Data Protection Policy (Duty of Disclosure)
The protection of personal data is a high priority for Bitten & Mads Clausen's Foundation. We have therefore adopted this policy, which describes how Bitten & Mads Clausen's Foundation (‘we’ or ‘us’) processes your personal data.
Bitten & Mads Clausen's Foundation is the data controller
Bitten & Mads Clausen's Foundation, CVR no. 41815612, located at Nordborgvej 81, 6430 Nordborg, is the data controller for the personal data we process. If you wish to exercise your rights – as described below – or if you have any questions about our processing of your personal data, you are welcome to contact us:
Bitten & Mads Clausen's Foundation
Tel: (+45) 2963 6410
info@bmcfond.dk
Our processing activities
- Grants in accordance with the Foundation's charter
- Visitors to our premises
- Visitors to bmcfond.dk
- Recruitment (unsolicited applications)
- Supplier and partner administration
- Administration of events
- Waiting list for tenancies
In the sections below, you can read more about the types of personal data we process about you and the legal basis for processing, depending on the purpose:
Grants in accordance with the Foundation's charter
Purpose
The purpose of our processing of personal data is to be able to handle communication and administration in connection with the Foundation's grants and initiatives, including publicity for the project and the establishment and implementation of the collaboration. In this connection, we may publish images or videos for the purpose of publicising the projects we support or invest in.
Categories of personal data
We process general personal data such as the name, title, email address and telephone number of contact persons. We may process and publish general personal data in the form of photos and/or videos on our website.
Categories of data subjects
Contact persons and employees at the organisations we choose to support through our grant initiatives.
Data source
The information is received directly from the organisations in question or from the contact persons themselves in connection with the Foundation's selection, dialogue and administration of grant initiatives.
Legal basis for processing
We process personal data in accordance with Article 6(1)(f) of the General Data Protection Regulation, as we have a legitimate interest in processing contact details for the purpose of communication and administration of grants. If an agreement has been entered into in connection with the grant, the personal data is processed as it is necessary to fulfil the agreement entered into, cf. Article 6(1)(b) of the General Data Protection Regulation.
We also process personal data included in accounting records that is necessary in accordance with the legal obligation to comply with Section 10(1) of the Danish Bookkeeping Act on retention, cf. Article 6(1)(c) of the General Data Protection Regulation.
We process and publish images and videos (general personal data) pursuant to Article 6(1)(f) of the General Data Protection Regulation, as we have a legitimate interest in publicising and communicating the initiatives we support or invest in.
Before we publish an image or video, we always assess whether the nature of the image/video is in line with our legitimate interest, including assessing the context in which the image/video is used, the purpose of the publication and any impact that publication of the image/video may have on the persons depicted. In addition, we always assess whether the purpose of the image/video is consistent with the purpose of the publication and any text associated with the image/video.
If you are dissatisfied with the publication of the image/video, you have the right to object, in which case we will remove the image/video. You can do this by calling us or sending an email to info@bmcfond.dk.
Retention and deletion
As only contact details are processed for the purpose of communication and administration of grants, a decision will be made on an ongoing basis as to whether there is still a work-related need to retain the information.
In addition, personal data included in accounting records will be retained for five years from the end of the financial year to which the material relates, cf. section 10(1) of the Danish Bookkeeping Act.
Information about the initiatives and projects we support will be retained for as long as there is a factual need to process it – including for publication – and for as long as the publicity surrounding the project is relevant. We also regularly assess whether special circumstances warrant a shorter or longer retention period.
Recipients
As a general rule, we do not disclose personal data to third parties, but we share personal data with data processors, including IT suppliers. We enter into data processing agreements with all data processors to ensure adequate security for the personal data entrusted to them.
We may disclose personal data to professional advisers and partners, including auditors and public authorities, if we are required to do so, cf. Article 6(1)(c) of the General Data Protection Regulation.
The images/videos may be published on our website (https://bmcfond.dk).
Visitors to our premises
Purpose
We process personal data about visitors for administrative purposes, including the administration of meetings and for security reasons.
Categories of personal data
We process general personal data, including the name and, where applicable, title and organisation of visitors, as well as the name of the host at our premises. In addition, we process personal data obtained from video surveillance.
Categories of data subjects
Visitors to our premises, e.g. potential candidates, contact persons and employees of the organisations we choose to support through our grant initiatives, as well as representatives of our suppliers.
Data source
Visitors to our premises.
Legal basis for processing
Our processing of personal data is necessary for us to pursue a legitimate interest in administering and holding meetings and to ensure a high level of security, cf. Article 6(1)(f) of the General Data Protection Regulation.
Our processing of personal data is carried out in accordance with Section 3(1) of the Danish CCTV Surveillance Act.
We provide information about the locations where we use CCTV surveillance.
Retention period
Our guest registration at the reception is retained for one month from the date of the visit.
Both registrations and video recordings are retained securely and are only reviewed and played back if there is a reason to do so, e.g. an incident, and only by selected individuals. Video recordings are automatically deleted after two weeks from the time of recording, unless a circumstance requiring investigation, such as theft, has been identified.
Recipients
We only disclose personal data to the police if circumstances requiring investigation have been identified, such as theft and vandalism, cf. Article 6(1)(c) of the General Data Protection Regulation.
We share personal data with data processors, including IT suppliers. We enter into data processing agreements with all data processors to ensure the necessary security.
Visitors to bmcfond.dk
Purpose
We process personal data about visitors to our website for the purpose of collecting statistics on the use of the website so that we can continuously improve the user experience by seeing what type of content is in demand. Personal data is collected from cookies in accordance with our cookie policy, which you can find here: https://www.bmcfond.dk/cookiepolitik/
Categories of personal data
We only process general personal data to which the visitor consents, such as information about their activity on the website and their IP address.
Read more about our use of cookies: https://www.bmcfond.dk/cookiepolitik/
Categories of data subjects
Visitors to our website.
Data source
Visitors to our website.
Legal basis for processing
Personal data collected from cookies is processed on the basis of the visitor's consent, cf. Article 6(1)(a) of the General Data Protection Regulation.
In addition, we pursue a legitimate interest in making our website usable by enabling basic functions and remembering the visitor's settings, cf. Article 6(1)(f) of the General Data Protection Regulation.
Retention period
We store personal data for two years from the date on which the visitor gave their consent.
Recipients
We disclose traffic data and IP addresses to third parties in connection with the use of third-party cookies on our website. Read more in our cookie policy: https://www.bmcfond.dk/cookiepolitik/
In addition, we share personal data with data processors, including IT suppliers. We enter into data processing agreements with all data processors to ensure adequate security for the personal data entrusted to them.
Recruitment (unsolicited applications)
Vacancies at Bitten & Mads Clausen's Foundation will be posted on the Danfoss A/S website, so we encourage you to keep an eye on open job postings on the Danfoss A/S website: https://www.danfoss.com/da-dk/about-danfoss/careers/
In this connection, Danfoss A/S assumes responsibility for the processing of information in the recruitment process, so please familiarise yourself with Danfoss A/S's privacy policy.
If you send an unsolicited application directly to Bitten & Mads Clausen's Foundation, we are obliged to provide you with the following information:
Purpose
The purpose of our processing of personal data is to fill future, as yet unadvertised positions with us.
Categories of personal data
We process general personal data that you provide in your unsolicited job application (e.g. name, address, email, job application and CV).
We do not need to process confidential (e.g. social security number) and/or sensitive personal data. We therefore ask that you do not provide us with such information.
Categories of data subjects
Unsolicited candidates
Data source
The candidate
Legal basis for processing
We process your personal data on the basis of Article 6(1)(f) of the Regulation, as we have a legitimate interest in assessing the candidate and, if necessary, filling a future position with a suitable candidate.
When we receive personal data that the applicant actively submits to us on their own initiative, this is considered to have been received with the applicant's consent, cf. Section 12(3) of the General Data Protection Act.
Retention period
We process your personal data until the recruitment process is completed. Unsolicited applications are retained for up to 6 months from receipt of the application. If your application is rejected, we will store your personal data for up to 3 months from the date of rejection.
If you have given your consent for us to store your application for a longer period, e.g. in connection with other or future positions, you can withdraw your consent at any time by contacting us.
Recipients
If we find your application interesting, your personal data will be passed on to Danfoss A/S, which will then take over the recruitment process. In this connection, Danfoss A/S will take over responsibility for processing the data in the recruitment process, so please familiarise yourself with the privacy policy of Danfoss A/S. In any case, your personal data will be treated confidentially, and only employees involved in the recruitment process will have access to your information.
Supplier and partner administration
Purpose
The purpose of processing personal data about contact persons at suppliers and partners is to be able to manage contracts and receive goods and services from our suppliers and partners.
Categories of personal data
We process general personal data, including name, address, email address and telephone number, as well as any bank account details of suppliers and partners who are sole traders.
In addition, we process the name, title, email address and telephone number of any contact persons at suppliers and partners.
Categories of data subjects
The supplier and/or business partner, including their employees.
Data source
The supplier and/or business partner or employees who are listed as contact persons at the supplier and/or business partner.
Legal basis for processing
The processing of personal data is necessary in order to fulfil the agreement with the supplier and business partner, cf. Article 6(1)(b) of the General Data Protection Regulation, where it is a sole trader.
The processing of personal data about contact persons at the supplier and partners is necessary in order for us to pursue a legitimate interest in being able to administer and fulfil the contract with the partner, cf. Article 6(1)(f) of the General Data Protection Regulation.
Retention period
We store personal data included in accounting records for 5 years from the end of the financial year to which the material relates.
Personal data relating to contact persons at the supplier and business partners will be assessed on an ongoing basis to determine whether there is still a work-related need to store the data.
Recipients
We disclose personal data to auditors in connection with audits.
In addition, we share personal data with data processors, including IT suppliers. We enter into data processing agreements with all data processors to ensure adequate security for the personal data entrusted to them.
Administration of events
Purpose
We collect and process your personal data for the purpose of administering professional events. This includes, among other things, the administration of participants, sending out invitations and participant lists, as well as facilitating, running and publicising the events through articles, snapshots and videos on our website.
Categories of personal data
We process general personal data, including information about name, title, organisation, job title, telephone number and email address.
Categories of data subjects
Participants and any speakers
Data source
The participant and the speaker. We may also take photos ourselves in connection with our events.
Legal basis for processing
When we invite you to a professional event that we have assessed as being of interest to you, we do so on the basis of our legitimate interest, cf. Article 6(1)(f) of the General Data Protection Regulation. Please note that the event will in no way be intended for professional or commercial purposes. By replying to the invitation email with the word ‘unsubscribe’ you can opt out of receiving further invitations at any time.
In other cases, the processing of personal data will be based on the participant's consent, cf. Article 6(1)(a) of the General Data Protection Regulation.
If you choose to participate in the event, the processing is necessary for us to pursue a legitimate interest in being able to administer and manage the event, cf. Article 6(1)(f) and (a) of the General Data Protection Regulation.
We may also process and publish photos and videos (general personal data) pursuant to Article 6(1)(f) of the General Data Protection Regulation, as we have a legitimate interest in publicising and communicating the events we hold.
Before we publish an image or video, we always assess whether the nature of the image/video is in line with our legitimate interest, including assessing the context in which the image/video is used, the purpose of the publication and any impact that publication of the image/ video may have on the persons depicted. In addition, we always assess whether the purpose of the image/video is consistent with the purpose of the publication and any text associated with the image/video.
If you are dissatisfied with the publication of the image/video, you have the right to object, in which case we will remove the image/video. You can do this by calling us or sending an email to info@bmcfond.dk.
Retention period
We retain the information for as long as we have a legitimate interest in the processing, including the promotion and communication of the event. We also assess whether any special circumstances require shorter or longer retention periods.
Recipients
We disclose information to any partners and/or speakers, cf. Article 6(1)(n) and (f)[TM1] of the General Data Protection Regulation.
We share the list of participants with the other participants who have registered for the event, cf. Article 6(1)(f) of the General Data Protection Regulation. The list of participants will only contain personal data such as name, e-mail address, organisation and job title.
If you do not want your personal data to appear on the list of participants, please contact us. You can read more about your rights when we process personal data about you below in this data protection policy.
The photos/videos may be published on our website (https://bmcfond.dk).
Waiting list for tenancy
Purpose
We collect and process personal data about potential tenants – in the form of waiting lists – in order to administer and manage interest in projects in which the BMC Foundation is involved.
Categories of personal data
We process general personal data, including information about your name and email address.
Categories of data subjects
Potential tenants
Data source
The potential tenant
Legal basis for processing
The BMC Foundation processes personal data about you if you have contacted us and expressed interest in a project in which we are involved.
The information is processed on the basis of both our and your legitimate interest, cf. Article 6(1)(f) of the General Data Protection Regulation, as we have a legitimate interest in being able to manage interested tenants, and you have an interest in being on the waiting list for a tenancy.
You can opt out of receiving information about a specific construction project at any time by replying to the email with the word ‘unsubscribe’.
Retention period
We retain the information until the waiting list can be transferred to a real estate agent. We assess that we no longer have a legitimate interest in processing personal data after this point, and it will therefore be deleted immediately after we have passed it on to the estate agent. We also assess whether any special circumstances require shorter or longer retention periods.
Recipients
As a general rule, we only disclose personal data about you to the real estate agent who is to handle the sale/rental of the units in question, as this is necessary in order to convey your interest in the tenancy.
Transfer to recipients in third countries, including international organisations
To the extent that we use partners established outside the EU/EEA, this will always be done in compliance with valid European transfer guarantees in the form of the European Commission's standard contractual clauses, cf. Article 46(2)(c) of the General Data Protection Regulation.
For partners in the United States, we can inform you that the European Commission has made an adequacy decision recognising that companies in the United States affiliated with the EU-US Data Privacy Framework programme (DPF) ensure an adequate level of protection for personal data, cf. Article 45 of the General Data Protection Regulation.
Security
We take the security of your information very seriously and therefore have high standards of security. We have a number of internal procedures and policies in place to ensure compliance with our high security standards.
Recipients in third countries, including international organisations
Your information is retained within the EU (European Union) and the European Economic Area (EEA). If we need to transfer personal data to recipients in third countries at a later date, this will be done within the framework of the data protection rules, and further information on this will be provided in this data protection policy.
Your rights:
Right of access:
You have the right to access the information we process about you, as well as a range of additional information.
Right to rectification:
You have the right to have inaccurate information about yourself corrected.
Right to erasure:
In certain cases, you have the right to have information about you deleted before our regular general deletion date.
Right to restriction of processing:
In certain cases, you have the right to have the processing of your personal data restricted. If you have the right to restrict processing, we may only process the information in future – apart from retention – with your consent, or for the purpose of establishing, asserting or defending legal claims, or to protect a person or important societal interests.
Right to object to our processing of data:
In certain cases, you have the right to object to our lawful processing of your personal data. Where we process ordinary personal data in accordance with the balancing of interests rule in Article 6(1)(f) of the General Data Protection Regulation, you may object to this, cf. Article 21(f)[TM2] of the General Data Protection Regulation. You may also object to the processing of your data for direct marketing purposes.
Right to data portability:
In certain cases, you have the right to receive your personal data in a structured, commonly used and machine-readable format and to have this personal data transferred from one data controller to another without hindrance.
Right to withdraw your consent:
If you have given your consent to processing, you can withdraw your consent at any time by contacting us at info@bmcfond.dk.
If you choose to withdraw your consent, this will not affect the lawfulness of our processing of your personal data based on your previously given consent and up to the time of withdrawal. If you withdraw your consent, it will therefore only take effect from that point in time.
Complaints
If you wish to complain about our processing of personal data, you can contact us at info@bmcfond.dk.
You also have the option of complaining to the Data Protection Authority. You can find their contact details at www.datatilsynet.dk.
Updating our data protection policy
We recognise that transparency is an ongoing responsibility. We will therefore regularly review and update this data protection policy.
This data protection policy was updated on 6th October 2025.
6 October 2025, version 2.2.
