EIVA offers access to an online Learning Management System (hereafter ‘LMS’), EIVA eLearning, which registers selected personal information, as defined below.
EIVA acts as data controller cf the EU general data protection regulation (GDPR). The LMS core service to the customer is provided by a third party, and occasionally we need to share your personal data with our service providers, who act as a data processer cf GDPR. This includes the use of an external third-party payment processor.
Within EIVA (as data controller)
Outside EIVA (as data processor)
You can read more here
This data can include your first name, surname, email address and country. We will consider this information as business information, thus giving us lawfulness of processing as a contractual arrangement cf GDPR article 6. We strongly encourage you to provide us with an email address that is only used for business purposes in order separate concerns.
If you have purchased access to EIVA eLearning, your address will be processed in order to issue an invoice, and your VAT number may also be collected when necessary. For orders done via credit card, card information and related authorisation is collected.
The information we gather is used for the following purposes:
Retention periods are only so long as necessary. Your personal data is retained in the LMS while an agreement is current between you and EIVA for access to EIVA eLearning. Once an agreement is terminated, where no contract exists between you and EIVA regarding access to EIVA eLearning, your personal data is kept for 30-60 days and then deleted in the LMS, while your information is kept in our CRM (customer relationship management system) and financial records system to document customer history for five years since last recorded dialogue with you.
Cookies are small text files that are placed on your computer by websites that you visit. They are widely used to make websites work, or work more efficiently, as well as to provide information to the owners of the website.
In relation to the LMS, EIVA does not collect or access cookies, however its partners may do so. EIVA takes all reasonable measures to ensure that the aforementioned LMS provider and payment processor adhere to all lawful uses of cookies. Please refer to the policies of our LMS and for information on their use of cookies.
Personal information is never shared with third parties unless you explicitly give us your consent to do so. We do not collect personal information unless you have provided your information by registering, buying products, participating in a survey or the like. Personal information is used to complete the purchase or accomplish the service for which the information was provided.
If you would like access to the information registered about you in our system, please contact us (see below). If incorrect data is registered, or if you have other objections, please contact us. Under the provisions of the Danish Privacy Act, you have the right to access information registered about you, and you may object to having your data registered.
In accordance with the General Data Protection Regulation (GDPR) regulation, your personal information must be saved securely and confidentially. We save your personal information on computers which have limited access and which are stored in controlled facilities. Our security measures are inspected regularly to assess if your personal information is being handled securely and in continued consideration of your rights as a user. We cannot, however, guarantee 100% security when transferring data via the Internet. This means that there may be a risk that others can gain unjustified access to your information when data is transmitted and stored electronically. Therefore, you provide your personal information at your own risk.
Personal information is deleted or made anonymous when the purpose for which it was collected is no longer relevant. The rapid development of the Internet means that changes in our processing of personal information may be necessary. We therefore reserve the right to update and amend these guidelines for treatment of personal information. Under the provisions of the GDPR, you have the right to access information about personal information relating to you.
If the information or data processed about you is incorrect or misleading, you have the right to demand that it be corrected, deleted or blocked. You may at any time object to our treatment of your personal information. You can also at any time withdraw your consent, and you have the right to complain about the treatment of information and data relating to you.
Complaints are to be submitted to the Danish Data Protection Agency, cf. EU GDPR art. 77 and the Danish Privacy Act § 58, paragraph 1 (Datatilsynet, Carl Jacobsens Vej 35, 2500 Valby, Denmark).
For any further queries related to privacy, or exercising your rights under GDPR, you are encouraged to contact EIVA’s Data Protection Officer via dpo@eiva.com.
Such queries will be addressed within one month of receipt. In case of any delay in addressing such requests, the delay and the reason therefore will be communicated to you within a month of receipt of request.
For any other queries regarding the LMS, you are encouraged to contact EIVA’s eLearning team via eLearning@eiva.com.