Disclaimer and privacy policy

1. Disclaimer

The information on this website is provided in good faith and for general information purposes only. Neither Ørsted A/S nor its consolidated companies make any warranty or representation as to the completeness or accuracy of the information. Ørsted A/S and its consolidated companies can under no circumstances be held liable for damage or loss of any kind that may arise as a result of actions performed while using or relying on the information, products or services mentioned on this website.

Certain statements on this website reflect the opinion of Ørsted A/S’s Executive Board and the Executive Board’s assumptions as well as the information available to the Executive Board, and such statements may be forward-looking. Such forward-looking statements involve known and unknown risks, uncertainties and other important factors that may cause actual results to differ significantly from the future results expressed or implied in the forward-looking statements.

Anyone who intends to make use of Ørsted A/S’s products or services must read and follow all instructions accompanying the product or service and must comply with the applicable laws, rules and regulations for the use of the product or service.

This disclaimer and the content of this website are exclusively governed by Danish law without regard to private international law. Any dispute arising out of or as a result of this disclaimer will be subject to the exclusive jurisdiction of the Danish court.

 

2. Privacy policy

When we receive personal data about you, we aim to ensure that you trust we will process your personal data in a transparent and secure manner. Thus, it is important to us that you take the time to read this privacy policy, which will inform you of how we handle your personal data.

This privacy policy applies to www.orsted.com. The purpose of this privacy policy is to describe how Ørsted collects and processes your personal data when you visit our website.

In addition to this privacy policy, our cookie policy also applies. Click the link to read more about cookies and the use of these data.

At Ørsted, we receive data about our customers, visitors, suppliers, shareholders and jobseekers, among others. Thus, we have different privacy policies on our websites (www.orsted.dk and www.orsted.com).

2.1. If you are an Ørsted customer
We refer you to the privacy policy on www.orsted.dk or our terms of delivery if you, for example, are an Ørsted customer.

2.2. If you are acting on behalf of a company
We will process personal data about you if you are acting in a business situation on behalf of a company that employs you as a their contact person for Ørsted. You can read more about how Ørsted processes personal data in the separate privacy policy.

 

3. Data controller

The legal entity responsible for collecting and processing your data at www.orsted.com is

  • Ørsted Services A/S (Ørsted)
    Company reg. no. (CVR no.): 27446458
    Kraftværksvej 53
    DK-7000 Fredericia
    Tel. +45 99 55 11 11
    info@orsted.com

 

3.1. We use personal data for the following purposes and in accordance with the above-mentioned lawfulness of processing

At Ørsted, we collect only necessary data about you. In the table below, we describe how we process your personal data. We recommend that you do not send or inform us of any sensitive information when you use our website and its features. We also encourage you not to state your CPR number.

Purpose
Categories of personal data
Lawfulness of processing 
Erasure
Using our digital services

We process your personal data when you use our digital services (website or apps).

This is done for the following purposes:

  • Delivery of service: We collect the data in order to be able to deliver a digital service requested by you.

  • Optimisation and development: We use the data to optimise and develop the user experience of www.orsted.com and the services we provide. For further details, see our cookie policy.

  • Statistics: We use the data to prepare user statistics of our website and to improve it.


We collect the data from the following sources:

  • Directly from you 

We process the following data about you:

General personal data:

  • Information about your behaviour on our digital services (e.g. number of visits and information about your way of access to our digital services, including IP address, browser and operating system, cookies, domains of origin as well as what content you read).

  • Information about clicks on our advertisements, including if you do it from the website of another organisation or company.

We process your personal data as described, in accordance with:

  • GDPR article 6 (1) (f) (legitimate interests). 
  • Our legitimate interest is to provide a service which you have requested, to improve customer experience and to develop and improve our digital services (both in terms of functionality and system).

We store your personal data as long as it is necessary for the purposes mentioned.

  • We store your general personal data for up to two years from the date on which we registered your visit to our website.

Customer communication
           
Ørsted processes your personal data in order to communicate with you and to respond to your requests (e.g. providing service to you as an investor and giving you the best possible service).

We collect the data from the following sources:

  • Directly from you

 We process the following data about you:

General personal data:

  • Name, telephone number, email address and company.
We process your personal data as described, in accordance with:

  • GDPR article 6 (1) (f) (legitimate interests). Our legitimate interest is to be able to respond to your request and to communicate with you. 

We store your personal data as long as it is necessary for the purposes mentioned.

  • We store your general personal data for up to two years from the date on which you registered.

Newsletters and information on Ørsted, including company announcements

We process your personal data in order to send you newsletters and other information from Ørsted, including company announcements, which you have requested.

We collect the data from the following sources:

  • Directly from you

We process the following data about you:

General personal data:

  • Email address.
We process your personal data as described, in accordance with:

  • GDPR article 6 (1) (a) (consent)
  • GDPR article 6 (1) (f) (legitimate interests). Our legitimate interest is to be able to provide a service that you have requested, including sending you information and company announcements from Ørsted.

We store your personal data as long as it is necessary for the purposes mentioned.

  • We store your general personal data as long as you subscribe to our newsletter and company announcements. We delete your data within one month from the date on which you cancel your subscription to our newsletter and other information about Ørsted, including company announcements.

Guest registrations

We process personal data about guests who visit Ørsted’s physical locations.

This is done for the following purpose:

  • Registration in reception: Our reception records your personal data when you arrive at one of Ørsted’s locations. 
  • Access cards and parking: Furthermore, we process your personal data for the purpose of supplying you with an access card in order to give you access to our offices. In some cases, we process your personal data in order to give you access to our parking facilities. 
  • WiFi access: We process your personal data for the purpose of giving you access to our free WiFi. 
  • Registration in the canteen: In connection with meetings in Ørsted, we record your personal data in our canteen, if lunch is taken in the canteen or if catering is supplied in connection with a meeting. 
  • CCTV: For security and crime prevention purposes, we process your personal data when you visit an Ørsted location, as there may be surveillance cameras. 

We collect the data from the following sources:

  • Directly from you
  • Your employer
  • Your Ørsted contact person 

We process the following data about you:

General personal data:

  • Name, company, position, email, telephone number, number plate and Ørsted contact person.

  • Video footage from CCTV.

We process your personal data as described, in accordance with:

  • GDPR article 6 (1) (f) (legitimate interests). 
  • Our legitimate interest is to record and manage your visit to one of Ørsted’s physical locations, including to ensure that no unauthorised persons have access.

  • It is in our interest to have a visitors log in the event of security issues arising at a later time.

  • During your visit, it is also in our interest to give you access to our free WiFi, parking facilities and to supply you with an access card in order for you to gain access to our locations.
  • For security measures and to prevent crime, it is in our interest to have CCTV at our physical locations.

  • Furthermore, it is in our interest to process your personal data in order to provide service from our canteen in connection with your visit to Ørsted.

We store your personal data as long as it is necessary for the purposes mentioned.

  • We store your personal data in connection with guest registration for up to one month after your visit.

  • We delete the data that we use to provide you with an access card when the card is returned.

  • Records in connection with the cafeteria visits and catering from the cafeteria are stored for one year from the time of registration due to internal accounting rules.

  • We delete video footage seven days after it was recorded, unless we have a lawful reason to store the footage for a longer period (e.g. to process a specific case).

Access to Ørsted logo and design files

We process your personal data when you request access to Ørsted’s design and brand centre in order to gain access to the Ørsted logo and design files.

We collect the data from the following sources:

  • Directly from you

We process the following data about you:

General personal data:

  • User name, email and password.
We process your personal data as described, in accordance with:

  • GDPR article 6 (1) (f) (legitimate interests). 
  • It is in our interest to be able to give our business partners (agencies, photographers, design companies, sponsors, journalists etc.) access to our logo and design files.

We store your personal data as long as it is necessary for the purposes mentioned.

  • We store your personal data for the duration of our business relationship with you, and as long as you need access to our logo and design files.

Recordings and use of photo and video:

  • We shoot photos, videos and audio recordings ("recordings") at various occasions, e.g. Ørsted Day, Innovation games, receptions, meetings, professional photoshoots, happenings and other events.

    The recordings may be transmitted simultaneously with the recording thereof.

    If you are identifiable on the recording we process your personal data.

    We use the recordings for commercial as well as non-commercial purposes, internally on our intranet, on websites, at conferences and for similar marketing, training, education, branding and commercial purposes.

    We may also process your personal data for managing the remuneration payments if you have entered into a license agreement with us.

 

We process the following categories of personal data about you:


Ordinary personal data:

  • Photo, video and audio recordings

Personal and contact information:

  • Name, e-mail, contact information;

If you are employed by us, we may also process employee identification information.

 

Remuneration information:

  • Banking account or other payment details and remuneration amount.           

We collect your personal data from the following source(s):

 

  •  Directly from you, when you provide your personal and remuneration
  • From group entities or subsidiaries when we share the recordings and personal information about you.
  • From third parties which includes:
    • Professional photographers
  • Hired to shoot the recordings:
    • Professional model agencies.

We process your personal data on the following legal bases:

  • GDPR article 6.1.a
    (Consent):
    That applies if you have agreed to and signed the consent form.

  • GDPR article 6.1.b
    (Necessary for the performance of the contract between you and us):
    That applies if you have signed the license agreement.

  • GDPR article 6.1.c
    (Necessary for us to comply with a legal obligation). We process certain personal and remuneration information to comply with the Bookkeeping Act and tax legislation.

  • GDPR article 6.1.f
    (Necessary for pursuit of legitimate purposes of us):

    That applies if the recordings do not portrait you, but merely shows a situation or event with more people; You are identifiable but not the main objects of the recordings.

    The legitimate purposes pursued by us are: Use of the recordings for training, education, marketing, branding and other commercial and non-commercial purposes (as long as they do not infringe your rights).

    We assess that our legitimate interests are not overridden by your interests or fundamental rights and freedoms.

  • GDPR article 6.1.f
    (Necessary for the pursuit of legitimate purposes of us);

    That applies if you have entered into a direct or indirect contract with us.

    The legitimate purposes pursued by us are: Use of the recordings for training, education, marketing, branding and other commercial and non-commercial purposes (as long as they do not infringe your rights).

    We assess that our legitimate interests are not overridden by your interests or fundamental rights and freedoms.

We will store Personal Data as long as it is necessary in order to fulfil the purposes mentioned. In general, Personal Data will be deleted:

           
  • After 5 years from your signing of the consent form;

     

  • After 5 years from the event/situation recording was shot (in situations where you have neither provided consent or signed a license agreement);
  • After 20 years from the photo was taken if you have signed the license agreement, unless there are special reasons for a longer retention period.
  • If you are a professional model hired by the agency: For the retention period set out in the agency contract.

3.2. Recipients of your personal data 

Depending on the circumstances, Ørsted may share your data with:

  • Suppliers, including IT suppliers, support and financial institutions cooperating with us in order to assist Ørsted
  • Group enterprises – see list of Ørsted enterprises in our annual report
  • Public authorities
  • Business partners
  • Players in the energy sector (distribution companies, Energinet.dk, public authorities and energy suppliers)

 

3.3. Personal data about other parties 

If you provide personal data about other people (e.g. contact information for colleagues in the company in which you are employed), you must make sure that they agree to it, and that you have permission to provide us with such data. In addition, you must refer them to this privacy policy, when you provide us with their data. 
 

3.4. Transfer to third countries 

We may transfer your personal data to the following countries outside the EU/EEA:

  • Malaysia
  • Taiwan
  • USA
These countries have not been determined by the European Commission to be countries offering an adequate level of data protection. We will therefore ensure that necessary safeguards are in place by using the Commission’s own published standard contracts. You can obtain a copy of this contract by contacting us on info@orsted.com.

 

3.5. Your rights

When we process your data, you have the following rights:

  • You have the right of access to, rectification, or erasure of your personal data.

  • You also have the right to object to the processing of your personal data and to have the processing of your personal data restricted.

  • In particular, you have an unconditional right to object to the processing of your personal data for use for direct marketing purposes.

  • If the processing of your personal data is based on your consent, you have the right to withdraw your consent at any time. Your withdrawal of consent will not affect the lawfulness for the processing performed before the withdrawal of your consent.

  • You have the right to receive the personal data that you have provided yourself in a structured, commonly used and machine-readable format (data portability).

  • You have the right to lodge a complaint with a supervisory authority, for instance the Danish Data Protection Agency.

You can exercise your rights by contacting us, see clause 1.7. If you have requested to receive information from Ørsted, such as newsletters, and you no longer wish to receive these, you can unsubscribe at any time via the email that you receive or by calling us.

These rights may be conditioned or restricted. For example, you may not have the right to data portability in this particular case. It depends on the specific circumstances in connection with the processing operations.

 

3.6. Contact Ørsted regarding the processing of
personal data

If you wish to contact Ørsted regarding our processing of your personal data, please write to info@orsted.com or call us on +45 99 55 11 11.

If you are unhappy with our response, you can lodge a complaint with your local data protection authority.

In Denmark, the regulator is the Danish Data Protection Agency.

3.7. Changes in our privacy policy

This privacy policy replaces all previous versions. It will be necessary to update and amend this policy on an ongoing basis, and we thus reserve the right to update and amend it. In the event of an important amendment, we will notify you at www.orsted.com or send an email if we deem this necessary.

 

This privacy policy was last updated in November 2018.