Privacy Policy

Introduction

silversummit AS ("we", "our", or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website silversummit.top or use our organic cosmetic certification guidance services.

Data Controller Information

The data controller for your personal information is silversummit AS, a company registered in Denmark with registration number CVR49856732. Our registered office is located at Vesterbrogade 29, 5041 Odense, Southern Denmark.

Data We Collect

The data we collect about you may include personal information that you provide directly to us, information we collect automatically when you use our services, and information we receive from third parties. Specifically, we may collect the following types of data:

• Contact information including name, email address, phone number, and company details
• Communication preferences and marketing consent
• Information about your certification requirements and business needs
• Technical data including IP address, browser type, and device information
• Usage data about how you interact with our website and services
• Cookie data and tracking information as described in our Cookie Policy

How We Use Your Information

We use the information we collect to provide, maintain, and improve our organic cosmetic certification guidance services. Specifically, we use your data to provide our services, communicate with you about your certification needs, improve our website and services, and comply with legal obligations. The legal basis for processing your personal data includes:

• Performance of a contract when providing our certification guidance services
• Legitimate interests for improving our services and business operations
• Consent for marketing communications and non-essential cookies
• Legal obligation for compliance with applicable laws and regulations

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about the cookies we use, please refer to our Cookie Policy.

Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information with trusted service providers who assist us in operating our website and providing our services, certification bodies when required for your certification process, and legal authorities when required by law or to protect our rights and interests.

International Data Transfers

As we operate within the European Union, your data is primarily processed within the EU. Where we do transfer data outside the EU, we ensure appropriate safeguards are in place, including adequacy decisions, standard contractual clauses, or other approved mechanisms under GDPR.

Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Generally, we retain contact information for active clients throughout our business relationship and for up to 7 years after the relationship ends for legal and tax purposes. Marketing consent and communication preferences are retained until you withdraw consent or request deletion.

Your Rights

Under the General Data Protection Regulation (GDPR), you have several rights regarding your personal data. These include the right to access your personal information, rectify inaccurate data, erase your data under certain circumstances, restrict processing of your data, data portability, object to processing, and withdraw consent where processing is based on consent.

To exercise any of these rights, please contact us using the contact information provided below. We will respond to your request within one month of receipt.

Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These measures include encryption of data in transit and at rest, regular security assessments, access controls and authentication, and staff training on data protection principles.

Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you become aware that a child has provided us with personal information, please contact us immediately.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. Your continued use of our services after such changes constitutes acceptance of the updated policy.

Contact Information

If you have any questions about this Privacy Policy, wish to exercise your rights, or need to contact us about privacy matters, please reach out to us through the following contact information:

Supervisory Authority

You have the right to lodge a complaint with the Danish Data Protection Agency (Datatilsynet) if you believe we have not handled your personal data in accordance with applicable data protection laws. You can contact them at dt@datatilsynet.dk or visit their website for more information.