Privacy
Danish Environmental Protection Agency is the data controller for the processing of the personal data we have received concerning you. Our contact details are available below.
Danish Environmental Protection Agency
Tolderlundsvej 5
5000, Odense
Denmark
CVR-no.: 25798376
Telephone: +45 72 54 40 00
Email: mst@mst.dk
If you have any questions regarding our processing of your data, please feel free to contact our data protection officer.
You can contact our Data Protection Officer in the following ways:
By e-mail: dpo@mfvm.dk
By telephone: + 45 72 54 40 00
By letter: Tolderlundsvej 5, 5000 Odense, Denmark, att: Data Protection Officer
We process your personal data for the following purposes:
The Environmental Protection Agency processes your personal data for the purpose of accepting or rejecting links between authorisations and the company. The basis in law for our processing of your personal data ensues from:
Your personal data will in this connection be subject to the necessary processing, including, for example, record-keeping pursuant to the Danish Act on Public Access to Documents in Public Files (offentlighedsloven). Your data will furthermore be stored in accordance with the Danish Archives Act (arkivloven).
The Environmental Protection Agency processes your personal data data under the authority of the Chemical Act [1], the Environmental Protection Act[2] and Statutory Order no. 980 of 22. June 2020.
Hence, the processing takes place under the authority of the General Data Protection Regulation, Article 6(1), point (c) (legal obligations) and" point (e) (the exercise of official authority)".
We process data on criminal offences on the basis of section 8(1) of the Data Protection Act, in that the processing is necessary for performing the tasks of the Agency.
The Environmental Protection Agency processes any sensitive personal data provided by you under the authority of the General Data Protection Regulation, Article 9(2), point (f) (the processing of sensitive data is necessary for the establishment, exercise or defence of a legal claim"). The Environmental Protection Agency is obliged, inter alia, to keep a record of your personal data in accordance with the rules of the Danish Act on Public Access to Documents in Public Files.
[1] Act no 115 of 26. January 2017
[2] Act no. 1218 of 25. November 2019
We process the following categories of personal data about you:
The Environmental Protection Agency processes the data contained in your application. This includes the following data in particular:
- Name of the person with an authorization
- Authorisation number
- Authorisation type
- Expiration date
- Name of persons the company has power of attorney over.
We disclose your personal data or make it available to the following recipients:
The Danish Environmental Protection Agency will store information regarding links between authorisations and a company in the Danish Environmental Protection Agency’s Authorisation System for the use of Pesticides (MAB). The information supplied in MAB such as name, CVR number, authorisation number, authorisation type and expiration dates are publically available for use for inspection of authorisations. The Danish Environmental Protection Agency will moreover entrust your personal data to the Agency's data processors, e.g. Statens IT (the Agency for Governmental IT Services in Denmark), IT providers (eg. Knowledge Cube A/S) and Aarhus Business College.
We will not transfer personal data to recipients outside the EU and the EEA.
In addition to the data reported by you to the Environmental Protection Agency, we receive personal data about you from the following sources:
- CVR-register
The Danish Environmental Protection Agency will keep your personal data on file for 30 years. We reserve the right to keep your personal data on file for longer, if an on-going pollution is detected within the 30-year period.
Your data until the data are filed or discarded is pursuant to the rules of the Danish Archives Act, see Consolidated Act no. 1201 of 28 September 2016, or as long as they are needed for the purpose for which they were collected. When there is no longer a legal or administrative need, the data will be discarded (erased).
Pursuant to the General Data Protection Regulation, you have several rights in relation to our processing of data concerning you. If you wish to exercise your rights, you must contact us.
Right of access
- You have the right to obtain access to the data we process concerning you, together with a number of other data.
Right to rectification (correction)
- You have the right to have incorrect data concerning you rectified.
Right to erasure
- In special cases, you have the right to have data concerning you erased before the time of our ordinary general erasure.
Right to restriction of processing
- In certain cases, you have the right to restrict the extent to which we process your personal data. If you have the right to restrict processing, we will henceforth only process information with your consent – with the exception of storage – or if a legal claim can be established, exercised or defended, or to protect a person or important public interests.
Right to object
- In certain cases, you have the right to object to our processing of your personal data.
Right to transmit data (data portability)
- In certain cases, you are entitled to receive your personal data in a structured, commonly used and machine-readable format, and to have this personal data transmitted from one data controller to another without hindrance.
You can read more about your rights in the Danish Data Protection Agency's guidance on rights of data subjects, available at www.datatilsynet.dk.
You have the right to complain to the Danish Data Protection Agency if you are not satisfied with the way in which we process your personal data. The contact details of the Danish Data Protection Agency are available at www.datatilsynet.dk.
