Spring til indhold
Vocata Studio
Løsninger Hjemmesider AI Chatbot Mobile Apps Klippekort Serviceaftale
Vores arbejde Kontakt os

Privacy Policy

At Vocata Studio we look after your personal data. This policy explains what we collect, why we use it, and how you can exercise your rights under the GDPR.

1. Data controller

Vocata Studio Business Park Mors · Elsøvej 105 · 7900 Nykøbing Mors · Denmark CVR: 44750929 Email: jonas@vocata.dk

If you have any questions about how we handle your data, you are welcome to write to us.

2. What we collect

CategoryExamplesWhen
Contact detailsName, email, company name, project descriptionWhen you fill in the contact form on /team#kontakt-os
Referral detailsYour name and phone number, plus the name and phone number of the company you referWhen you submit a referral via the gift-basket programme on /henvis
Technical dataIP address, browser, device type, referring page, timestampCollected automatically when you visit the site
Usage statisticsAggregated page views and navigation patternsCollected automatically without cookies via Vercel Web Analytics

We do not collect special categories of personal data (such as health, religion, or political beliefs).

For the referral form, you confirm explicitly that you have the referred company’s permission to share their contact details with us. We contact the referred company solely to introduce the gift-basket programme and our services.

3. Why we use it

  • Reply to enquiries and enter into agreements about web design, app development, and AI solutions
  • Process referrals in the gift-basket programme and contact the referred company
  • Operate and improve vocata.studio (uptime, security, debugging)
  • Protect against misuse, spam, and unauthorised access
  • Comply with legal requirements, including bookkeeping and consent records
  • Build aggregated, cookieless statistics about how the site is used
  • Performance of a contract or pre-contractual steps (GDPR art. 6(1)(b)): When we handle your enquiry or prepare an offer
  • Legitimate interests (GDPR art. 6(1)(f)): Operating and securing the site, aggregated cookieless visitor statistics via Vercel Web Analytics, contacting referred companies, and protecting against misuse — our interest is balanced against your rights
  • Consent (GDPR art. 6(1)(a)): Where you explicitly opt in — such as the permission given in the referral form for us to contact the referred company
  • Legal obligation (GDPR art. 6(1)(c)): Retaining accounting records under the Danish Bookkeeping Act

5. How long we keep your data

  • Contact-form enquiries: up to 2 years after last contact, then deleted
  • Referrals via the gift-basket programme: up to 12 months after the last follow-up
  • Server logs: typically 30 days
  • Usage statistics: aggregate counts are retained on an ongoing basis by Vercel; the per-visit hash is discarded automatically after 24 hours
  • Accounting records: 5 years from the end of the financial year, as required by the Danish Bookkeeping Act

6. Who we share with

We never sell your data. We share it only with the following categories of recipients:

  • Hosting and analytics: Vercel Inc. hosts the site and provides Vercel Web Analytics
  • Email delivery: Resend, Inc. delivers the emails sent from our contact and referral forms
  • Authorities, if legally required

We have data processing agreements in place with our suppliers. Vercel and Resend are both established in the United States, and any transfers outside the EU/EEA are made under the European Commission’s Standard Contractual Clauses (SCCs), pursuant to GDPR art. 46.

7. Cookies and local storage

We do not use tracking or marketing cookies. We only store your own preferences (language and theme) locally in your browser’s localStorage, and our visitor statistics via Vercel Web Analytics are cookieless. You can clear this storage for the site in your browser at any time.

8. Security

We serve all traffic over HTTPS, restrict access to personal data to staff who need it, and keep our software and dependencies up to date. We continuously assess the security of our systems and providers.

9. Your rights

Under the GDPR you have the right to:

  • Access — find out what data we hold about you
  • Rectification — have inaccurate or incomplete data corrected
  • Erasure (“the right to be forgotten”)
  • Restriction of processing in certain cases
  • Object to processing based on legitimate interests
  • Data portability — receive your data in a structured, commonly used format
  • Withdraw consent at any time, without affecting the lawfulness of prior processing

Write to jonas@vocata.dk to exercise your rights. We respond within one month.

10. Lodging a complaint

We would like to hear about it first if you are unhappy with how we handle your data — that gives us a chance to put things right. You can also lodge a complaint with the Danish data protection authority:

Datatilsynet · Carl Jacobsens Vej 35 · 2500 Valby · Denmark · www.datatilsynet.dk

11. Changes

We update this policy when our practices or providers change. The current version always lives on this page, with the date of the last update at the bottom.


Last updated: 25 April 2026