Appendix A – Information about the processing
A.1.1. The purpose of the data processor's processing of personal data on behalf of the data controller
A.1.1.2 Support
The purpose of the processing is to provide support services to the data controller as further specified in the Service Agreement regarding supply of Services entered into between the parties. This includes specific tasks requested by the data controller.
A.1.2 The data processor's processing of personal data on behalf of the data controller shall mainly pertain to (the nature of the processing)
A.1.2.2 Support
The data processor delivers support to the data controller’s employees etc. Any work undertaken by the data processor as part of this support, and which includes processing of personal data on behalf of the data controller, will be based on a specific request of the data controller.
The data processor will provide support to the data controller as regards the data controller's day-to-day operation of the data controller's IT systems. At the request of the data controller, the data processor may take over the data controller's management of the data controller's IT system in the workplace or servers via TeamViewer or Remote Desktop for a specific task. In addition, the data processor may access systems for the purpose of troubleshooting and operational tasks.
In case of software failures or failures in the data controller's IT system in general, the data processor may obtain the database from the data controller for the purpose of troubleshooting, making corrections, etc. This is always subject to prior Service Agreement.
In specific situations, processing may include organisation, structuring, facilitation, temporary storage, filtration, troubleshooting, adaptation or alteration, retrieval, consultation, use, alignment, combination, restriction or erasure of personal data when so required in connection with the supply of the agreed Services, or if so required in order to comply with a request from the data controller.
A.1.3. The processing includes the following types of personal data about data subjects
General personal data (cf. Article 6 of the General Data Protection Regulation):
☒ Name
☒ Address
☒ Email
☒ Phone number
☒ Financial information
☐ Other personal data as specified
… Specify other categories
Sensitive personal data (cf. Article 9 of the General Data Protection Regulation):
☒ Racial or ethnic background
☒ Political opinion
☒ Religious beliefs
☒ Philosophical beliefs
☒ Trade union membership
☒ Health issues, including abuse of medicine, narcotics, alcohol, etc.
☒ Sexual matters
Information about the private life of individuals (cf. Article 8 of the Danish Data Protection Act):
☒ Criminal matters
☒ Relevant social problems
Other information about purely private matters not mentioned above:
☒ Other private matters
Information about National Identification Number (CPR) (cf. Article 11 of the Danish Data Protection Act):
☒ National Identification numbers (CPR)
A.1.4. The processing includes the following categories of data subjects
Categories of data subjects, identified or identifiable natural persons comprised by the data processor's processing:
☒ Employees
☒ Children
☒ The data controller's own customers
☐ Other categories as specified.
… Specify other categories
