Nordic Apiary GDPR Compliant Privacy Policy

  1. Introduction
    1. This policy applies where we are acting as a data controller with respect to the personal data of our website visitors and service users; in other words, where we determine the purposes and means of the processing of that personal data.
    2. In this policy, “we”, “us” and “our” refer to Nordic Apiary. For more information about us, see Section 13.
  2. Credit
    1. This document was created using a template from SEQ Legal (https://seqlegal.com).
  3. How we use your personal data
    1. In this Section 3 we have set out:
      • the general categories of personal data that we may process;
      • in the case of personal data that we did not obtain directly from you, the source and specific categories of that data;
      • the purposes for which we may process personal data; and
      • the legal bases of the processing.
    2. We may process your account data (“account data“). The account data may include your name and email address. The account data may be processed for the purposes of operating our website, providing our services, ensuring the security of our website and services, maintaining back-ups of our databases and communicating with you. The legal basis for this processing is your consent upon registering on our website.
    3. We may process your information included in your personal profile on our website (“profile data“). The profile data may include your name, address, telephone number, email address, profile pictures, gender, date of birth, relationship status, interests and hobbies, educational details and employment details. The profile data may be processed for the purposes of enabling and monitoring your use of our website and services. The legal basis for this processing is your consent upon entering the relevant information.
    4. We may process information that you post for publication on our website or through our services (“publication data“). The publication data may be processed for the purposes of enabling such publication and administering our website and services. The legal basis for this processing is consent upon entering the relevant information.
    5. We may process information you submit on our website or through our services (“submission data“). The submission data may include your name, company name, logo, pitch deck, images videos, or any other data submitted by you. This data may be processed in our relationships with prospective, current, and/or former stakeholders and portfolio companies, third-parties, as well as for our internal operations. The legal basis for this processing is consent upon entering the relevant information.
    6. We may process information that you provide to us for the purpose of subscribing to our email notifications and/or newsletters (“notification data“). The notification data may be processed for the purposes of sending you the relevant notifications and/or newsletters. The legal basis for this processing is consent.
    7. In addition to the specific purposes for which we may process your personal data set out in this Section 3, we may also process any of your personal data where such processing is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person.
    8. Please do not supply any other person’s personal data to us, unless we prompt you to do so.
  4. Providing your personal data to others
    1. Your personal data held in our website database will be stored on the servers of our hosting services providers[ identified at http://www.sinohosting.net/.
    2. We may disclose your personal data to any member of our group of companies (this means our subsidiaries, holding company and all its subsidiaries) insofar as reasonably necessary for the purposes, and on the legal bases, set out in this policy.
    3. We may disclose submission data to our prospective, current, and/or former stakeholders and portfolio companies or other third-parties insofar as reasonably necessary for the purposes of our mutual legitimate interests of establishment.
    4. We may disclose submission data to other third-parties insofar as reasonably necessary for the marketing purposes of Nordic Apiary.
    5. In addition to the specific disclosures of personal data set out in this Section 4, we may disclose your personal data where such disclosure is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person. We may also disclose your personal data where such disclosure is necessary for the establishment, exercise or defense of legal claims, whether in court proceedings or in an administrative or out-of-court procedure.
  5. International transfers of your personal data
    1. In this, Section 5, we provide information about the circumstances in which your personal data may be transferred to countries outside the European Economic Area (EEA).
    2. The hosting facilities for our website are situated in China, Hong Kong, Macau, and Singapore. The European Commission has made an “adequacy decision” with respect to the data protection laws of each of these countries. Transfers to each of these countries will be protected by appropriate safeguards, namely the use of standard data protection clauses adopted or approved by the European Commission, a copy of which you can obtain from https://ec.europa.eu/newsroom/article29/item-detail.cfm?item_id=622227.
    3. Our prospect, current, and/or former stakeholders may be situated in China or Hong Kong. The European Commission has made an “adequacy decision” with respect to the data protection laws of each of these countries. Transfers to each of these countries will be protected by appropriate safeguards, namely the use of standard data protection clauses adopted or approved by the European Commission, a copy of which can be obtained from https://ec.europa.eu/newsroom/article29/item-detail.cfm?item_id=622227.
    4. You acknowledge that personal data that you submit for publication through our website or services may be available, via the internet, around the world. We cannot prevent the use (or misuse) of such personal data by others.
  6. Retaining and deleting personal data
    1. This, Section 6, sets out our data retention policies and procedure, which are designed to help ensure that we comply with our legal obligations in relation to the retention and deletion of personal data.
    2. Personal data that we process for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.
    3. We will retain your personal data as follows:
      1. Account data will be retained until you delete such data from your profile, and for a period of 7 days following that date;
      2. Profile data will be retained until you delete such data from your profile, and for a period of 7 days following that date;
      3. Publication data will be retained for a period of 7 days following the date when the relevant publication ceases to be published on our website or through our services;
      4. Notification data will be retained for a minimum period of 1 day following the date that we are instructed to cease sending the notifications, and for a maximum period of 30 days following that date (providing that we will retain notification data insofar as necessary to fulfill any request you make to actively suppress notifications); and
      5. Submission data will be retained until the company cease to exist, or until you exercise your right to erasure, as stated in section 8.
    4. Notwithstanding the other provisions of this Section 6, we may retain your personal data where such retention is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person.
  7. Your rights
    1. In this, Section 7, we have listed the rights that you have under data protection law.
    2. Your principal rights under data protection law are:
      • the right to access – you can ask for copies of your personal data;
      • the right to rectification – you can ask us to rectify inaccurate personal data and to complete incomplete personal data;
      • the right to erasure – you can ask us to erase your personal data;
      • the right to restrict processing – you can ask us to restrict the processing of your personal data;
      • the right to object to processing – you can object to the processing of your personal data;
      • the right to data portability – you can ask that we transfer your personal data to another organization or to you;
      • the right to complain to a supervisory authority – you can complain about our processing of your personal data; and
      • the right to withdraw consent – to the extent that the legal basis of our processing of your personal data is consent, you can withdraw that consent.
    3. These rights are subject to certain limitations and exceptions. You can learn more about the rights of data subjects by visiting https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/.
    4. You may exercise any of your rights in relation to your personal data by written notice to us, using the contact details set out below.
  8. About cookies
    1. A cookie is a file containing an identifier (a string of letters and numbers) that is sent by a web server to a web browser and is stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server.
    2. Cookies may be either “persistent” cookies or “session” cookies: a persistent cookie will be stored by a web browser and will remain valid until its set expiry date, unless deleted by the user before the expiry date; a session cookie, on the other hand, will expire at the end of the user session, when the web browser is closed.
    3. Cookies do not typically contain any information that personally identifies a user, but personal data that we store about you may be linked to the information stored in and obtained from cookies.
  9. Cookies that we use
    1. We use cookies for the following purposes:
      • security – we use cookies as an element of the security measures used to protect user accounts, including preventing fraudulent use of login credentials and to protect our website and services.
  10. Amendments
    1. We may update this policy from time to time by publishing a new version on our website.
    2. You should check this page occasionally to ensure you are happy with any changes to this policy.
  11. Our details
    1. This website is owned and operated by Nordic Apiary.
      Nordic Apiary is a trademark owned by Oak Island AB under organization number 5569222978, and our registered address is at
      • Nordic Apiary
        C/o Oak Island AB
        Sturevägen 24182 74 Stocksund
    2. You can contact us by using our website contact form
  12. Data protection officer
    1. Our data protection officer’s contact details are:
      • Kristoffer Lundegren, 0707285058.

This privacy policy was last updated on September 18, 2019.

NORDIC APIARY 2019 © ALL RIGHTS RESERVED