Privacy Policy — Denlever Services

Quick summary At Denlever Services we protect your privacy. We only process the personal data strictly necessary to deliver a professional service, retain it only as long as needed, and never sell it to third parties. You stay in full control: you can access, rectify or delete your data at any time by writing to support@denlever.com.

Contents

Data controller
Data we collect
Purpose and legal basis
Retention period
Recipients and transfers
Your rights
Security measures
Cookies and trackers
Minors
Changes to this policy

1. Data controller

The controller responsible for the processing of your personal data is:

Legal name: Denlever Services
CVR / VAT: DK43571044
Registered address: Dagmarhaven 28, 2. 1, 2665 Vallensbæk Strand, Denmark
Contact email: support@denlever.com
Data Protection Officer (DPO): as we do not meet the thresholds set out in Article 37 GDPR, the appointment of a DPO is not mandatory. Any privacy-related enquiry can be addressed to the email above.

2. Data we collect

2.1 Data you provide to us

Contact details: first name, last name, email, phone number, company.
Project information: details you share through the contact form or by email (project description, indicative budget, industry).
Billing data (if you engage us): registered business name, VAT/CIF number, fiscal address, bank details.

2.2 Data collected automatically

IP address (anonymised where possible), browser and device type, language, approximate country from IP geolocation, pages viewed, time on page and traffic source.
Cookie identifiers and similar technologies (see section 8).

3. Purpose and legal basis for processing

We process your data for the following purposes, each one supported by a legal basis under Article 6 GDPR:

Handling your request for information or a quote — legal basis: pre-contractual measures (art. 6(1)(b) GDPR).
Delivering the services you engage us for and issuing invoices — legal basis: performance of a contract (art. 6(1)(b)).
Compliance with legal obligations under Danish and European accounting, tax and commercial law — legal basis: legal obligation (art. 6(1)(c)).
Improving our website and services through aggregated analytics — legal basis: legitimate interest (art. 6(1)(f)).
Commercial communications about our services (only when you explicitly opt in) — legal basis: consent (art. 6(1)(a)), withdrawable at any time.

4. Retention period

Contact data without engagement: up to 12 months from the last interaction, unless you ask us to delete it sooner.
Client data with engagement: for the duration of the contractual relationship and afterwards for the applicable statutory periods (5 years for accounting obligations, up to 10 years for Danish tax obligations).
Analytics cookies: see Cookie Policy.

5. Recipients and international transfers

We do not sell or transfer your data to third parties for commercial purposes. We do share it with the following processors that provide services necessary for our operation:

Vercel Inc. (vercel.com, USA) — hosting of the website and serverless functions. Processes technical metadata (IP, user agent) under EU Commission Standard Contractual Clauses (SCCs).
Resend (resend.com, USA) — transactional delivery of the contact-form email and visitor confirmation email. Processes the form's name, company, email and message under SCCs.
Google Fonts (fonts.googleapis.com, USA/EU) — delivery of web typography. Does not access personal information and does not install tracking cookies.
Our accounting firm and the Danish public administration where required by law.

Any international transfer outside the EEA is performed under the safeguards of Article 46 GDPR (Standard Contractual Clauses). We currently do not use web analytics. If we add them in the future we will declare them here and gate them behind the consent banner.

6. Your rights

Under Articles 15 to 22 of the GDPR you have the right to:

Access: know which of your data we process.
Rectification: correct inaccurate data.
Erasure (right to be forgotten): request deletion where applicable.
Restriction: restrict processing in certain circumstances.
Objection: object to processing based on legitimate interest.
Portability: receive your data in a structured format.
Withdraw consent at any time, without affecting the lawfulness of prior processing.
Not be subject to automated decisions with significant legal effects.

To exercise these rights, write to us at support@denlever.com stating the right you wish to exercise. We will reply within one month at the latest.

You have the right to lodge a complaint with the Datatilsynet (Danish Data Protection Authority): Carl Jacobsens Vej 35, 2500 Valby, Denmark — datatilsynet.dk.

7. Security measures

We apply technical and organisational measures appropriate to the risk, including end-to-end TLS encryption, access controls, encrypted backups, regular audits and internal team training. In the event of a security breach affecting your data, we will notify you without undue delay in accordance with Article 34 GDPR.

8. Cookies and similar technologies

We use strictly necessary cookies and, with your consent, analytics and experience-improvement cookies. Full details are available in our Cookie Policy.

9. Minors

Our services are exclusively addressed to professionals and businesses. We do not knowingly collect data from anyone under the age of 16. If you notice that a minor has provided us with personal data, please contact us so we can delete it.

10. Changes to this policy

We may update this policy to reflect legal changes or changes to our services. We will give reasonable advance notice of material changes. The date at the top of the document indicates the version in force.

Questions or requests? Write to us at support@denlever.com. We respond to privacy enquiries within 4 business hours.