The legal entity which is responsible for the processing of your personal data is:
Lysholt Allé 6
Nabogo ApS can be contacted either by email at firstname.lastname@example.org or by telephone on (+45) 71792244.
1. Collection of data
1.1 Your visit to Nabogo.com
1.1.1. What data do we collect when you visit Nabogo.com?
1.1.2. What is the purpose of collecting personal data in connection with your visit to our website?
The purpose of data collection is to optimize the user experience and the functionality of Nabogo.com. Moreover, the purpose is also to use the data collected for targeted marketing including retargeting through social media platforms such as Facebook or search engines such as Google. This processing of your data is necessary in order for us to pursue our legitimate interests as part of our ongoing work to improve and to optimize our website, in order to offer relevant services to you.
1.1.3. Legal basis
The legal basis for this processing is Article 6 (1) (a) and (f) of the General Data Protection Regulation (EU 2016/679).
1.2. Your use of our platform (the app)
1.2.1 What personal data do we collect in connection with the creation of your user profile on our platform (app)?
In connection with the creation of your user profile on our platform, we collect data related to your name, email address, postcode, a picture of you and your telephone number. These are data that you provide yourself when creating your user profile.
1.2.2. What personal data do we collect in connection with your use of our platform (the app)?
When you use our app, we will collect data from the services that you use and how you use them. Communication between you and other users via the platform will also be collected. Moreover, we will also collect your IP address and your location data.
1.2.3 What is the purpose of collecting personal data in connection with the creation of your user profile, your use of the platform and in your communications with us?
The purpose of this data collection and processing is to fulfill the agreement that we have with you. Furthermore, the purpose of processing data is also to be able to use your information in order to operate our business, carry out advertising, improve our existing platform and customer service, develop new services and to personalize and target our platform services for you. In addition, we may also use data about your purchases in order to comply with various legal requirements including requirements on bookkeeping and accounting.
1.2.4. Legal basis
The legal basis for this processing is Article 6 (1) (b), (c) and (f) of the General Data Protection Regulation (EU 2016/679).
1.3. Newsletters, push notifications etc.
1.3.1. Collection of data through newsletters, push notifications, etc.
When you sign up to our newsletter (which can be sent via email, SMS and social media), for the receipt of push notifications and/or other forms of electronic marketing, we track what marketing communications you open and what you click on within our marketing.
1.3.2. What is the purpose of data collection through newsletters?
The purpose is to pursue our interest in being able to deliver relevant marketing materials to you.
1.3.3. Legal basis
The legal basis for this processing is Article 6 (1) (a) of the General Data Protection Regulation (EU 2016/679).
1.4. Communication between you and us
1.4.1 Collection of personal data in your communications with us
When you communicate with us, we collect the data that you provide to us yourself. This includes information such as name, address, email address, telephone number, details on what services you use and information about your inquiries.
1.4.2 What is the purpose of data collection through communications between yourself and us?
The purpose is to pursue our interest in being able to deliver relevant marketing materials to you.
1.4.3. Legal basis
The legal basis for this processing is Article 6 (1) (b) of the General Data Protection Regulation (EU 2016/679).
2. Recipients of personal data
2.1 The transfer of your data as a part of the purchase and delivery process
2.1.1. Transfer of your data to the user you will carpool with
We pass on information pertaining to your name, telephone number, meeting point and destination to the user you will be carpooling with.
2.1.2. Transfer of payment information
All payment transactions on Nabogo.com or our platform (the app) are handled via our payment service provider: Quickpay and Stripe. The payment service providers store all payment information in accordance with the international PCI Standard (Payment Card Industry – Data Security Standard). When you use a payment method on Nabogo.com or our platform, we do not have access to your payment information – only our payment service providers have access to this information.
2.3. Transfer of your data to external partners
We may transfer your information to external partners who process data on our behalf. These external partners can be, for example, partners who handle the technical operation of and make improvements to our systems and website, the dispatch of newsletters and targeted marketing, including retargeting, and for your rating of our company and products. External partners are data processors, which means that they work under our instructions and that they process data for which we are the data controller. No data processor may use the data collected for any purpose other than to fulfill their agreement with us and data processors are naturally subject to confidentiality around such data. Written data processing agreements are concluded with all data processors.
2.4. Transfer of your data to data processors located outside of the EU/EEA
To the extent that we use data processors established outside of the EU/EAA, this will always be under the observance of valid transfer guarantees in the form of standard contractual clauses; cf. article 46 of the General Data Protection Regulation.
3. Your rights
3.1. The right to access
You have the right at all times to request information from us, including information on what data we have stored about you, the purpose for retrieving this information, what categories of personal data and recipients of the personal data there may be and information on the origin of the data.
You have the right to receive a copy of the personal data that we hold and process about you. If you would like a copy of your personal data, please send a written request for this to email@example.com. You will be asked to verify that you are the person you are claiming to be.
3.2. The right to rectification
You are entitled to have any incorrect personal data about yourself corrected by us. If you discover that there is an error in the data that we have collected about you, we would encourage you to let us know in writing so that the information can be corrected. You will be asked to verify that you are the person you are claiming to be.
3.3. The right to erasure
In certain cases, you are entitled to have all or parts of the personal data that we hold on you deleted; for example, in the event that you withdraw your consent and we have no other legal basis to continue with data processing. To the extent that the continued processing of your data is necessary – for example in order for us to comply with our legal obligations, or to determine, exercise or defend a legal claim – then we shall not be obligated to delete your personal data. You will be asked to verify that you are the person you are claiming to be.
3.4. The right to restrict processing to storage
In certain cases, you have the right to have the processing of your personal data restricted exclusively to storage – for example, in the event you consider that the data we are processing on you is incorrect.
3.5. The right to data portability
In certain cases, you have the right to have the personal data that you yourself have provided to us delivered in a structured, commonly used and machine-readable format. You have the right to transfer these data to another data controller.
3.6. The right to object
3.7. The right to withdraw consent
You have the right to, at any given time, withdraw your consent to the processing of personal data, including consent to receive our newsletter.
3.8. The right to complain
You have the right to file a complaint at any time with the relevant data protection authority, e.g. the Danish Data Protection Agency.
You can exercise your rights by writing to the data controller at firstname.lastname@example.org or by phone on (+45) 71792244.
4. The deletion of personal data
4.1. Data collected in connection with your use of Nabogo.com; c.f. point 1.1.
4.2. Data collected in connection with your use of the platform; cf. point 1.2.
Data which we collect in connection with your use of the platform, cf. point 1.2, will generally be deleted as soon as the customer relationship between you and us is concluded. However, we reserve the right to store the information for a longer period of time if we have a legitimate legal basis for a longer storage period – for example, in the case that doing so is necessary in order for a legal claim to be established, exercised or defended, or if storage is necessary in order for us to comply with legal requirements.
4.3. Data collected through newsletters, push notifications etc; cf. point 1.3.
Data collected in connection with your subscription to our newsletter, push notifications and other electronic marketing, cf. point 1.3, will be deleted when your consent for electronic marketing is withdrawn, except when we have another legal basis for processing of the data concerned.
4.4. Data collected through your communications with us; cf. point 1.4.
Data collected through your communications with us, cf. point 1.4, will generally be deleted as soon as the customer relationship between us and you is concluded. However, we reserve the right to store the information for a longer period if we have a legitimate legal basis for a longer storage period – for example, in the case that doing so is necessary in order for a legal claim to be established, exercised or defended, or if storage is necessary in order for us to comply with legal requirements.
5.1. Technical measures
We have implemented appropriate technical and organizational security measures to protect your personal data against being accidentally or unlawfully destroyed, lost, amended or impaired and against being brought to the attention of unauthorized parties or misused.
5.2. Employee access to your information
Only employees with a valid reason to do so, can access your personal data in order to perform their job will have access to the data in question.
Last updated: 29th June 2022