PRIVACY NOTICE

LINDBERG A/S (hereinafter “LINDBERG”) collects and process (stores, uses, …) personal data about you when you interact with us, namely if you are an end user of our products, a visitor of our website or social media profiles, a representative of our customers or suppliers, an influencer or has a similar relationship with us. 

Responsible use of personal data is of utmost importance to LINDBERG’s goals and reputation. In this privacy notice you can read about how and why we collect personal data about you, how the said personal data is used, when it is deleted and how you can exercise your rights in relation to your personal data.


1. About LINDBERG

LINDBERG A/S is a Danish company registered under the Danish Business Registration No. 12940033.

LINDBERG designs, develops, manufactures, markets and sells LINDBERG frames. LINDBERG is a unique mindset in the international eyewear industry and is the largest player world-wide among the independent, design-oriented high-end brands.

LINDBERG is acting as a data controller for all processing of personal data described in this privacy notice. If you have any questions regarding our processing of your personal data, please contact us:

LINDBERG A/S
Bjarkesvej 30
8230 Åbyhøj
Denmark
Tel. +45 8744 4000
Email GDPR@LINDBERG.com

2. Our processing of personal data

LINDBERG collects and use personal data in many different situations and the purpose of the collection, what the data is used for and when it is deleted depends on the specific circumstances described below.

Unless otherwise stated below, LINDBERG do not use profiling or automated individual decision making, nor do we transfer your personal data outside the EU/EEA except our departments in China and Philippines who have access to some of our data and with whom contracts based on the EU Commission Standard Contractual Clauses (SCC) have been entered. You can request a copy of the contracts by contacting us (see section 1 above).

2.1 When you visit our website

When you visit our website, some personal data may be collected through cookies or similar tracking technologies. You can find more details on your use of cookies as well as manage your preferences in our Cookie Policy found here: https://lindberg.com/about/cookie-policy.

In addition, if you have a user on our partner site, we process your username and password as well as your name and other basic contact information. We process this information to service the website and enable its functionality and our legal basis for doing so is our legitimate interest in serving you the site (Article 6(1)(f) of the GDPR). The information is stored for the duration of your (or your employer’s) relationship with LINDBERG.

2.2 When you visit our social media profiles

If you visit our profiles/pages on social media platforms, we are in some cases acting as joint controller with the platform for example generates statistic about your use of our site. LINDBERG has only access to the information in an aggregated format.

Our joint controllership with each platform is governed by a joint controller addendum. You can find more information about joint controllership by reading the addendum:



2.3 If you are a business partner of LINDBERG (or an employee of a business partner)

If you are one of our business partners (a supplier, a customer trading our products, etc.), or a representative of a supplier or customer, we may process your personal data as part of the business relation such as your contact details, your correspondences with us, order confirmations, invoices, etc. for the purpose of maintaining the business relationship and complying with legal obligations.

We may also conduct credit scoring of business partners. The credit scoring is not targeting you personally but only targeting the business you represent, unless you are trading as a one-man business. In such case financial details will be collected from third-party sources to conduct the scoring. Credit scoring may be considered profiling.

Our legal basis for processing the information in question is our legitimate interest in maintaining the business relationship (Article 6(1)(f) of the GDPR), as well as our legal obligation, namely to do our bookkeeping (Article 6(1)(c) of the GDPR).

The personal data will be stored for up to 5 years after the end of the business relationship.

2.4 Events, trade shows, seminars, etc. arranged by us

If you sign up for events, trade shows, seminars or the like, which is arranged by us, we may process your personal data for the purpose of registration, attendance administration and issuing of course certificates for seminars, such as your contact details and participation lists etc. Such information may also be stored for the purpose of inviting you to similar events.

Our legal basis for processing the information in question is our legitimate interest in the administration of current events and marketing of future events and seminars, see Article 6(1)(f) of the GDPR.
Personal data regarding participation is generally stored for up to 5 years after the event.

We may also take photos during our events and seminars. However, we will always ask for your consent before publishing photos where you are easily identifiable on the internet (including social media platforms), see Article 6(1)(a) of the GDPR.

2.5 If you are an end user of our products

Normally, we do not process any personal data about our end users of our products as your point of contact as an end user is your optician.
However, we may occasionally process your personal data if you or your optician contacts us, particularly if you lodge a complaint or inquiry directly to us. In this case, we process the information sent to us by you or your optician, such as your contact details, the content of email correspondences with us and information regarding your spectacle frames or inquies.

In addition, if you have ordered a specific engraving into the spectacle frame, we may store the engraving details for the purpose of being able to find the frame you order in our systems in case of inquiries.
We may process your personal data to provide customer support and to handle complaints.

Our legal basis for processing the information in question is our legitimate interest in processing your complaint (Article 6(1)(f) of the GDPR) as well as our legal obligation, namely to do our bookkeeping (Article 6(1)(c) of the GDPR). Data in relation to complaints may be stored for up to 20 years after completing a complaint due to our obligations under relevant laws.

2.6 Direct marketing

If you have signed up to our newsletter (either as one of our business partners, representative of a business partner or as a end user of our products), we process your personal data such as your contact details and information about your preferences in relation to marketing or communication.

Our legal basis for processing the information in question is Article 6(1)(a) of the GDPR (consent). You can withdraw this consent at any time by unsubscribing the newsletter via the link at the bottom of the email, by following the instructions in the electronic marketing or by contacting us.

The personal data is stored as long as you receive our newsletter or electronic marketing until you unsubscribe. If you unsubscribe from the newsletter, the information may continue to be stored in your profile on our website (if you have one).

3. Data integrity and data security

LINDBERG strives to ensure that all personal data we process is accurate and up to date. We therefore ask you to always notify us of any changes in your circumstances (e.g. change of address), so that we can ensure, that the information is always correct and up to date.

It is LINDBERG’s policy to protect personal data by taking adequate technical and organizational security measures. When your personal information is no longer needed, we will ensure that it is deleted in a safe way in terms of security.

4. Your rights

You have the right to assert your rights under the GDPR:

  • Access: You have the right of access to receive further details about our processing of your personal data, as well as receiving a copy of the data in question.
  • Rectification: You have the right to have personal data about you corrected, updated and completed.
  • Erasure: In certain cases, you have the right to have information about you deleted, before the time of our regular erasure occurs.
  • Restriction: In certain cases, you have the right to have the processing of your personal data restricted. If processing is restricted, we may only process the information – except for retention – with your consent, or for the purpose of establishing, asserting or defending legal claims, or to protect a person or important grounds of public interests.
  • Objection: In certain cases, you have the right to object to our otherwise lawful processing of your personal data.

We are constantly working to give you greater control over your personal data. If you have a partner login, you can check and update your profile information on the partner website: https://lindberg.com/en/partners

If you would like to exercise your rights, please contact us by sending us an email (see contact details under section 1 above). Your request will be processed in accordance with applicable data protection laws. If necessary, we may contact you and ask you to provide additional information to properly handle your request.

Complaints regarding LINDBERG’s processing of your personal data can be made to the Danish Data Protection Agency at:

Datatilsynet
Carl Jacobsens Vej 35
2500 Valby
Denmark
E-mail: dt@datatilsynet.dk

5. Updates

LINDBERG evaluates and updates this Privacy Policy on a regular bas. We therefore recommend regularly checking this Privacy Policy for any changes that may affect the processing of your personal information.

In case of changes which substantially impacts our processing, we will notify you directly of the changes. In addition, the latest version of our privacy policy will always be available on this website.


This Privacy notice was last updated on 16 October 2020.