Privacy and Cookie Policy for CrowdEyes

Last updated: 27 May 2026

1
Data Controller
1.1

CrowdEyes is the data controller for the processing of personal data collected via www.crowdeyes.dk and in connection with enquiries from existing and potential customers, the purchase of access to the company’s Lost&Found platform and the subsequent administration of the customer relationship.

1.2

Contact details of the data controller:

  • Company name: CrowdEyes
  • CVR no.: 36481528
  • Address: Kildegårds Plads 1, 1. 6., 2820 Gentofte, Denmark
  • E-mail: info@crowdeyes.dk
  • Telephone: +45 70226042
2
Who this policy applies to and what information is processed
2.1

This policy applies to (1) visitors to CrowdEyes’ website, (2) persons who contact CrowdEyes via contact form, e-mail, telephone or demo request, (3) customers and contact persons at CrowdEyes’ customers, and (4) users and representatives of customers who purchase access to the Lost & Found platform.

2.2

When a person visits the website, CrowdEyes may process information such as IP address, browser information, device information, cookie IDs, timestamps, information about user behaviour on the website and other technical log information, to the extent this follows from the specific setup of the website and the selected cookie settings.

2.3

When a person completes a contact form, requests a demo or otherwise contacts CrowdEyes, CrowdEyes may process name, company, job title, telephone number, e-mail address, the content of the enquiry and any other information provided by the person.

2.4

When purchasing access to the Lost&Found platform, CrowdEyes may process the following information about the customer and the customer’s contact person:

  • Company name
  • CVR/CPR no.
  • Company address
  • Company telephone number
  • Company e-mail
  • Payment card information
  • Name of contact person
  • Job title of contact person
  • E-mail address of contact person
  • Information necessary for the creation, administration and support of the customer relationship
2.5

CrowdEyes only processes personal data that is relevant and necessary for the specific purposes for which the data has been collected.

3
Purposes of the processing
3.1

Personal data is processed for the following purposes:

  • Providing access to the website and ensuring its functionality
  • Responding to enquiries, demo requests and other requests
  • Creating and administering customer relationships
  • Completing sales and providing access to the Lost&Found platform
  • Customer service, support and ongoing communication with the customer
  • Invoicing, bookkeeping and documentation of transactions
  • Preventing misuse, ensuring stable operation and enforcing CrowdEyes’ rights
  • Preparing statistics and improving the website, platform and user experience, where this is lawful
  • Complying with legal requirements
4
Legal basis for processing
4.1

CrowdEyes generally processes the information on the following legal bases:

  • GDPR Article 6(1)(b), where the processing is necessary to complete a purchase, create the customer and provide access to the Lost&Found platform.
  • GDPR Article 6(1)(c), where the processing is necessary to comply with legal obligations, including bookkeeping and accounting requirements.
  • GDPR Article 6(1)(f), where the processing is necessary for the pursuit of legitimate interests, for example operation, security and documentation relating to the Lost&Found platform or the handling of ongoing business contact with the customer’s contact person.
  • GDPR Article 6(1)(a), where the processing is based on consent, including the use of non-essential cookies or similar technologies where consent is required.
5
Payment information
5.1

Payment information is processed only to the extent necessary to complete charging and payment for access to the platform.

5.2

If payment cards are used, this is handled by an external payment provider, and card data is then processed by the payment provider in accordance with its own security and compliance requirements.

6
Recipients of information
6.1

CrowdEyes may disclose or make personal data available to relevant recipients where necessary for the operation of the company and the website, including:

  • Payment providers
  • Hosting and operations providers, e.g. providers of platform, domain, DNS, technical support and system maintenance
  • Providers of e-mail, document management and administration services
  • Providers of technical support and system maintenance
  • Auditors, advisers and other professional business partners
  • Public authorities where required by law
6.2

An overview of significant suppliers that may process personal data in relation to CrowdEyes’ website is set out in the appendix “Supplier Overview for CrowdEyes Website”.

6.3

When CrowdEyes uses external suppliers that process data on behalf of the company, the allocation of roles between data controller and data processor must be clarified, and a data processing agreement must generally be entered into if the supplier is a data processor.

7
Transfer to third countries
7.1

As a general rule, CrowdEyes does not transfer personal data to countries outside the EU/EEA unless this is necessary for the provision of a service used. In such case, the transfer will take place on a valid transfer basis under data protection rules.

7.2

If personal data is transferred to the United States or other third countries, this will only take place on the basis of a valid transfer mechanism under data protection rules, for example the European Commission’s adequacy decision, the EU-U.S. Data Privacy Framework or the European Commission’s Standard Contractual Clauses.

8
Storage and deletion
8.1

Personal data is stored for as long as necessary to administer the customer relationship, establish, exercise or defend legal claims and comply with CrowdEyes’ legal obligations. Bookkeeping-relevant information is stored in accordance with applicable legislation.

8.2

Enquiries via contact form, e-mail or demo requests are generally stored only for as long as necessary to handle the enquiry and the subsequent dialogue, unless a customer relationship arises or there is another legitimate need for longer storage.

8.3

Technical log data and statistical information are stored for the period resulting from the specific system setup and the selected tools, after which the data is deleted or anonymised, unless longer storage is necessary for security or documentation purposes.

9
Rights of data subjects
9.1

Persons registered by CrowdEyes under the GDPR have a number of rights, including the right of access, rectification, erasure, restriction, objection and, in certain cases, data portability.

9.2

If the processing of personal data is based on consent, the data subject may withdraw consent at any time. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.

9.3

Requests to exercise rights may be sent to CrowdEyes at the contact e-mail address stated above in section 1.2.

10
Complaint to the Danish Data Protection Agency
10.1

Persons registered by CrowdEyes under the GDPR may complain about CrowdEyes’ processing of personal data to the Danish Data Protection Agency, which supervises compliance with data protection rules in Denmark.

10.2

The contact details of the Danish Data Protection Agency are available at www.datatilsynet.dk.

11
Cookies
11.1

CrowdEyes uses cookies and similar technologies to make the website function, prepare statistics and improve the user experience. Necessary cookies are set without consent. Other cookies are only used if you have given active, informed and voluntary consent via our cookie banner, which is displayed the first time you visit the website.

11.2

You may change or withdraw your consent at any time via the link to cookie settings on the website.

12
Changes
12.1

CrowdEyes may amend this Privacy and Cookie Policy from time to time when necessary due to changes in the website, platform, business procedures or applicable law.

```