top of page

GDPR Policy

Last updated: 6th of May, 2025

We are committed to complying with the General Data Protection Regulation (GDPR) (EU) 2016/679 and ensuring that your personal data is collected, processed, and stored securely and transparently.
 

1. Who We Are

BHDP®
Website: www.ballegaardheartdiseaseprogram.eu
Contact Email: contact@ballegaard.eu
Data Controller: Khalid Mohamed

2. What Personal Data We Collect

We may collect and process the following personal data:

  • Name, email address, and contact details

  • IP address and device/browser type

  • Usage data from cookies and similar technologies

  • Any other information you provide via contact forms, sign-ups, or interactions

3. Lawful Bases for Processing

We process your data under the following legal bases, as permitted by Article 6 of the GDPR:

  • Consent – when you explicitly agree to the processing of your data (e.g., newsletter sign-up or cookie banner).

  • Contractual necessity – when processing is needed to provide a service you requested.

  • Legitimate interests – for website improvement, analytics, or fraud prevention.

  • Legal obligation – to comply with applicable laws and regulations.

4. Your Rights Under GDPR

Under the GDPR, you have the right to:

  • Access your personal data

  • Correct inaccurate or incomplete data

  • Delete your personal data ("right to be forgotten")

  • Restrict processing in certain situations

  • Object to processing for direct marketing or other legitimate interests

  • Withdraw consent at any time

  • Data portability – receive your data in a machine-readable format

To exercise these rights, contact us at contact@ballegaard.eu.

5. Data Retention

We retain your data only for as long as necessary for the purposes it was collected, or as required by law. Once the data is no longer needed, it is securely deleted or anonymized.

6. Data Security

We take appropriate technical and organizational measures to protect your personal data, including encryption, secure hosting, and access controls to prevent unauthorized access, alteration, or disclosure.

7. Data Transfers Outside the EU/EEA

If we transfer data outside the European Economic Area (EEA), we ensure it is protected by appropriate safeguards, such as:

  • Standard Contractual Clauses approved by the European Commission

  • Adequacy decisions for specific countries

  • Service providers who are GDPR-compliant

8. Use of Third Parties

We may use third-party services (e.g., analytics, email marketing) that process your data. These third parties are carefully selected and contractually bound to follow GDPR obligations.

9. Cookies

We use cookies and similar technologies to enhance user experience, analyze usage, and personalize content. Consent is obtained where required. For details, see our Cookie Policy.

10. Contact & Complaints

If you have any concerns about how your data is handled, contact us at:
📧 contact@ballegaard.eu.

 

You also have the right to lodge a complaint with your local Data Protection Authority.

In Denmark, this is:
Datatilsynet
Website: https://www.datatilsynet.dk

bottom of page