Privacy Policy

Last updated:

1. Data Controller

The data controller responsible for your personal data is:

Drizelonzli
Bøgballevej 3, 8740 Brædstrup, Denmark
Email: service@drizelonzli.world
Phone: +45 75 75 25 00

Under Danish business and consumer transparency practice, our CVR (Central Business Register / VAT company registration) number is available on request using the same contact details as above.

2. What Data We Collect

We may collect and process the following categories of personal data:

• Contact information: Name, email address, and message content when you use our contact form.
• Technical data: IP address, browser type and version, operating system, referring URL, pages visited, time and date of access.
• Cookie data: Information collected through cookies and similar technologies as described in our Cookie Policy.

We do not knowingly collect personal data relating to children under 16 through this website. If you believe a child has provided us with personal information, please contact us using the details in Section 1 so we can delete it.

3. Purposes of Processing

We process your personal data for the following purposes:

• To respond to your inquiries submitted through our contact form.
• To operate, maintain, and improve our website.
• To analyze website usage and optimize user experience.
• To comply with legal obligations.
• To protect our legitimate interests, including preventing fraud and ensuring website security.

4. Legal Basis for Processing

We process your data based on the following legal grounds under the General Data Protection Regulation (EU) 2016/679 (GDPR), as supplemented in Denmark by the Danish Data Protection Act (Lov om supplerende bestemmelser til forordning om beskyttelse af fysiske personer i forbindelse med behandling af personoplysninger i Det Europæiske Fællesskab — the “Data Protection Act”):

• Consent (Art. 6(1)(a) GDPR): When you submit a contact form or accept optional cookies, you provide explicit consent for the processing of your data for the stated purpose.
• Legitimate interests (Art. 6(1)(f) GDPR): We may process technical data to ensure website security and improve our services, where such processing does not override your fundamental rights.
• Legal obligation (Art. 6(1)(c) GDPR): We may process data to comply with applicable laws and regulations.

We do not carry out solely automated decision-making, including profiling, which produces legal effects concerning you or similarly significantly affects you within the meaning of Article 22 GDPR.

5. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected:

• Contact form data: Retained for up to 12 months after your inquiry has been resolved, unless a longer retention period is required by law.
• Technical data: Server logs are retained for up to 90 days.
• Cookie data: Retention periods vary by cookie type. See our Cookie Policy for details.

6. Your Rights

Under GDPR, you have the following rights regarding your personal data:

• Right of access: You may request a copy of the personal data we hold about you.
• Right to rectification: You may request correction of inaccurate or incomplete data.
• Right to erasure: You may request deletion of your personal data under certain circumstances.
• Right to restrict processing: You may request limitation of how we process your data.
• Right to data portability: You may request your data in a structured, commonly used, machine-readable format.
• Right to object: You may object to processing based on legitimate interests.
• Right to withdraw consent: You may withdraw your consent at any time without affecting the lawfulness of processing based on consent before withdrawal.
• Right to lodge a complaint: You may lodge a complaint with the Danish Data Protection Agency (Datatilsynet); see Section 9.

To exercise any of these rights, please contact us at service@drizelonzli.world.

7. Data Sharing and Transfers

We do not sell, trade, or rent your personal data to third parties. We may share data with:

• Service providers (processors): Trusted third-party providers who assist in operating our website (e.g., hosting providers), bound by data processing agreements where required by Article 28 GDPR.
• Technical infrastructure providers: When you load our pages, your browser may connect to third-party networks to retrieve assets (for example, fonts or icon libraries). Those providers may receive technical data such as your IP address and request metadata. See our Cookie Policy for further detail.
• Legal authorities: When required by law, court order, or governmental regulation.

Personal data you provide through the contact form is obtained directly from you. We do not obtain it from brokers or public lists for that purpose.

If data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission, or transfers to countries covered by an adequacy decision.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

• HTTPS encryption for all data transmitted between your browser and our servers.
• Regular security assessments and updates.
• Access controls limiting data access to authorized personnel only.
• Secure data storage with appropriate backup procedures.

9. Supervisory Authority

If you believe that your data protection rights have been violated, you have the right to lodge a complaint with the Danish Data Protection Agency (Datatilsynet):

Datatilsynet
Carl Jacobsens Vej 35
2500 Valby, Denmark
Website: https://www.datatilsynet.dk

10. Denmark: marketing and electronic communications

Where we send electronic marketing (for example, newsletters or similar) to natural persons in Denmark, we will only do so with your prior consent, in line with the Danish Marketing Practices Act (Markedsføringsloven) and GDPR, unless another legal basis clearly applies. General contact form submissions are used only to respond to your inquiry unless you separately opt in to marketing.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically to stay informed about how we protect your data.