Protecting your Personal Data. Protecting the Personal Data of individuals that we interact with throughout our activity, with conscious respect for the legal relevant requirements, is a commitment and a responsibility of high value and importance for Maersk. When engaging with Maersk we want you to feel secure and confident that your Personal Data are in good hands.
Categories of Personal Data that we collect and process. We may collect and process the following categories of Personal Data about you:
· Contact data and Business Contact Information: name, company details, postal address, email address, other contact information, including your business contact information and your business bank account and any data that would enable us to maintain our business relationship with you;
· Targeted data: age, interests, any postings, comments or other content that you upload or post on our websites and/or webpages, movements and behavior on our webpages, websites and online systems;
· Automatically collected data: IP addresses, information about your browser, operating system and other Personal Data that are relevant and necessary for the use of the service;
· Biometric data: photographs, and images/footage captured on CCTV or other video systems when you access our premises, locations and/or offices, voice recordings for when you register to a conference;
If you contact us, we may keep a record of the correspondence. Furthermore, we may ask you to complete surveys that we use for research purposes, although you are not obliged to respond to them.
Although we do not generally seek to collect sensitive or special categories of Personal Data about you, we may do so in certain cases where we have the legal right to do so, or where you have expressly consented to this.
The processing activity. Through our webpages and websites, we collect and process Personal Data about you in two ways:
(1) direct processing (for example, when you provide your Personal Data through a log in action on our webpages and websites or when you are prompted to complete a form within our webpages and our websites or when you provide information to sign up for a newsletter or register to comment on a forum webpage or website), and;
(2) indirect processing, from certain third parties (for example through website analytic technology). Such third parties include for example our affiliates, public authorities, public websites and social media, suppliers and vendors, etc.
Targeted data and marketing communications. The majority of the Personal Data we collect and use for marketing purposes relates to individual employees of our customers and/or vendors and other companies with which we have an existing business relationship. We may also obtain contact information from public sources, including content made public at social media websites, to make an initial contact with a relevant individual at a customer, vendor or other company.
We send commercial e-mails to individuals at our customers, vendors or other companies with whom we want to develop or maintain a business relationship in accordance with applicable marketing laws. Our targeted e-mail messages typically include web beacons, cookies, and similar technologies that allow us to know whether you open, read, or delete the message, and links you may click. When you click a link in a marketing e-mail you receive from Maersk, we will also use a cookie to log what pages you view and what content you download from our websites, even if you are not registered at or signed into our site.
Targeted e-mails from Maersk may include additional data privacy information, as required by applicable laws.
You can exercise your right to prevent marketing communications to you by checking certain boxes on the forms we use to collect your Personal Data, or by utilizing opt-out mechanisms in e-mails we send to you. You can also exercise the right to discontinue marketing communications to you, or to have your Personal Data removed from our databases at any time by contacting us at email@example.com. In such cases, we will retain minimum Personal Data to note that you opted out in order to avoid contacting you again.
Purposes for collecting and processing your Personal Data. We might process your Personal Data for the below listed purposes:
· To facilitate, among others, communication in regard to general meetings, the management of the shareholders register, access to the shareholder portal, communication with shareholders and other investor relation activities. For access management purposes, to ensure that both Maersk and yourself are protected when accessing our locations, sites, offices and /or premises;
· For providing you with our services and products according to agreed terms and as per your request, hence for the purpose of allowing the commercial terms to be executed between parties and to enable you to have a good customer experience;
· For carrying through the specific transactions and bookings and for maintaining our contractual and business relationship with our customers and/or vendors, including for maintaining a routine administrative flow and a routine contractual relationship with our customers and vendors and their representatives (“business contacts”) thereto during the delivery and execution of a commercial engagement;
· For facilitating our communication with you to ensure business continuity, including for providing you with necessary information, references and recommendations about our services and products;
· For monitoring your use of our systems to enable us to personalize your experience on our websites and webpages (including monitoring the use of our website and any apps and tools you use);
· For improving the security and functioning of our websites, webpages, networks and information, to ensure that you receive an excellent user experience whilst our networks and information are secure;
· For provisioning you with tailored newsletters and/or notifications, including relevant press releases to help you stay up to date with our products and services;
· For operating and managing our business operations, for ensuring the proper functioning of our business operations;
· For conducting and manage anti-corruption, anti-fraud, anti-bribery checks, to assess and address risk management to avoid non-compliance, setbacks of our business and protecting of our reputation;
· Apply analytics to business operations and data to describe, predict and improve business performance within our tool and/or to provide a better user experience. Specifically, areas within analytics include descriptive analytics, predictive analytics, analytics involving individuals (i.e. clients) use Personal Data, analytics driven by marketing, single customer view and customer journey, talent/employee management analytics, for ensuring the proper functioning of our business operations;
· Marketing our products and services to you, unless you objected against such processing, so that we can ensure that we can conduct and increase our business.
· Because we are required to do so for compliance with a legal obligation to which we are subject;
· Because such data is necessary for the performance of a contract to which you and/or the company you represent are a party to;
· Because the processing is necessary for the purposes of the legitimate interests pursued by us, by yourself or by a third party, or;
· Where necessary in order to protect the vital interests of any person;
· Based on your prior consent, to the extent such consent is mandatory under applicable laws.
Geographies where we collect and process your Personal Data. As a global organization with offices and operations throughout the world, we may transfer Personal Data collected by us on an aggregated or individual level to various divisions, subsidiaries, joint ventures and affiliated companies of the Maersk around the world located inside or outside the European Economic Area for the purposes stated above and in accordance with applicable laws, as well as to data processors outside of Maersk globally for storage and service purposes. Your Personal Data will not be disclosed to anyone outside the Maersk unless permitted or required under applicable legislation.
Nevertheless, where there is a need, we may share your Personal Data with third parties, such as, services providers, professional advisors, lawyer offices, tax consultants, corporate commercial transactions, public authorities. Before doing so, we take steps to protect your Personal Data. Any third-party service providers and professional advisors to whom your Personal Data are disclosed, are expected and required to protect the confidentiality and security of your Personal Data and may only use your Personal Data in compliance with applicable data privacy laws and/or contractual stipulations. Unless you are otherwise notified, any transfers of your Personal Data from within the EEA to third parties outside the EEA will be based on an adequacy decision or are governed by Standard Contractual Clauses and/or Binding Corporate Rules. Any other, non-EEA originating, international transfers of your Personal Data, will take place in accordance with the appropriate international data transfer mechanisms and safeguards.
Maersk Binding Corporate Rules (BCRs) can be downloaded here.
Personal Data retention. We will retain the data for as long as you use the website and as long we have an ongoing relationship with you and for a reasonable time thereafter. Please note that some or all of the data may be required in order for the website to function properly, and we may be required to retain certain information by law. We might retain your Personal Data longer, based on your legitimate interest or consent (i.e. to provide you with the history of the containers booking).
We maintain specific records management and retention policies and procedures, so that Personal Data are deleted after a reasonable time according to the following retention criteria:
· We retain your Data as long as we have an ongoing relationship with you (in particular, if you have an account with us).
· We will only keep the data while your account is active or for as long as needed to provide services to you.
· We retain your Data for as long as needed in order to comply with our global legal and contractual obligations.
In such a case we will retain your Personal Data for as long as you request us to do so but not more than for a reasonable period of time, and in any case not more than 4 years. We may retain your Personal Data where this is advisable to safeguard or improve our legal position (for instance in relation to statutes of limitations, litigation, or regulatory investigations).
We delete or anonymize your Personal Data when it is no longer needed for the purposes for which it was collected and subsequently processed.
Data Subjects rights. You are entitled, in the circumstances and under the conditions, and subject to the exceptions, set out in applicable law, to:
· Request access to the Personal Data we process about you: this right entitles you to know whether we hold Personal Data of you and, if so, obtain information on and a copy of those Personal Data.
· Request rectification of your Personal Data: this right entitles you to have your Personal Data be corrected if it is inaccurate or incomplete.
· Object to the processing of your Personal Data: this right entitles you to request that we no longer process your Personal Data.
· Request the erasure of your Personal Data: this right entitles you to request the erasure of your Personal Data, including where such Personal Data would no longer be necessary to achieve the purposes.
· Request the restriction of the processing of your Personal Data: this right entitles you to request that we only process your Personal Data in limited circumstances, including with your consent.
· Request portability of your Personal Data: this right entitles you to receive a copy (in a structured, commonly used and machine-readable format) of Personal Data that you have provided to us, or request us to transmit such Personal Data to another data controller.
Note that most of the Personal Data that we hold about you comes from information you completed, therefore, please ensure that you keep your information correct and up to date by updating your profile/information on the website.
Please note, however, that certain Personal Data may be exempt from the above-mentioned rights pursuant to applicable data privacy or other laws and regulations.
To the extent that the processing of your Personal Data is based on your consent, you have the right to withdraw such consent at any time by contacting our Data Privacy Officer. Please note that this will not affect our right to process Personal Data obtained prior to the withdrawal of your consent, or its right to continue parts of the processing based on other legal bases than your consent.
If you wish to exercise your right to access your Personal Data, to object to it being processed or to rectify processed data, please contact firstname.lastname@example.org or send a letter to A.P. Møller - Mærsk A/S, Esplanaden 50, DK-1263 Copenhagen K, Denmark, Att.: Data Privacy.
Security measures. We place a great importance to your right to privacy and the protection of your Personal Data. We want you to feel secure that when you deal with us, your Personal Data are in good hands. Therefore, we protect your Personal Data in accordance with applicable data privacy laws and our data privacy policies and principles. Further, we have implemented appropriate organizational and technical security measures to protect your Personal Data against unauthorized or unlawful processing and/or against accidental loss, alteration, disclosure or access, or accidental or unlawful destruction of or damage thereto. We maintain organizational, physical and technical security arrangements for all the Personal Data we hold. We have protocols, controls and relevant policies, procedures and guidance to maintain these arrangements taking into account the risks associated with the categories of Personal Data and the processing we undertake. We store Personal Data on servers with limited access located in secured facilities, and our security measures are evaluated on an ongoing basis. The servers are protected by anti-virus software and firewalls, among other measures.
If, despite our commitment and efforts to protect your Personal Data, you believe that your data privacy rights have been violated, we encourage and welcome individuals to come to Maersk first to seek resolution of any complaint. You have the right at all times to register a complaint directly with the relevant supervisory authority or to make a claim against Maersk with a competent court (either in the country where you live, the country where you work or the country where you deem that data privacy law has been infringed.
Please contact our Data Privacy Officer at email@example.com if you have a general question about how Maersk protects your Personal Data, if you wish to exercise your rights in relation to your Personal Data rights, if you wish to make a complaint about Maersk use of your Personal Data.
firstname.lastname@example.org is exclusively used for Data Privacy related questions and requests and does not receive nor process your job applications and/or related documentations (i.e. CV). Instead, please use our career vacancies https://www.maersk.com/en/careers/vacancies application to upload and submit your candidacies. Any candidacy sent to email@example.com will be dismissed and deleted.
firstname.lastname@example.org shall not take into consideration commercial communications regarding shipment related documentation or information. Please contact your commercial point of contact and/or your business contact partner for such matters.