Personal data
Personal data are all kinds of different information that can be attributed to a person. When using our website we collect and process a number of these personal information, this also apply for: analysis tools, live chat, and registration forms.
We collect and process the following type of information: a unique ID, technical information about your computer, tablet or phone, your IP-address.
Contact forms
When using our contact form with submission options on our website, information is stored in our e-mail system for us to answer your questions. The contact information is not used for marketing, signing up for emails or anything of the kind without you requesting this.
Your data will not be forwarded outside the organization unless it is relevant to the subject and only if we have your approval.
Analysis tools
To give us the best insight and comparison of data for our website we use analysis tools that are based on anonymous data: Google Analytics, Facebook, Pixels, and Sitecontrol.
You have the right to not be included in our analyzes at any time – however, we appreciate that you help us make our website better for us to understand what and where to potentially improve.
Data sub-processor
A sub-processor is a third-party data processor used by pensopay, who has access to various data including personal data. At pensopay we use several different data sub-processors to handle different tasks as described below.
A sub-processor is a third party used by pensopay to process personal data on behalf of the data controller. Before engaging a new sub-processor, pensopay will inform the data controller, who has 10 calendar days to submit a written objection. Failure to object will be deemed as consent to the use of the sub-processor.
| Supplier | Country | Status | Function | Updated |
| Amazon AWS | Sverige | Hosting | 02. April 2024 | |
| Hubspot | Tyskland | CRM | 02. April 2024 | |
| Flexfone | Danmark | Phone support | 12. May 2023 | |
| QuickPay | Danmark | Payment gateway | 12. May 2023 | |
| Clearhaus | Danmark | Acquirer | 12. May 2023 | |
| Wootric | USA | Customer Experience Platform | 25. July 2025 |
Data storage
Safety
We have taken technical and organizational measures to ensure that your information will not accidentally or illegally be deleted, published, lost, deteriorated, or be known by unauthorized people, misused, or otherwise be processed in violation with the law.
If such data breach should occur all our registered users will be contacted within 72 hours with information about which data is lost including instructions on what to do about it. In a situation with security breach, we will do our absolute best to reduce any data loss for our users.
Data protection
We value all data both yours and our own. We protect the data with the following initiatives which we always keep up to date: SSL Encryption, Firewall, Safety net, Training of staff, Password strength, Password Breach Block.
Data Retention
Pensopay A/S retains personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable law:
-
Application data: Data submitted via our application forms is stored for a short security period. If an application is denied or terminated, the data will be deleted within 30 days. If an application is approved, the data is securely transferred to the customer’s chosen third party (e.g., an acquirer) and deleted from our application system.
-
Support information: Pensopay employees may access and process submitted information as long as needed to provide customer support. Support tickets are generally retained for up to 3 years after the case is closed.
-
Analytical data: Analytical data is retained indefinitely for statistical and business development purposes, as it is anonymised and cannot be linked to individuals.
-
Transaction and purchase records: Customer transaction and purchase records are stored in accordance with Danish accounting legislation, typically for 5 years.
-
Backups and technical logs: System backups and log files are retained for up to 12 months, unless longer retention is required for security reasons.
Pensopay regularly reviews its data retention practices to ensure compliance with legal requirements and our internal deletion policies.
Data breach procedures
At pensopay we use updated firewalls that tells us if our security has been breached – whether this is a breach on the firewall, or it is a password breach we will be notified as soon as possible so we can take care of the situation.
In addition, our firewall provides us with weekly updates on attempted attacks on our security as well as alarms in case of increased attempt activity. Because of this, we are always informed about possible attacks on our website.
Data rights
Export and deletion of data
You have the right to get insight on the data we keep on you. You can have your personal data exported from our system and sent to you.
In general, all the data you have sent us will be part of the ticket that is automatically formed on your e-mail including the documents you have submitted when creating it.
You can also ask that we delete all your personal data. However, this does not include any type of data that we are required to store for administrative, legal or security reasons. Which is most of the personal data we keep due to money laundering legislation.
If you have any questions, please feel free to contact pensopay A/S at support@pensopay.com.
