Data protection and processing of personal data in IDA Insurance (IDA Forsikring)
Read about how IDA Insurance processes your personal data in our work to improve us and increase value for visitors and members. This also applies to IDA Insurance's use of cookies.
As a policyholder or co-insured in IDA Insurance, you are, or a member of your household is, already a member of The Danish Society of Engineers, IDA and many of our processing activities are therefore similar. Therefore, this page is to be considered as a supplement to IDA's primary information page, which you will find on Data protection and processing of data at IDA | IDA English
We take the protection of your personal data very seriously and we continuously seek to maintain a balance between the development of the association, the networking capabilities of our members and the protection of each member's right to privacy. We hope you will spend some time getting to know our practices – and if you have any further questions, please feel free to contact our Data Protection Officer at dpo@ida.dk
As a policyholder in IDA Insurance and/or when using IDA Insurance services, you entrust us with your information. This page is intended to help you understand what data we collect, why we collect it, and what we use it for and what rights you have. This is important information, so we hope you will take the time to read the content. Keep in mind that you can find settings for managing your information and adjust your preferences on Log in | Mit IDA
Regarding the General Data Protection Regulation
Under Articles 13 and 14 of the Regulation on protection of personal data, we are required to provide you with a range of information when we receive information from you, as well as information about you from others.
The information we need to provide you is as follows:
- We are the controller - how do you contact us?
- Contact details of the Data Protection Officer
- The purposes and legal basis for the processing of your personal data
- Categories of personal data
- Recipients or categories of recipients
- Transfer to recipients in third countries, including international organisations
- Where your personal data comes from
- Storing your personal data
- Automatic decisions, including profiling
- The right to withdraw consent
- Your rights
- Complaint to the Danish Data Protection Authority
We are the controller - how do you contact us?
IDA Insurance is the data controller for the processing of the personal data that we have received about you.
IDA Forsikring Forsikringsformidling F.M.B.A.
Kalvebod Brygge 31-33
1780 Copenhagen V
CVR number 19484149
Contact details of the Data Protection Officer
If you have any questions about our processing of your information, you are always welcome to contact our Data Protection Officer by email at dpo@ida.dk
The purposes, legal basis and legitimate interests in the processing of your personal data
We process your personal data for the following:
- To communicate with you, e.g. service statements in relation to your insurance and offers.
- Legal basis: GDPR Art.6(1)(f) "legitimate interest"
- Legal basis: GDPR Art.6(1)(f) "legitimate interest"
- In order for you to use our services, including apps, receive our newsletters, our insurance advice and much more.
- Legal basis: GDPR Art.6(1)(b) "necessary for the performance of contract"
- Legal basis: GDPR Art.6(1)(b) "necessary for the performance of contract"
- To improve our services, including by collecting pseudonymous or anonymous information about which browser and device type you use, which pages are most popular and other statistical information.
- Legal basis: GDPR Art.6(1)(f) "legitimate interest"
- In order to provide you with the desired service and better services. From matching which insurance policies are most relevant to you, based on your profile selections, to more complicated things, e.g. whether you as a member might benefit from certain offers, which offers you find most relevant, and what actions might be most relevant to our members in specific industries and sectors.
- Legal basis: GDPR Art.6(1)(f) "legitimate interest"
- To conduct administrative processes such as invoicing what you buy from us and keep documentation as required by law.
- Legal basis: GDPR Art.6(1)(f) "legitimate interest" and GDPR Art.6(1)(c) "legal obligation", cf. Section 10 of the Danish Bookkeeping Act.
- Legal basis: GDPR Art.6(1)(f) "legitimate interest" and GDPR Art.6(1)(c) "legal obligation", cf. Section 10 of the Danish Bookkeeping Act.
- To ensure our information security systems.
- Legal basis: GDPR Art.6(1)(c) "legal obligation", cf. GDPR Art. 5(1)(f) and GDPR Art. 32.
- To prove that you are entitled to take out advantageous insurance through IDA Insurance as a member of IDA.
- Legal basis: GDPR Art.6(1)(a) and GDPR Art.9(2)(a) "explicit consent.”
- Legal basis: GDPR Art.6(1)(a) and GDPR Art.9(2)(a) "explicit consent.”
- To document the agreements we make when you call us and to improve our services to you.
- Legal basis: GDPR art.6(1)(a) and GDPR art.9(2)(a) “explicit consent”.
We use a Speech Analytics system to improve our services to you that analyses the call and among other things, provides a statistic overview of the topics discussed in the calls, enabling us to use this proactively in our services to you.
Categories of personal data
We process the following categories of personal data about you:
General personal data:
- Contact information
- Title and place of employment
- Interests
- Device and session information (e.g. IP address, session time, cookies, browser type, date and time)
- Recording of a call
Special personal data:
- Your membership of IDA (trade union affiliation)
- Health information to the extent that you inform us about it, e.g. by special requests for insurance or if you want our help in relation to an insurance claim.
Recipients or categories of recipients
We disclose or entrust your personal data to the following recipients:
- To business partners as necessary to provide the services you have ordered, e.g. so that you as a member can register the insurances you ask for from the insurance companies we use.
For legal reasons we disclose personal data if we believe in good faith that it is necessary to:
- Comply with applicable laws, regulations, legal proceedings or valid requests from public authorities.
- Enforce applicable terms of service, including investigating potential violations.
- Detect, prevent, or otherwise protect against fraud, security, or technical issues.
- Indemnify IDA Insurance, our members or the rights, property or safety of the public, as required or permitted by law.
Where your personal data comes from
- You
- The Danish Society of Engineers, IDA
Storing your personal data
We store your personal data for the duration of your engagement with us as a customer. If your engagement stops, all personal data will be deleted after 5 years.
An accepted offer for an insurance will be deleted after 5 years, and non-accepted offers of insurance will be deleted after 1 year.
Recordings of calls are stored for 5 years.
Automatic decisions, including profiling
We use automatic decisions, including profiling to provide our members and users with the desired service, better services and the appropriate pricing.
For instance, we use profiling when you use the insurance calculator, and when we calculate the insurance premium you can be offered.
When you buy insurance online, we make decisions based solely on automatic processing, including profiling. The automatic price and terms decision includes the information you enter, in conjunction with our assessment of your risk of injury. Price and terms may, for example, depend on how many injuries you have had in the past, where you live, the size of your house, your car model, etc.
The decision may result in you getting a higher or lower price depending on your risk of damage or that we can only calculate your price on the phone. You can always call and talk to us about the decisions we make.
The right to withdraw consent
You have the right to withdraw your consent at any time. You can do this by contacting us on the contact information listed above as well as at the bottom of any newsletter and by contacting us via this page.
If you choose to withdraw your consent, it does not affect the legality of our processing of your personal data on the basis of your previously announced consent and up to the time of withdrawal. Therefore, if you withdraw your consent, it will only take effect from that point on.
If you choose to withdraw your consent to record a call, the consent can be withdrawn by calling us and requesting the call to be deleted.
Your rights
Under the GDPR, you have a number of rights in relation to our processing of information about you.
If you wish to exercise your rights, please contact us.
Right to view information (right of access)
You have the right to access the information we process about you, as well as a number of additional information.
Right of correction
You have the right to have incorrect information about yourself corrected.
Right to be forgotten
In some cases, you have the right to have information about you deleted, prior to the time our general deletion occurs.
Right to restriction of processing
In some cases, you have the right to have the processing of your personal data restricted. If you have the right to have the processing restricted, we may only process the data – other than storage – with your consent, or for the purpose of establishing, asserting or defending legal claims, or to protect a person or important public interest.
Right to object
In certain cases, you have the right to object to our or lawful processing of your personal data. You may also object to the processing of your information for direct marketing.
Right to transmit information (data portability)
In some cases, you have the right to receive your personal data in a structured, commonly used and machine-readable format, as well as to have that personal data transferred from one data controller to another without hindrance.
You can read more about your rights in the Danish Data Protection Authority's guide on the rights of data subjects, which you will find at www.datatilsynet.dk.
Complaint to the Danish Data Protection Authority
You have the right to lodge a complaint with the Danish Data Protection Authority if you are dissatisfied with the way we process your personal data.
You can find the Danish Data Protection Authority's contact information at www.datatilsynet.dk.
You are also welcome to contact our Data Protection Officer directly at dpo@ida.dk if you are dissatisfied with our processing of your personal data or have any questions or suggestions for improvements to the processing in general.
Last edited in February 2023.