Privacy notice

Introduction

When visiting www.zealandpharma.com (“website”), Zealand Pharma A/S (“Zealand”, “we”, “us”, “our”) process certain personal data about you when you interact with or provide information to us through the website.

We strive to ensure a high level of data protection and to ensure that you can trust the processing taking place in relation to your visit on our website. 

This Privacy Notice (“Notice”) sets out how we process (e.g., collect, use, share, retain and delete) the personal data we collect through the website. 

Zealand processes the personal data about you in accordance with this Notice and the General Data Protection Regulation (“GDPR”).

Controller

Zealand is responsible for processing of your personal data and acts as data controller. Zealand’s address and contact information are:

Zealand Pharma A/S
Sydmarken 11
DK-2860 Søborg
Denmark
CVR: 20045078
Email address: [email protected]

If you have any questions or concerns regarding the processing of your personal data, kindly contact us via the email address above.

Purpose, processing activities and legal basis

When you interact with our website, we process your personal data for different purposes.

In the schedule below, you can read more about why and how we process your personal data, the types of personal data we process, the legal basis we apply, and for how long we retain your personal data.

Purpose Activity  Types of personal data processed Legal basis Retention period
Sending you information about Zealand, e.g. company announcement and press releases. When you sign up here on our website to receive information and news related to Zealand, we will send you such information via email on our website to receive information and news related to Zealand, we will send you such information via email.  E-mail address, first and last name (optional)
 and email preferences (what you would like to receive information about).
 
Art 6(1)(a) of the GDPR, as we ask for your consent when you sign up.

We process the personal data for as long as your consent is active.

If you would like to withdraw your consent, please click on the link at the bottom of one of the emails from Zealand.

We store your email address for up to 2 years after the last distribution of an email to you to ensure we can document our compliance with the Danish Marketing Act.

Analyze and improve our email communication on company announcement and press releases. When you open an email, you have subscribed to. Timestamp for when you open an email connected to your email address. Art 6(1)(a) of the GDPR, as we ask for your consent when you sign up. We store click-data for up to 2 years after the last distribution of an email to you.
Managing enquiries, questions etc. When you use the enquiry form on our website to contact us, we will route the enquiry internally to the relevant department to ensure a response. E-mail address, name, company, type of enquiry, and other information you choose to provide us with, as e.g. phone number etc. Art. 6(1)(f) of the GDPR, as we have a legitimate interest in managing enquiries and questions. We store your personal data for up to 2 years from receipt of your enquiry.
Analyze and improve the use and performance of our website. When you visit our website, and if you consent to cookies, we collect information related to the use of our website. User ID will be generated to understand the data collected regarding Time zone, operating system, device, which website or platform you came from, country, engagements with buttons and the time spent on site.  As per the Danish cookie regulation, we only use statistical and functional cookies if you accept these. When asking for your consent to cookies, we also ask for your consent to processing of your personal data, in accordance with art. 6(1)(a) of the GDPR.

Personal data collected via cookies is deleted when the relevant cookie expires, when you delete the cookie(s) or withdraw your consent. You can see the lifetime (duration) of all cookies in our cookie consent module here  and read more on how to delete cookies or withdraw your consent in our cookie settings.

Promoting Zealand on social media and interact with social media users. When you visit our social media profiles, e.g. LinkedIn, the social media providers use cookies to collect and process personal data on your behavior to the extent you have provided your consent to the social media provider. We will also receive statistics on e.g. demographics and geography from the social media providers gathered through plug-ins on the social media.

Art. 6(1)(f) of the GDPR, as we have a legitimate interest in promoting Zealand through our presence on social media and to interact with social media users.

We have joint controllership with the social media providers. Read more about this in section 5.

Personal data provided to us through social media is deleted when a post is deleted, or when you choose to remove your reaction to our post (like, comment, share, etc.).

If you do not remove your post, comment, like etc., the personal data will be deleted after 10 years.


Applying for a job at Zealand

From time to time, we advertise open position at Zealand on our career site. You can find all open positions here.

Kindly note that we do not accept unsolicited applications

Sharing of your personal data

Use of service providers and partners:
We use service providers to support us in providing certain services related to our website. These service providers will act as “data processors” to Zealand and are contractually bound to only process your personal data in accordance with Zealand’s written instructions and under strict confidence.

The service providers support us in e.g. providing IT systems, this website, facilitating the emails we send to you (if you consent) with announcements and news, and provide a cookie consent management solution.

We may also share or disclose your personal data with our group companies to e.g. respond to an enquiry by you, and recipients such as our external advisers, incl. auditors and lawyers, or with relevant authorities if needed to:

  • obtain advice in relation to e.g. disputes or for auditing purposes,
  • comply with a legal obligation or the direction of the court or any other body of competent jurisdiction incl. law enforcement,
  • defend our legal rights and interests,
  • enforce or apply this Privacy Notice or other agreements,
  • protect the rights, property or safety of Zealand A/S or Zealand Group, our employees, our data subjects, or others.

Joint controllership:
Zealand has joint controllership with social media in relation to personal data collected and processed when you visit our social media accounts/sites on social media. You may exercise your rights under the GDPR towards us and the social media provider. You can find more details of the joint controllership here:

Find more details about the social media providers’ processing of personal data here:

Transfers to countries outside of EU and EEA:
In some cases, personal data may be transferred outside the EU or EEA in relation to the services provided by our service providers and partners. Such transfers will only happen for the specific purposes subject to Zealand’s instructions and it will be ensured that appropriate safeguards are in place for such transfer as set out below: 

  • The countries outside the EU/EEA have been deemed to have an adequate level of protection of personal data by the EU Commission and have therefore received an ‘adequacy decision’. 
  • If the countries transferred to have not been deemed to have an adequate level of protection of personal data by the EU Commission, Zealand will rely on the EU Commissions Standard Contractual Clauses, other contractual agreement approved by the competent authorities, or an applicable derogation. To obtain a copy of such clauses, please contact us.

Your data protection rights

As an individual whose personal data is being processed, you have the following rights:

  • Right to withdraw consent: where you have given your consent for our processing of your personal data, you have the right to withdraw your consent at any time. You can withdraw your consent to receive emails from us by clicking the ‘unsubscribe’ link at the bottom of an email.
  • Right of access: you have the right to have confirmed whether collection or processing of your personal data has taken place, and, if so, you have the right to request a copy of your personal data in a digital format.
  • Right of rectification: you have the right to require that we correct any inaccurate personal data, and that we complete incomplete personal data.
  • Right of erasure: under certain circumstances, you have the right to request that we erase personal data concerning you, e.g., if it is no longer necessary for the purposes for which it was originally collected.
  • Right to restriction of processing: under certain circumstances, you have the right to request that we restrict the processing of your personal data, e.g., if you believe that the personal data is not accurate or lawfully processed.
  • Right to object to the processing: under certain circumstances, you have the right to request that we stop processing your personal data.
  • Right to data portability: under certain circumstances, you have the right to receive the personal data you have provided us with in a structured, commonly used, machine readable format, and the right to have us transmit the data to another entity, where technically feasible.

You can read more about your rights in the Danish Data Protection Agency's guidelines on data subjects' rights, which is available at on their website: www.datatilsynet.dk.

Please contact us if you wish to exercise any of your rights. You will find our contact details in section 2.

There may be conditions or limitations on these rights. It is therefore not certain that you e.g., have the right of data portability in the specific case - this depends on the specific circumstances of the processing activity.

Complaint to a supervisory authority

If you wish to lodge a complaint with a supervisory authority about our processing of your personal data, you can do so by contacting the Danish Data Protection Agency via their website: www.datatilsynet.dk.

Changes to this Privacy Notice

This Privacy Notice was last updated June 2024.

We may update this Privacy Notice from time to time to reflect changes in our personal data practices or due to legal requirements.