Cookies and personal data
Our commitments with regards to protecting your personal data
So that you are able to browse on our website with peace of mind, we, NIBU Copenhagen, as the data controller, will explain to you how we collect, process and use your personal data in order to provide you with new, daily services in keeping with your rights.
We protect your privacy by ensuring the protection, confidentiality, non-alteration, availability and security of your personal data which you have given us over all of our channels of communication.
We are taking all of the necessary measures in order to:
- provide you with clear and transparent information about the way in which your personal data will be collected and processed;
- implement all the technical and organizational measures necessary to protect your personal data against disclosure, loss, alteration or access by an unauthorized third party;
- only store your personal data for the required amount of time for the purposes of processing or specific services;
- give you the option to access and modify your personal data that we process at any time, via your personal area on our websites.
To achieve these objectives, we have implemented appropriate technical and organizational measures in order to ensure that processing is in accordance with the applicable law concerning the protection of personal data.
When do we collect your personal data?
Your personal data can be collected when:
- you add products to your shopping basket;
- you buy our products online;
- you subscribe to our newsletter;
- you request a return;
- you contact customer service via any form of communication at your disposal, such as email, instant messaging, etc;
- you take part in a promotional competition;
- you write a comment or a review about an item;
- you share a review with a friend by email from an item description page;
- you share a review on Facebook, Google +, Twitter, Delicious, Instagram, Snapchat or Pinterest from an item description page;
- you fill out an input form or questionnaire on our website.
What personal data do we collect?
We collect data that you give us within the context of our business relationship, in particular:
- when you create a client or prospect account and you join a loyalty programme;
- while your orders, returns and complaints are being managed;
- when you contact our customer service;
- when you take part in a promotional competition.
Cases where data collection is strictly necessary in order to provide you with a service are marked with an asterisk and generally require your surname, name, address, email address, landline or mobile number and date of birth.
We also collect personal data when you buy our products or when you use our services. In particular, we collect data concerning the amount and the nature of your purchases as well as information about your orders, your payments and your customer or prospect path on our online services.
In accordance with this regulation, we do not collect data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic personal data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation.
These categories of personal data are never collected or processed by NIBU Copenhagen.
How do we use your data?
We process your personal data in a transparent and secure way. Your personal data is collected for the purposes detailed below.
Managing our obligations to our clients
Managing orders, deliveries and returns
As part of fulfilling our obligations to our clients, we collect and process your personal data in order to manage our business relationship, especially with regards to managing purchases and orders, delivering your products, handling your potential returns and offering services and promotional offers which may be of interest to you. This data helps us to improve your experience of buying online, as referred to below.
Managing the customer relationship/Loyalty programme
We use and store your personal data in order to update our customer files and offer you personalized, tailored services. We offer you the opportunity to join our loyalty programme in order to offer you goods and services which match, as far as possible, your consumption habits and interests.
Communicating with you
We collect and store your personal data in order to communicate with you about your orders, your payments or your complaints to customer service.
Improving your customer experience
We analyze your personal data in order to improve your customer experience. Unless you object, this analysis enables us to offer you innovative products, additional or promotional offers or display advertisements which match, as far as possible, your consumption habits and interests.
Legal or regulatory requirements
We may be need to pass on your personal data in the event of legitimate requests by public authorities, particularly to meet requirements regarding national security, the fight against fraud or in accordance with the law.
Fraud prevention and the fright against fraud
The data collected is also used for fraud prevention and the fight against fraud, particularly with bank cards. NIBU Copenhagen reserves the right to check the personal data given by the client when placing an order and to adopt all the measures judged necessary to verify that the person whose account is debited is in fact the person placing the order, in order to avoid any fraudulent payments. Proof of identity or proof of address may be required for this verification.
If there is no positive response from the customer, NIBU Copenhagen reserves the right to cancel the order placed by the customer.
Where is your personal data stored?
The data is stored in accordance with Danish and European regulation.
We may need to share personal data with other companies that is necessary for implementing services which you have acquired or subscribed to (examples: home delivery, collection point). A contract is required for operations with a service provider which receives your data in order to ensure the protection of your data and the respect of your rights.
If our service provider acts outside of the European Union, we protect the confidentiality of your personal data and your rights by using the data protection clauses recommended by the European Commission.
The period for which the data is stored follows the Danish Data Protection Authority’s (Datatilsynet) recommendations and/or complies with the legal obligations:
Categories of personal data
Rules of active storage
Data about your client account and your loyalty programme; Behavioural segmentation data
5 years starting from the end of the relationship with the customer. The period begins either from the last order; the last log in to the customer account; the last call to customer service; an email to customer service; clicking on the hyperlink of an email sent by NIBU Copenhagen; the placement of products into the shopping basket without proceeding to purchase; or finally, a positive response to an email asking if the customer would like to continue receiving commercial marketing after the 5-year period. At the end of this period, the customer data will be anonymized.
Proof of identity provided in the context of exercising the right to query, to access, to rectification or to object
1 year starting from the date of receipt by NIBU Copenhagen
Bank information (bank details/IBAN)
10 years starting from the end of the business relationship with the customer.
24 months for Google Analytics and Facebook cookies and 13 months for all other cookies starting from when they are stored on the user’s device.
5 years starting from the end of the relationship with the customer.
5 years from the end of relationship with the prospect. The period begins either from the last log in to the prospect account; the last call to customer service; clicking on the hyperlink of an email sent by NIBU Copenhagen; the placement of products into the shopping basket without proceeding to purchase; or finally, a positive response to an email asking if the prospect would like to continue receiving commercial marketing after the 5-year period. At the end of this period, the customer or prospects’ data will be anonymized.
At the end of these periods, we can then archive the data, notably to meet the limitation periods of legal and tax rules and those of legal proceedings.
Upon visiting our website, we may need to store cookies, if you accept, on your computer, through your web browser. During the period of validity or storage, cookies enable us to identify your computer during your next visits. NIBU Copenhagen’s partners and service providers, or third-party companies, may also need to store cookies on your computer. Some cookies are essential for navigating our website, in particular for the successful running of the ordering process therefore, deleting them can cause problems. Only the transmitter of a cookie may read or modify data contained in the cookie.
How do you set your preferences, according to the browser you use?
Every browser has a different configuration. It is generally described in the help menu of your web browser. Therefore, we recommend that you read it so that you know how to modify your cookie preferences.
How can you exercise your rights?
You have the following rights, which allow you to control how we use your personal data:
- the right to object to the processing of your personal data;
- the right of access to the personal data that we process;
- the right to rectify it;
- the right to erasure;
- the right to data portability;
- the right to restriction of processing;
- the right to provide instructions regarding the storage, erasure and communication of your personal data after your death.
You can exercise your rights:
- by email (firstname.lastname@example.org)
- by post, addressed to:
If you would like more detailed information about these rights, please contact us on the addresses mentioned above.
We reply to your requests as quickly as possible and in any case, within 14 days upon receipt of your request.
Our data security measures
Our security and confidentiality commitments
Respecting your rights to the protection, security and confidentiality of your data is our priority.
NIBU Copenhagen has put technical and organizational security measures in place, adapted to the sensitivity level of the personal data, in order to protect it against any malicious breaches, any losses, alteration or disclosure to unauthorized third parties.
When creating, designing, selecting and using our services which are based on personal data, NIBU Copenhagen factors in the right to the protection of personal data, from the very beginning.
For this reason, for example, we will carry out pseudonymization or anonymization, depending on the case, of personal data as soon as it is possible or necessary.
As all personal data is confidential, access to it is restricted to NIBU Copenhagen’s employees or service providers working on the NIBU Copenhagen account who need it to carry out their tasks. All people who have access to your data are bound by a confidentiality obligation and face disciplinary measures or other sanctions if they do not comply with these obligations.
A contract is required for operations with recipient third-parties in order to ensure the protection of your personal data and the respect of your rights.
We are fully committed to adequately protecting the personal data that you have entrusted us with. For the purposes of continual security and protection, we encourage you to exercise caution in order to prevent all unauthorized access to your personal data and to protect your devices (computer, smartphone, tablet) against any unwanted, even malicious, access, by using a strong password, which we recommend you change regularly. If you share a device, we recommend that you log off after each use.