Data policy

1. Background and Purpose

Raven Computers is a sole proprietorship providing IT support, consultancy and related services to private individuals and small businesses, as well as editorial and photographic activities within the music and theatre industries through Raven Rock Site and P. Hesselø Photo. This data policy also covers the processing of personal data in connection with the business owner’s literary publishing project Medieval Fantasy.

Raven Computers acts as data controller for the processing of personal data, including invoicing and bookkeeping across the above-mentioned projects and activities – unless otherwise stated in this policy.

As part of these activities, personal data is processed concerning customers, business clients, collaborators (including freelancers and contributors), and visitors to websites and social media platforms, cf. section 2.

This data policy explains which data is processed, for what purposes, how, and for how long, as well as the rights of data subjects. It applies to all forms of enquiries and customer relationships – whether contact takes place in writing, by telephone or in person.

The policy covers the processing of personal data relating to private customers, business customers, webshop users, and individuals who contact Raven Computers or Raven Rock Site (operated and administered by Raven Computers) via email, telephone, contact form or social media.

2. Categories of Personal Data Processed

This policy covers the processing of personal data, including customer contact details, support-related information, and data necessary for invoicing, bookkeeping and operational purposes.

Raven Computers seeks to process as little personal data as possible and only to the extent necessary for the specific purpose.

2.1 Stored Customer Data

As a general rule, Raven Computers stores only the following information on an ongoing basis:

  • Full name
  • Company name and VAT/CVR number (for business customers)
  • Email address
  • Mobile telephone number
  • Postal address
  • Information regarding McAfee login and licence expiry

This information is retained only for as long as there is a legitimate purpose and the customer relationship remains active and relevant, including active support, ongoing licence administration or statutory retention obligations, cf. section 11.

Information relating to McAfee login and licence expiry is stored only where the customer has entered into an agreement authorising Raven Computers to administer licences, renewals and related support on the customer’s behalf.

No more personal data is retained than is necessary.

2.2 Support-Related and Webshop Data

In connection with specific support cases and, to a limited extent, when downloading free guides via the webshop, additional information may be processed temporarily, including:

  • Information about the customer’s hardware, software and configuration
  • Error information and system settings
  • Files, accounts or licences to which the customer voluntarily grants access

Access to data is granted only with the customer’s consent and strictly to the extent necessary to resolve the task.
Information is retained only for as long as necessary and is deleted, securely shredded or anonymised once the case is closed.

Written communication between Raven Computers and the customer (including email, contact forms and messages) is retained only where and for as long as necessary to document dialogue, provide support, handle complaints, warranties or unresolved financial matters.

When the purpose ceases, communication is permanently deleted unless subject to statutory retention obligations, cf. section 11.

2.3 Editorial and Photographic Services

In connection with editorial and photographic activities (including concert photography, interviews, reviews and articles), personal data may be processed concerning collaborators, freelancers, contributors, accreditation contacts and individuals appearing in editorial material.

This may include name, email, telephone number and other contact details, as well as, where relevant, portrait photographs or other forms of crediting where agreed or customary within the industry.

2.4 Literary Publishing Project

In connection with the literary publishing project Medieval Fantasy, personal data may be processed relating to collaborators and contributors, including editors, proofreaders, illustrators, publishers, printers and other suppliers.

Processing generally concerns ordinary contact details and information necessary for contractual agreements, remuneration and invoicing.

2.5 Data Destruction

When personal data is no longer necessary, it is deleted, anonymised or destroyed appropriately. Physical documents are shredded, and digital data is deleted or anonymised depending on the nature of the information and retention requirements.

3. Purpose and Legal Basis

Personal data is processed solely for the following purposes:

  • Provision of support, consultancy and services
  • Preparation of quotations and order handling
  • Customer identification and correspondence
  • Licence administration (including McAfee)
  • Invoicing, accounting and debt collection procedures
  • Operational and service communication
  • Protection of the website against spam and misuse

Processing is based on:

  • Performance of a contract (GDPR Art. 6(1)(b))
  • Legitimate interest in operating and securing the business (Art. 6(1)(f))
  • Legal obligations, including accounting legislation

4. Email and Telephone Communication

Raven Computers uses email and telephone communication as a natural part of the customer relationship.

Operational and service-related information may be sent periodically to existing customers, including:

  • Changes in prices or products
  • Requests to update customer data
  • Reminders of impending McAfee licence expiry
  • Holiday closures and general operational information

This does not constitute newsletters or marketing, and no separate subscription is used.

5. Website, Hosting, Logs and Backups

5.1 Hosting and Technical Logs

The Raven Computers website and domains are hosted by i123.dk.

Written communication via email and contact forms is received through the hosting provider and delivered to our email solution at Proton Mail.

The email domain is technically configured to deliver all incoming mail securely to Proton Mail via encrypted mail infrastructure. Proton acts as an independent data controller for the email service.

For operational and security purposes, technical logging may occur (e.g. access and error logs), which may include IP address and technical information about browser and operating system.

Logging is used solely for operations, troubleshooting and security.
Retention and automatic deletion follow the hosting provider’s practices.

Raven Computers does not use tracking tools, analytics platforms or profiling cookies on the website.

5.2 Backups

Regular full backups of website files and databases are performed for the purpose of restoration in the event of errors, attacks or upgrades.
A limited number of manual backups may also be created.

6. Contact Form and Spam Protection

The website uses a contact form protected by Google reCAPTCHA, used solely for security purposes.

When using the contact form, the following may be processed:

  • Name (if provided)
  • Email address
  • Message content
  • IP address and technical data (via reCAPTCHA)

Google acts as an independent data controller in relation to reCAPTCHA.

7. Free Digital Guides and Possible Payment

Raven Computers offers free digital guides available via the webshop. In this connection, ordinary personal data may be processed, typically name and email address if provided by the user during download.

If paid digital products or services are offered in specific cases, payment processing will take place via Stripe, and payment details are transmitted directly from the customer to Stripe.

Raven Computers does not receive card details.

Stripe acts as an independent data controller in relation to payment processing.

8. Reviews and Social Media

Raven Computers is present on the following platforms:

  • Trustpilot (customer reviews)
  • Google (customer reviews)
  • Facebook and Facebook Messenger
  • LinkedIn

Trustpilot and Google Reviews

Raven Computers may invite customers to submit a voluntary review on Trustpilot or Google.
Reviews are always voluntary. Trustpilot and Google act as independent data controllers for further processing on their platforms.

Facebook, Messenger and LinkedIn

Information shared via social media (such as name, message content and contact details) is processed solely for the purpose of responding to enquiries and maintaining dialogue.

Meta (Facebook/Messenger) and LinkedIn act as independent data controllers for their respective services.
Users are encouraged not to share sensitive personal data via social media.

9. Finance, Accounting and Debt Collection

Customer data is processed in the accounting system e-conomic in connection with quotations, invoicing and bookkeeping.
Payments are handled via AL Sydbank, which acts as an independent data controller.
In the event of non-payment, relevant information may be transferred to the debt collection partner Collectia.
Financial information is retained in accordance with accounting legislation.

10. Transfers to Third Countries

Raven Computers aims to ensure that personal data processing takes place within the EU/EEA.

Where third-party services are used (e.g. Google, Stripe, Trustpilot), processing may occur outside the EU/EEA in accordance with those providers’ own data protection frameworks and standard contractual clauses.

11. Retention and Deletion (Overview)

  • Stored customer data: retained as long as the customer relationship remains relevant
  • Support data: deleted, securely shredded or anonymised once the case is closed
  • Accounting data: retained in accordance with legislation
  • Logs and backups: retained according to hosting provider practices

12. Data Subject Rights

Data subjects have, in accordance with applicable legislation, the right to:

  • Access their personal data
  • Rectification
  • Erasure (where permitted by law)
  • Restriction of processing
  • Objection
  • Data portability
  • Lodge a complaint with the Danish Data Protection Agency

13. Data Controller and Contact

Raven Computers is the data controller for the processing of personal data unless otherwise stated above.

Raven Computers processes personal data with care and does not disclose it to unauthorised parties. Access to personal data is limited and only takes place via protected systems when necessary for the performance of the specific task.

If this data policy is updated or amended, changes will be published on the website and/or communicated directly where relevant.

All enquiries concerning rights, data protection and personal data should be directed to the contact details below and will be handled without undue delay.

Contact details of the data controller:

Raven Computers
c/o Petricia Hesselø Frederiksen
CVR/VAT no. 33824521
Blankager 65
2620 Albertslund
Mobile +45 22728649
E-mail: dataprotection@ravencomputers.net

Last updated: 1 March 2026