Privacy policy
This privacy policy aims to ensure that Cursum A/S, Ragnagade 7, 2100 Copenhagen, CVR number: 38247662 (hereinafter referred to as "Cursum") protects customers' and their employees' personal data in accordance with the rules for the processing of personal data that came into effect on May 25, 2018, as well as the applicable data protection legislation at any time.
This policy describes responsibilities, data types, and ownership as well as procedures for the processing of personal data as stated in the applicable EU General Data Protection Regulation.
At Cursum, a data controller has been appointed to ensure that our personal data policy and the implemented procedures are complied with at all times. All of Cursum's employees are introduced to and trained in Cursum's data policy and handling of personal data.
By using our services, you accept that Cursum handles your and possibly your employees' personal data in accordance with this data policy.
Any future changes to our data policy will be made available through our website (https://www.cursum.com) and/or through direct communication. The data policy was last updated on April 30, 2023.
By using our services, you agree that Cursum processes your and possibly your employees' personal data in accordance with this data policy.
Who receives your personal data?
We use your data solely for internal quality analysis at Cursum and for ongoing documentation to our customers regarding the use of Cursum as part of an employment relationship.
In special cases, we may disclose your personal data to partners and selected trusted third parties for the purpose of registering and maintaining your user account as well as assisting us in delivering agreed goods and services to you. Partners are all subject to confidentiality agreements and may not use personal data for other purposes. There will always be a relevant data processing agreement to ensure compliance with the requirements and obligations of the EU’s General Data Protection Regulation.
How do we store your personal information?
All data on Cursus's learning platforms is hosted in Amazon's or Azure's European data centers in Ireland or the Netherlands, both of which comply with the requirements of the General Data Protection Regulation.
Cookies
The website uses "cookies" that allow Cursum to see which parts of the website the user's browser has previously visited. A cookie is a small data file that is sent to your browser from a web server and stored on your computer's hard drive.
Cookies are used to improve our website, estimate traffic and usage patterns, store information about your preferences so that the website can be tailored to your individual interests, make your searches faster, and recognize your profile when you return to the website.
You can configure your browser to refuse cookies. If you choose not to receive cookies, there may be certain subpages on the website that you cannot access. Our web server sends cookies to your computer every time you log on to our website unless you have set your browser to refuse cookies. You can read more in our cookie policy here.
How do we protect your personal information?
In accordance with the EU’s General Data Protection Regulation of 25 May 2018, we have taken the necessary technical and organizational security measures to protect your personal data against accidental or unlawful destruction, loss, alteration, or disclosure to unauthorized persons.
We store personal data on our own or partners' secure servers. The personal data you enter will be encrypted before being sent to us.
If you have received (or have chosen) a password that gives you access to specific subpages on the website, it is your own responsibility to keep the password confidential. You must not share your password with others.
Access to your information and the right to be forgotten
You can change your account information at any time. You can request to see what information we have recorded about you. If you would like a copy of this information, please write to us at the address below. We may charge a small administration fee to cover the costs of sending the registered personal data to you.
You can have incorrect information deleted or corrected. You can request to have your information deleted:
If you are registered as an individual, you can contact the CLC team via the support form on our website and request either a data overview or deletion.
If you have access through your employer, you should contact your administrator of the Cursum Learning Center to find out what data is stored, request a data overview, or request deletion.
If Cursum is used as part of an employment relationship, personal information may be subject to internal procedures and approvals. In that case, the employee must first contact their employer, who must then submit an approved request to Cursum to fulfill the employee's rights under the General Data Protection Regulation.
- If you are registered as a private individual, you can contact the CLC team via the support form on our website and request either a data overview or deletion.
- If you have access through your employer, you should contact your administrator of Cursum Learning Center to inquire about what data is stored, request a data overview, or request deletion.
Procedures for deletion
Upon termination of collaboration, Cursum retains all data as described in the preceding sections for 6–12 months. This is due to the fact that customers often resume subscriptions within the first six to twelve months, and the data may still hold commercial value for both Cursum and the customer.
Upon termination of customer employees, Cursum retains all data as described in the preceding sections for 12 months. This is due to customer employees (end users) often being rehired or relocated to a corresponding position within the customer's organization and may gain access to Cursum again within 12 months after recorded termination.
Cursum keeps track of the certifications that the end user has achieved during a validity period, which also holds commercial value for all parties.
Data is systematically reviewed quarterly to ensure termination and deletion in accordance with the above. Additionally, there are system-based automatic deletion procedures that ensure that user data is not retained beyond the specified period.
Security procedures in case of data breaches
Cursum regularly conducts systematic analyses and risk assessments. To prevent risks, all data exchanges occur over secure connections, and access to personal and sensitive information is limited to employees for whom data processing is relevant to provide the services.
In the event of a data breach or suspicion of a data breach, Cursum's data controller will report this to the Data Protection Authority within 72 hours. The report will include:
A description of the data breach
The number of affected individuals and the scope of the affected data
Contact information for the data controller at Cursum
A description of the possible consequences of the breach
A description of the actions that Cursum will undertake to address the situation
- A description of the data breach
- The number of affected individuals and the extent of the affected data
- Contact details of the data controller at Cursum
- A description of the potential consequences of the breach
- A description of the actions Cursum will take to address the situation
Further information
If you have questions or comments regarding our data policy or how we use your personal information, you can contact us at: Cursum A/S, Ragnagade 7, 2100 Copenhagen, Denmark. Email: [email protected], Phone: +45 53841953
