What is the General Data Protection Regulation?
In legal terms, the GDPR is a European Union law intended to strengthen and unify data protection rules and rights for the benefit of EU citizens. Put in other words, to give control of personal data back to the user. While great news for individuals, it presents complex problems for companies.
The new rules apply to all organizations (of any size) that provide goods and services to the EU or that utilize tracking technologies (like cookies or tracking pixels) to monitor EU users’ behavior.
While simple in theory, the law is dense and complex and requires a comprehensive understanding of the data you collect, whether it's personal or not, how you store and use it, and how you expose or remove data upon request. To do so, you must look at every single process and line of software code to outline your data processes.
In most cases, your data collection will require valid consent following May 25 - not just going forward, but also from all your existing users. Under the GDPR, consent can't be implied or inferred from someone's actions. Instead, valid consent must be specific to the data being collected, by an affirmative action that is unambiguous.
Learn more about the General Data Protection Regulation (GDPR)
1. Personal Information - What we collect and why
We offer certain site features, services, applications, and tools that are available only through the use of the following tracking technologies. You are always free to block, delete, or disable these technologies if your browser, installed application, or device so permits. However, if you decline cookies or other similar technologies, you may not be able to take advantage of certain site features, services, applications, or tools.
Generally, these technologies allow our sites, services, applications, and tools to store relevant information in your browser or device and later read that information in order to identify you to our servers or internal systems. Where applicable, we protect our cookies and other similar technologies to help ensure that only we and/or our authorized service providers can interpret them by assigning them a unique identifier that is designed for interpretation only by us.
This website collects and uses personal information for the following reasons:
1.1. Google Analytics
Like most websites, this site uses Google Analytics (GA) to track user interaction. We use this data to determine the number of people using our site, to better understand how they find and use our web pages and to see their journey through the website.
Although GA records data such as your geographical location, device, internet browser and operating system, none of this information personally identifies you to us. GA also records your computer’s IP address which could be used to personally identify you but Google do not grant us access to this. We consider Google to be a third party data processor (see section 2 below).
Disabling cookies on your internet browser will stop GA from tracking any part of your visit to pages within this website.
Learn more about Google Analytics.
1.2. Google Tag Manager
We are constantly trying to improve the customer experience on our website by providing visitors with more personalized and targeted campaigns and offerings. To do so, we use Google Tag Manager (GTM).
GTM is a little snippet of code that helps us track user behavior across our sites and then pushes the data to our Google Analytics account. Then, all the data is perfectly organized and ready for us to assess and review for potential site improvements and remarketing campaigns.
We consider Google to be a third party data processor (see section 2 below).
Learn more about Google Tag Manager.
1.3. Contact, signup and download forms etc.
Should you choose to contact us using i.e. the contact/signup form on our pages or download gated content from our website, your information will be stored in our backend and collated into an email and sent to us over the Simple Mail Transfer Protocol (SMTP).
1.4. E-mail newsletter
On the website of Migatronic A/S, users are given the opportunity to subscribe to our enterprise's newsletter. A confirmation e-mail will be sent to the e-mail address registered by a data subject for the first time for newsletter shipping, for legal reasons, in the double opt-in procedure. This confirmation e-mail is used to prove whether the owner of the e-mail address as the data subject is authorized to receive the newsletter.
The personal data collected as part of a registration for the newsletter will only be used to send our newsletter. In addition, subscribers to the newsletter may be informed by e-mail, as long as this is necessary for the operation of the newsletter service or a registration in question, as this could be the case in the event of modifications to the newsletter offer, or in the event of a change in technical circumstances.
The subscription to our newsletter may be terminated by the data subject at any time. The consent to the storage of personal data, which the data subject has given for shipping the newsletter, may be revoked at any time. For the purpose of revocation of consent, a corresponding link is found in each newsletter. It is also possible to unsubscribe from the newsletter at any time by contacting us.
The newsletter of Migatronic A/S contains so-called tracking pixels. A tracking pixel is a miniature graphic embedded in such e-mails, which are sent in HTML format to enable log file recording and analysis. This allows a statistical analysis of the success or failure of online marketing campaigns. Based on the embedded tracking pixel, Migatronic A/S may see if and when an e-mail was opened by a data subject, and which links in the e-mail were called up by data subjects.
Such personal data collected in the tracking pixels contained in the newsletters are stored and analyzed by the controller in order to optimize the shipping of the newsletter, as well as to adapt the content of future newsletters even better to the interests of the data subject. These personal data will not be passed on to third parties. Data subjects are at any time entitled to revoke the respective separate declaration of consent issued by means of the double-opt-in procedure. After a revocation, these personal data will be deleted by the controller. Migatronic A/S automatically regards a withdrawal from the receipt of the newsletter as a revocation.
1.5. Website cookies
- In connection with log-in information: "DW_Extranet" (only if the solution contains Extranet)
”DW_Extranet” is a ”persistent cookie”. It contains encrypted information about username and password to the extent you are using a log-in function on the Website. The lifespan of the cookie is one month, and it will therefore be deleted one month after the last time you have used the Website's log-in function. This cookie is used to remember you when you return to the Website, so that you won't have to log in again.
- In connection with the date of your last visit: ”Dynamicweb.VisitDate”
”Dynamicweb.VisitDate” is a persistent cookie. it contains information about the date of your last visit to the Website and is used in connection with statistics. The cookie has a one year lifespan and it is therefore deleted one year after your last visit to the Website.
- In connection with previous visits: ”Dynamicweb.VisitorID”
”Dynamicweb.VisitorID” is a persistent cookie. It contains a unique ID which you have been given upon your visiting the Website. It is used in connection with statistics. The cookie has a one year lifespan and it is therefore deleted one year after your last visit to the Website.
- In connection with current session: ”Dynamicweb.SessionVisitor”
"Dynamicweb.SessionVisitor" is a session based cookie. It preserves users states across page requests.
- In connection with each session: "ASP.NET_SessionID"
This cookie preserves the visitor's session state across page requests.
- In conncection with statistics: "_ga"
"_ga" is a 2 year HTTP cookie. Registers a unique ID that is used to generate statistical data on how the visitor uses the website.
- In conncection with each session: "_gat"
"_gat" is a session cookie, used by Google Analytics to throttle request rate.
- In connection with statistics: "_gid"
"_gid" is a session cookie. Registers a unique ID that is used to generate statistical data on how the visitor uses the website.
- In connection with marketing: "ads/ga-audiences"
"ads/ga-audiences" is a session cookie. Used by Google AdWords to re-engage visitors that are likely to convert to costumers based on the visitor's online behaviour across websites.
- In connection with marketing: "fr"
"fr" is a HTTP cookie stored for 3 months. Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers.
- In connection with marketing: "tr"
"tr" is a session based tracking pixel. It tracks the actions that users take on the website using both standard events and custom events.
2. Our Third Party Data Processors
We use a number of third parties to process personal data on our behalf. These third parties have been carefully chosen and all of them comply with the legislation set out in the EU General Data Protection Regulation 2018 (GDPR).
- Microsoft Office 365 (Privacy Statement)
- Microsoft Dynamics 365 (Security and Compliance)
3. How Long do We Store Your Information
We will retain your personal information for the period necessary to fulfill the purposes outlined on our 'Consent page'. You can always contact us, if you want your personal data 'erased' from our databases (see Section 6). We will respond without undue delay (and in any event within one month, although this can be extended in difficult cases).
4. Data Breaches
We will report any unlawful data breach of this website’s database or the database(s) of any of our third party data processors to any and all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen.
5. Data Controller
The data controller of this website is: Svejsemaskinefabrikken Migatronic A/S, with company number (CVR): 34485216 whose registered office is:
Phone: +45 96 500 600
6. Right to Access and To Be Forgotten
Please contact us, if you want to request access to your personal information stored in our databases, or if you want your personal data 'erased' from our databases. We will respond without undue delay (and in any event within one month from receiving your request, although this can be extended in difficult cases).
Phone: +45 96 500 600
7. Privacy Questions
Phone: +45 96 500 600
When a privacy question or access/download request is received we have a dedicated team which triages the contacts and seeks to address the specific concern or query which you are seeking to raise. Where your issue may be more substantive in nature, more information may be sought from you.