Terms and Privacy Policy

By using Dansk Tandforsikring Administration ApS’ dental insurance (hereinafter the ‘Insurance’), you agree to this privacy policy (hereinafter the ‘Privacy Policy’), and thus also that Dansk Tandforsikring Administration ApS (hereinafter ‘Dansk Tandforsikring’, ‘we’, ‘us’ or ‘our’) processes your personal data as described in the following.

1. Data liability

If you want to complain about our processing of your personal data, you can send an email to our data protection officer atdpo@dansktandforsikring.dk.

1.1 We take data protection seriously

We process personal data and have therefore adopted this Privacy Policy, which tells you how we process your personal data. We act as data controller and thus ensure that your personal data is processed in accordance with the law, including Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016. Our contact details are: Dansk Tandforsikring Administration ApS Jægersborg Alle 14 DK-2920 Charlottenlund CVR: 32669999 Phone: +45 7020 4647 Email: info@dansktandforsikring.dk Website: www.dansktandforsikring.dk

1.2 We ensure fair and transparent data processing

When we ask you to provide us with your personal data, we will inform you about which personal data we process about you and for what purpose. You will receive information about this at the time of the collection of your personal data through this Privacy Policy.

2. Processing of personal data

2.1 Enrolment in the Insurance and the purpose of the processing

It is voluntary for you to take out the Insurance. The purpose of our processing data is to make the Insurance available to you. In particular, we will register your data in order to collect premiums, process claims and pay compensation to you.

2.2 The processed data

The personal data we process includes:

1. General personal data in the form of contact information
2. Dental bills
3. Account information
4. CPR number and
5. sensitive data about health conditions (including dental records and X-rays).

We will use your name, CPR number, address and email address in connection with the creation and administration of your insurance, sending the insurance policy and requests for payment, to provide you with information about compensation and specifications in connection with payments. We will collect your data when you take out the Insurance. If you take out insurance through your employer, we will receive information from your employer about your employment and your personal data. You are obligated to ensure that your contact information is always up to date.

2.2.1 Sensitive data

In connection with the purchase of personal dental insurance products, Dansk Tandforsikring may require access to your dental records and x-rays (health information). This is done to give Dansk Tandforsikring a true picture of your dental status and an estimate of what can be insured and what maybe cannot be insured. In connection with the cover of especially prosthetic treatments (dental crowns, dental bridges, implants) and the like as well as other more complicated conditions / treatments, Dansk Tandforsikring may need to obtain your dental records and X-ray material for use in the claims handling. If this material is not available, the case will be handled based on a professional assessment by one of Dansk Tandforsikring’s dentists. The sensitive data we register is either information that you have submitted yourself or has been submitted to us by another party such as an employer/administrator if the insurance has been taken out through one of them. If you do not wish to share this data with us, there is a risk that we cannot offer you the desired Insurance.

2.3 Obtaining and disclosing data

Our administration will process your personal data pursuant to point b of Article 6(1) the General Data Protection Regulation since it is necessary in order to provide you with an insurance. If necessary, subject to Article 45(1) of the General Data Protection Regulation, we will transfer your personal data to our data processors DT Administration ApS and Global Dental Insurance A/S, which operate in countries where the European Commission has made an adequacy decision. We will obtain health information from your dentist about the health of your teeth, any treatments and ongoing check-ups. Our dental staff will process this health information subject to point h of Article 9(2) of the General Data Protection Regulation since it is necessary in order to provide you with a dental insurance. If your insurance with us lapses, we will store your personal and health data for five years. We then pseudonymise the data subject to Article 89(1) of the General Data Protection Regulation so that we can calculate insurance premiums statistically but can no longer identify you.

2.4 The nature of the disclosed data

The data we disclose will include the data mentioned in clause 2.2 item 1-4.

2.5 We only process relevant personal data

We will process the personal data about you that are relevant and adequate in relation to the purposes defined above. We will not use more personal data than we need for the specific purpose.

2.6 We only process necessary personal data

We will only collect, process and store the personal data that are necessary to fulfilling our stated purposes.

2.7 We check and update your personal data

We will continuously check that the personal data we process about you are not incorrect or misleading. However, you are responsible for informing us of changes to your data, including your contact information. We will also make sure to update your personal data continuously after receiving such information.

2.8 We erase your personal data when they are no longer needed

We will erase your personal data when they are no longer needed in relation to the purpose for our collection, processing and storage. We are obligated by law to store your personal data for a minimum of five years after you have cancelled the Insurance. We will store your personal data for as long as you have an active insurance policy.

3. Security

3.1 We protect your personal data

As data controller, we have taken the necessary technical and organisational security measures to protect the data we receive from you from being accidentally or illegally destroyed, lost or degraded, as well as form coming to the knowledge of unauthorised persons, being misused or otherwise processed in breach of data protection legislation. We use data processors in the EU who store and process personal data on our behalf in accordance with this data policy and applicable legislation. Our data processors only act according to our instructions. Data processors are Microsoft Northern European hosting service, Zendesk European hosting service and NCDC, Stettin Poland, where all development and system monitoring takes place. In the event of a security breach that results in a high risk for you of discrimination, ID theft, financial loss, loss of reputation or other significant disadvantage, we will notify you of the security breach as soon as possible.

4. Your rights

4.1 You have the right to access your personal data

You have the right to be informed at any time about the personal data we process about you, where they come from and what we use it for. You can also get information about how long we store your personal data and who receives your personal data to the extent that we disclose personal data in Denmark and abroad. Via your login to our system, you can gain full insight into which data we have registered about you. This includes name, address, civil registration number, insurance product(s) and any co-insureds. Furthermore, there may be an electronic overview that shows how your teeth are covered. All your deposits and payments also appear from the overview. You have the right to data portability, thereby receiving your data in a structured, commonly used and machine-readable format. You can exercise your rights by contacting us. You can find our contact information at the top.

4.2 You have the right to have inaccurate personal data rectified or erased.

If you believe that the personal data we process about you are inaccurate, you have the right to have them rectified. As a rule, you must correct your information in our system yourself via your login. However, you can also contact us and inform us of the inaccuracies and how they can be rectified. When you contact us with a request to have your personal data rectified or erased, we will investigate whether the conditions are met and, if so, make the changes or erase as quickly as possible. However, we will not erase your data if we are required by law to store it.

4.3 You have the right to object to our processing of your personal data.

You have the right to object to our processing of your personal data. You can also object to our disclosing your personal data for marketing purposes. You can use the contact information at the top to submit an objection. If your objection is justified, we will make sure to stop processing your personal data. If you want to complain about our processing of your personal data, you can also contact: The Danish Data Protection Agency Borgergade 28, 5 DK-1300 Copenhagen K +45 33193200 dt@datatilsynet.dk

5. Danish law

This Privacy Policy is governed by Danish law. Any dispute about the understanding of his Privacy Policy must be brought before the Danish courts of law. The above-mentioned choice of law rule does not, however, include the Danish conflict of laws rules.

6. Amendments of the Privacy Policy

Dansk Tandforsikring reserves the right to amend this Privacy Policy at any time and will notify you of any amendments by giving appropriate notice. The Privacy Policy in force from time to time is available at www.dansktandforsikring.dk.