Privacy Policy

1. Introduction

Grydholt Consulting ("we", "our", or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you use our website and services, including applications developed for the Garmin platform.

This policy complies with the EU General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. Data Controller

Grydholt Consulting
Email: jacob@eqrit.dk
Address: Uglevej 5, DK-8210 Aarhus V, Denmark

For any questions regarding this Privacy Policy or our data practices, please contact us using the information above.

3. Information We Collect

3.1 Information You Provide Directly

• Contact Information: Name, email address, phone number when you contact us or register for our services
• Account Information: Username, password, and profile information if you create an account
• Communication Data: Any information you provide when communicating with us

3.2 Information from Garmin Services

When you use our applications on Garmin devices or platforms, we may collect:

• Garmin User ID: A unique identifier provided by Garmin
• Health and Fitness Data: Activity data, workout information, health metrics (with your explicit consent)
• Device Information: Device type, software version, and technical data
• Usage Data: How you interact with our applications

3.3 Automatically Collected Information

• Technical Data: IP address, browser type, operating system, device identifiers
• Usage Data: Pages visited, time spent, navigation patterns
• Cookies and Similar Technologies: As described in Section 8

4. Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR:

• Consent: When you explicitly agree to our data processing (e.g., for health data)
• Contract Performance: To provide services you've requested
• Legitimate Interests: To improve our services, prevent fraud, and communicate with users
• Legal Obligation: To comply with applicable laws and regulations

5. How We Use Your Information

We use your personal data for the following purposes:

• Service Delivery: To provide, maintain, and improve our applications and services
• Garmin Integration: To enable functionality and data synchronization with Garmin devices and services
• Communication: To respond to inquiries, provide support, and send important updates
• Analytics: To understand usage patterns and improve user experience
• Security: To protect against fraud, abuse, and security threats
• Legal Compliance: To meet regulatory requirements and legal obligations

6. Data Sharing and Disclosure

6.1 Third-Party Service Providers

We may share your data with:

• Garmin: When you use our Garmin applications, certain data is shared with Garmin in accordance with their privacy policy and terms of service
• Service Providers: Trusted third parties who assist with hosting, analytics, and technical operations
• Professional Advisors: Legal, financial, and other professional consultants when necessary

6.2 Legal Requirements

We may disclose your information when required by law, legal process, or to:

• Comply with legal obligations
• Protect our rights and property
• Prevent fraud or security issues
• Protect user safety

6.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your personal data may be transferred to the acquiring entity.

We do not sell your personal data to third parties.

7. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place, such as:

• Standard Contractual Clauses approved by the EU Commission
• Adequacy decisions by the EU Commission
• Other legally compliant transfer mechanisms

Garmin may transfer data to the United States and other jurisdictions where they operate. Such transfers are governed by Garmin's privacy policy and applicable data protection agreements.

8. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Enable website functionality
• Analyze website usage
• Remember your preferences
• Improve user experience

You can control cookies through your browser settings. However, disabling cookies may affect website functionality.

Types of Cookies We Use:

• Essential Cookies: Required for website operation
• Functional Cookies: Remember your preferences
• Analytics Cookies: Help us understand website usage
• Performance Cookies: Improve website performance

9. Your Rights Under GDPR

You have the following rights regarding your personal data:

• Right of Access: Request a copy of your personal data
• Right to Rectification: Correct inaccurate or incomplete data
• Right to Erasure: Request deletion of your data ("right to be forgotten")
• Right to Restriction: Limit how we process your data
• Right to Data Portability: Receive your data in a structured, machine-readable format
• Right to Object: Object to certain types of processing
• Right to Withdraw Consent: Withdraw consent at any time (without affecting prior processing)
• Right to Lodge a Complaint: File a complaint with your local data protection authority

To exercise any of these rights, please contact us at jacob@eqrit.dk.

10. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law.

• Account Data: Retained while your account is active and for a reasonable period thereafter
• Health and Fitness Data: Retained according to your preferences or as required for service functionality
• Communication Records: Retained for customer service and legal purposes
• Technical Logs: Typically retained for 12-24 months

You may request deletion of your data at any time by contacting us.

11. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction, including:

• Encryption of data in transit and at rest
• Regular security assessments
• Access controls and authentication
• Employee training on data protection
• Secure data storage facilities

However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

12. Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately, and we will delete such information.

13. Garmin-Specific Provisions

13.1 Garmin Connect IQ Applications

When you use our applications on Garmin devices:

• You must agree to Garmin's Terms of Use and Privacy Policy
• Data synchronization is subject to Garmin's systems and policies
• We access only the data necessary for application functionality
• You can revoke our access through your Garmin account settings

13.2 Data Sharing with Garmin

We share limited data with Garmin as necessary to:

• Enable application functionality
• Synchronize data with Garmin services
• Provide user support
• Comply with Garmin developer requirements

13.3 Garmin's Privacy Policy

Garmin's handling of your data is governed by their privacy policy, available at: https://www.garmin.com/privacy/

14. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:

• Posting the updated policy on our website with a new "Last Updated" date
• Sending an email notification (if we have your email address)
• Displaying a prominent notice on our website or applications

Continued use of our services after changes constitute acceptance of the updated policy.

15. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Grydholt Consulting
Email: jacob@eqrit.dk
Address: Uglevej 5, DK-8210 Aarhus V, Denmark
Website: eqrit.dk

16. Supervisory Authority

You have the right to lodge a complaint with a data protection supervisory authority. In Denmark, the supervisory authority is:

Datatilsynet (Danish Data Protection Agency)
Email: dt@datatilsynet.dk
Website: www.datatilsynet.dk
Phone: +45 33 19 32 00