We take data protection seriouslyWe process personal data, and have therefore adopted this privacy protection policy, which tells you how we process your data.
To ensure the best possible protection of your personal data, we regularly assess the risk that our data processing might affect your ability to have control over your data.
Liva Healthcare ensures that data is processed in accordance with all applicable legislation.
Contact person: Liva Healthcare
Address: Danneskiold-Samsøes Allé 41, 1434 Copenhagen K, Denmark
CVR no.: 30539893
Telephone: +45 7020 8822
We ensure fair and transparent data processingWhen we ask you to share your personal data with us, we inform you what data we process and for what purpose. You will receive information about this at the time your personal data is collected.
If we collect data about you from another party, such as a supplier, government authority or business partner, we notify you within 10 days of obtaining your personal data. We also inform you of the reason for collecting the data, and the legal basis that allows us to obtain your personal data.
Handling of personal data
We use this type of data about you
We use data about you to improve our service and ensure the quality of our products and services, and in our contact with you. The data we use
- Contact information
- Civil registration (CPR) number
- Sensitive data
- Data on interests and habits
In some cases, we need to compare your data with data we receive from other parties. If the comparison could reveal your identity or information of a personal or sensitive nature, we ask your consent for this processing. Before comparing data, we assess whether there is a risk that this will have a negative effect on your privacy protection. If this is the case, we inform you of the processing and its purpose, and ask for your consent before continuing.
We collect and store your personal data for specific purposes
We collect and store your data for specific purposes and other legitimate business purposes. This happens when we need to:
- Fulfil your request to use Liva
- Improve our products and services
- Manage your relationship with us
We may need to use your personal data for purposes other than the purpose for which it was collected i.e. for research. In other cases we check whether the original purpose for collecting your data is compatible with the new purpose.
If your data in Liva is used for for research purposes, they are used on an aggregated and pseudonominised(cleaned for personal data) level. The researchers therefore can not identify you based on the data supplied from Liva.
We only process relevant personal data
We only process data about you that is relevant and adequate for the purposes defined above. The purpose determines which type of data about you is relevant
to us. The same applies to the scope of the personal data we use.
Before processing your personal data, we look at whether it is possible to minimise the amount of data stored about you. We also consider whether some of the types of data we use can be used in an anonymised or pseudonymised form. We can do this if it does not adversely affect our obligations or the services we offer you
We only process necessary personal data
We only collect, process and store the personal data that is needed to fulfil our defined purposes. Legislation may also determine which types of data must
be collected and stored for our business operations. The type and scope of the personal data we process may also be needed to fulfil a contract or other legal
obligation. We aim to ensure that we only process personal data that is necessary for each of our defined purposes. It is therefore embedded in our IT systems that
we only collect the required types of data.
Correct and up-to-date information
We check that the personal data we process about you is correct and not misleading. Since our service is dependent on your data being correct and up-to-date, we ask you to inform us of any relevant changes to your data. You can use the contact information above to notify us of any changes. To ensure the quality of your data, we have internal rules and set procedures for checking and updating your personal data.
We delete your personal data when it is no longer required
We delete your personal data when it is no longer required for the purpose for which it was collected, processed and stored or when a legal record keeping duty has expired.
We obtain your consent before processing your personal data
We obtain your consent before processing your personal data for the purposes outlined above, unless we have a legal basis for collecting such data. We inform you if such a basis exists, and of our legitimate interest in processing your personal data. Your consent is voluntary, and you may withdraw it at any time by contacting us. If we need to use your personal data for any purpose other than the one originally stated, we inform you of the new purpose and ask for your consent before starting to process your data. If we have another legal basis for the new form of processing, we inform you of this. Use the contact details above if you want further information.
We do not disclose your personal data without your consent
Before disclosing your personal data to business partners or other parties, for example for use in research, we will obtain your consent and inform you what your data will be used for. You may object to this kind of disclosure at any time. If you are using Liva through a Danish municipality, we will not in all cases obtain content relating to using your data for research, it will depend on the statutory authority that is relevant. We do not ask for your consent if we are legally obliged to disclose your personal data, for example in connection with reporting to an authority. We do not disclose your personal data to other countries without obtaining your consent.
We protect your personal data and have internal information security rules
We have internal information security rules containing instructions and measures to protect your personal data from being destroyed, lost or changed, from unauthorised disclosure, and from unauthorised access. We have set procedures for granting access rights to our employees who process sensitive personal data and data that identifies personal interests and habits. We monitor their access through logging and supervision. We regularly back up our data sets, to avoid loss of data. We also protect the confidentiality and authenticity of your data using encryption at rest and in transit. We will notify you of any security breaches that result in a high risk to you as soon as possible.
Cookies, purpose and relevance
You have the right to access your personal data
You are entitled at any time to know which data we are processing about you, where the data comes from and what we are using the data for. You can also be informed how long we store your personal data, and who receives data about you if we disclose any data in Denmark or abroad. You can be informed about the data we process about you upon request. However, this right of access may be limited in consideration of other people’s privacy, trade secrets and intellectual property rights.
You are entitled to have inaccurate personal data corrected or deleted
If you believe that the personal data we are storing about you is inaccurate, you are entitled to have it corrected. Contact us to let us know what is inaccurate and how it can be changed. In some cases, we are obligated to delete your personal data. For example, if you withdraw your consent. If you believe your data is no longer required for the purpose for which we collected it, you can request that it be deleted. You can also contact us if you think your personal data is being processed in a way that violates the law or other legal obligations. When you contact us to request that your personal data be corrected or deleted, we investigate whether the conditions are met, and change or delete the data as quickly as possible if so.
You have the right to object to our processing of your personal data.
You have the right to object to our processing of your personal data. If your objection is justified, we make sure that we stop processing your personal data.
You have the right to have your personal data transferred to another service provider
You are entitled to receive the personal data you have made available to us, and the data we have collected about you from other parties with your consent. If we process data about you as part of a contract to which you are a party, you can also receive your data. You also have the right to transfer your personal data to another service provider. If you want to exercise your right to data portability, you will receive your personal data from us in a commonly used format.
If you experience incorrect or unlawful data processing with Liva Healthcare, you may contact us using the contact details above.
In Denmark you always have the right to submit a complaint til Datatilsynet. You can send your complaint by letter or via their webpage. Read about the complaints options here.
In the U.K. you always have the right to submit a complaint to the UK Information Commissioners Office (ICO) if you are not satisfied with our data processing or with the result of your complaint to us. You may contact ICO though their webpage.
We respond to your enquiries as soon as possible
We will strive to accommodate any request from you to exercise your right to access your data, to correct or delete data, to object to our processing, or to transfer data to another provider. We respond to your enquiries as soon as possible Use our contact details above if you wish to exercise your rights.