. In that event, we will inform you of those circumstances.
  • Data Subject Access Request (DSAR): You have the right to ask us to confirm the personal data we hold about you and to request that we amend, delete, or update that information. You have the right to request a copy of the information we hold about you.
  • Right to erasure: You have the right to request that we delete (or “anonymise”) your personal data under certain circumstances. Although we may endeavor to delete your data permanently, there is a chance that some of it may continue to exist within our systems. In this event, we consider the data put beyond use, which means that your data may exist in our systems, but SameSystem employees will no longer be able to access or use it. However, SameSystem may retain and use your personal data if there is a legal basis for us to do so (i.e., if any laws or agreements require us to preserve your data). If you are an Application User who is part of a company or organization, we will not delete or amend your personal data without the consent of your company or organization.
  • Right to restrict processing: You have the right to ask us to restrict our processing of your personal data under certain circumstances (e.g., if you find the information we hold to be inaccurate). In the event that we have shared your personal data with third parties, we will notify them of your request for restrictions on processing, unless it is impossible to do so or it requires unreasonably great effort. We will notify you before lifting restrictions in place on processing your data.
  • Right to rectification: You have the right to ask us to rectify inaccurate or incomplete personal data that we hold about you. In the event that we have shared your personal data with third parties, we will notify them of your request for rectification, unless it is impossible to do so or it requires unreasonably great effort. You may request information related to these third parties. In the event that we do not comply with your request, we will offer our reasons for not doing so.
  • Right of data portability: You have the right to request that we transfer your personal data to another third party, although this right only applies to certain types of personal data. We may transfer the data for you, or, if you prefer, we will provide you with your personal data so that you can transfer it yourself.
  • Right to lodge complaints with a supervisory authority: You have the right to submit a complaint to the relevant supervisory authorities in your jurisdiction.

 

9. International Data Storage, Transfer, and Processing

In order for SameSystem to provide users with the Service, we or our third-party providers may process your personal data outside of the European Economic Area (EEA), the United States, and other territories. We aim to make sure that any international transfer of your data is conducted in a secure fashion. If you are based in the EU, SameSystem will not process or transfer data outside of the EEA.

 

10. Cookies

SameSystem uses “cookies,” or small data files stored on your computer and which we have access to. We do so to gather information and improve our services. Furthermore, SameSystem may use “persistent cookies” to allow users to save their user IDs and passwords for ease of future logins. SameSystem may use “session ID cookies” to enable features of the Service, gain an understanding of how users interact with the Service, and to monitor usage and web traffic on the Service. You may program your browser to stop accepting cookies or to prompt you to opt in to cookies from websites you frequent. When you do not accept cookies, you may limit the usability of the Service.

We may track usage patterns on our website via internal and external analytic platforms (“online tracking”). We do so in order to improve the design and functionality of our Service and site. 

What are cookies?

Cookies are small text files that can be used by websites to make a user’s experience more efficient. The law states that we can store cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies we need your permission. This site uses different types of cookies. Some cookies are placed by third party services that appear on our pages.

Consent

By clicking on "Accept" in the cookie banner or using the Website, you consent to SameSystem using cookies as described in the form below, unless you have opted out of cookies. 

Type of cookies used on SameSystem website and what do we use them for:

Type

Name

Expiry

Purpose

necessary

cookielawinfo-checkbox-necessary

1 year

This cookie is set by GDPR Cookie Consent. It stores the visitor's cookie consent for "Necessary" category.

necessary

cookielawinfo-checkbox-non-necessary

1 year

The cookie is set to determine whether the user has accepted the cookie consent box or not.

necessary

_icl_visitor_lang_js

1 day

WPML language plugin stores the visitor's preferred language to view the right content.

necessary

wpml_browser_redirect_test

session

WPML tests if cookies are enabled.

necessary

viewed_cookie_policy

1 hour

The viewed_cookie_policy cookie is set to “yes” when the Cookie law info bar has been viewed and accepted.

non-necessary

_ga

2 years

This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookie stores information anonymously and assign a randomly generated number to identify unique visitors.

non-necessary

_gid

1 day

The cookie is installed by Google Analytics. It is used to store information on how visitors use the website. The data collected anonymously - the number of visitors, source and page visits.

non-necessary

_gat_gtag_UA_7456110_3

1 minute

Google uses this cookie to distinguish users.

non-necessary

lang

session

This cookie is used to store the language preferences.

non-necessary

lidc

1 day

This cookie is set by LinkedIn and used for routing.

non-necessary

_gat

1 day

Used by Google Analytics to speed up the number of responses to the server.

non-necessary

vuid

2 years

The cookie is used by Vimeo and records what pages have been viewed.

non-necessary

bscookie

2 years

The cookie is used by LinkedIn to track the use of embedded services.

non-necessary

bcookie

2 years

Microsoft MSN 1st party cookie is used for sharing the content of the website via social media.

non-necessary

ads/ga-audiences

session

Used by Google AdWords to replicate ads for visitors who are likely to convert to customers based on the visitor's online behavior across sites.

non-necessary

lissc

1 year

The cookie is used by LinkedIn to track the use of embedded services.

non-necessary

UserMatchHistory

29 days

Collects data about the visitor's preferences on several websites - used to optimize the website's ad relevance in relation to the specific visitor.

non-necessary

li_sugr

3 months

Used by LinkedIn. The cookie stores browser details.

non-necessary

u

2 months

Pending.

11. Legal Bases for Processing Your Personal Data

Where we process your personal data on behalf of your company or organization, your company or organization is responsible for ensuring the legality of the data processing.

Where we process your personal data as a data controller (outside of your company or organization), it is our duty to ensure that we have a legal basis or justification for doing so. There are several possible legal bases for SameSystem to process your personal data, including the following:

  • In the event that processing your personal data is required for SameSystem to carry out its obligations under the terms of any contracts between you and us. In other words, we process your personal data when it is required “for the performance of a contract to which [you] are a party.”
  • In the event that processing your personal data falls within our legitimate interests. In other words, we process your personal data when it “is necessary for the purposes of the legitimate interests pursued by [us] or by a third party, except where such interests are overridden by the interests or fundamental rights or freedoms of [you] which require protection of personal data.”
  • We may process your personal data for the purposes of our legitimate interests to enforce the terms of our website and to analyze log data/usage statistics in order to improve the SameSystem Application. You have the right to object to our processing your personal data on this basis (see section 9).
  • In the event that you give us consent to process your personal data.

Where we seek out your consent prior to engaging in personal data processing, you must give us your consent freely, without our pressuring you to do so. You must be asked to give your consent to one processing act at a time and you have to know what you are consenting to, so we must provide you with relevant information. You must take positive, affirmative action in consenting to our processing of your personal data (e.g., by checking a box). We will obtain your consent before sharing your personal data with third party applications or undertaking certain marketing activities.

You have the right to withdraw your consent to personal data processing activities. See section 8, “Your Rights with Regard to Your Personal Data.”

Under certain circumstances, you have the right to object to our processing of your personal data. See section 8, “Your Rights with Regard to Your Personal Data.”

 

12. Further Information

If you have any questions regarding SameSystem’s Privacy Policy or if you would like to exercise your legal rights, please contact legal@samesystem.com. Please put forth your concerns in a clear manner, and a member of our team will contact you.

SameSystem’s usage of Hello Talent
(Recruitment of new employees)

SameSystem A/S (hereinafter “we”, “our”, “us”) is the data controller in relation to the personal information you submit in your application through the recruitment system, Hello Talent. Hello Talent is the data processor in relation to the recruitment system. You can read more about Hello Talent here.

Types of personal information processed about you

When you apply for a vacancy or send us an unsolicited application, we collect personal information about you, such as:

  • Name, address, contact information.
  • We also process your application and resume, as well as any attachments that you have added (for example, references or a video presentation).
  • As part of the recruitment process, we may also seek additional information about you from Google, LinkedIn and other social media.

We kindly ask you to avoid disclosing your identification/social security number (CPR number) or information such as ethnic background, political beliefs, philosophical beliefs, trade union membership, sexual orientation or health condition. These are sensitive personal data, that are not relevant for the recruitment process, and we cannot not process or store this type of data, cf. article 9, GDPR.

Our use of your personal information

When you apply for a vacancy, your personal information is collected solely based on your freely given consent and processed and stored only for the purpose of handling your application and to assess whether you qualify for a current or future position at SameSystem A/S.

You may withdraw your consent at any time. In this case we will cease the recruitment process and delete your information.

Sharing of your personal information

We only share your application with our employees involved in the recruitment process and third parties who assist us in the recruitment process, including Hello Talent, and providers of personality tests.

We do not disclose your information to other parties, unless we are obligated to do so in relation to public or judicial authorities.

Storing of your personal information

We keep the personal information you submit to us until the recruitment process has been completed and for a period thereafter for as long as we consider your application to be relevant to us, but for no longer than six (6) months. In case you have submitted an unsolicited application, we may however keep your information for up to twelve (12) months.

Your rights

According to the General Data Protection Regulation, you are entitled to:

  • Receive a copy of the personal information we process and store about you,
  • Object against the processing of your personal information,
  • Have inaccurate or misleading data rectified or erased.

The above rights can be exercised by contacting the data controller:

SameSystem A/S
Rentemestervej 2a,
2400 København NV, Denmark
Phone.: (+45) 70707027
E-mail: HR@samesystem.com

Complaints to the Data Protection Agency

You are entitled to file a complaint with the Data Protection Agency if you are dissatisfied with the way we process your personal data:

Datatilsynet
Carl Jacobsens Vej 35
2500 Valby, Denmark
Phone: +45 33 19 32 00
E-mail: dt@datatilsynet.dk