Cookie declaration last updated on 2025/05/31 by Cookiebot:
Necessary (39)
Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.
| Name | Provider | Purpose | Maximum Storage Duration | Type |
|---|---|---|---|---|
| .AspNetCore.Antiforgery.# | winda.globalwindsafety.org | Helps prevent Cross-Site Request Forgery (CSRF) attacks. | Session | HTTP Cookie |
| .AspNetCore.Mvc.CookieTempDataProvider | winda.globalwindsafety.org | Preserves the visitor's session state across page requests. | 1 day | HTTP Cookie |
| __cf_bm [x2] | globalwindsafety.zendesk.com vimeo.com | This cookie is used to distinguish between humans and bots. This is beneficial for the website, in order to make valid reports on the use of their website. | 1 day | HTTP Cookie |
| _cfuvid [x4] | cdn.webflow.com globalwindsafety.zendesk.com vimeo.com www.gwosafetyawards.com | This cookie is a part of the services provided by Cloudflare - Including load-balancing, deliverance of website content and serving DNS connection for website operators. | Session | HTTP Cookie |
| AI_buffer [x2] | content.powerapps.com js.monitor.azure.com | Used in context with the "AI_sentBuffer" in order to limit the number of data-server-updates (Azure). This synergy also allows the website to detect any duplicate data-server-updates. | Session | HTML Local Storage |
| AI_sentBuffer [x2] | content.powerapps.com js.monitor.azure.com | Used in context with the "AI_buffer" in order to limit the number of data-server-updates (Azure). This synergy also allows the website to detect any duplicate data-server-updates. | Session | HTML Local Storage |
| ai_session [x2] | app.powerbi.com winda.globalwindsafety.org | Preserves users states across page requests. | 1 day | HTTP Cookie |
| apsis-cookie-test [x2] | globalwindsafety.org www.globalwindsafety.org | This cookie determines whether the browser accepts cookies. | Session | HTTP Cookie |
| ARRAffinity [x4] | app.powerbi.com appsource.powerbi.com pbivisuals.powerbi.com winda.globalwindsafety.org | Used to distribute traffic to the website on several servers in order to optimise response times. | Session | HTTP Cookie |
| ARRAffinitySameSite [x4] | app.powerbi.com appsource.powerbi.com pbivisuals.powerbi.com winda.globalwindsafety.org | Used to distribute traffic to the website on several servers in order to optimise response times. | Session | HTTP Cookie |
| cache-sprite-plyr | cdn.plyr.io | This cookie is necessary for the cache function. A cache is used by the website to optimize the response time between the visitor and the website. The cache is usually stored on the visitor’s browser. | Persistent | HTML Local Storage |
| CookieConsent [x3] | winda.globalwindsafety.org www.globalwindsafety.org www.gwosafetyawards.com | Stores the user's cookie consent state for the current domain | 1 year | HTTP Cookie |
| cookietest | app.powerbi.com | This cookie is used to determine if the visitor has accepted the cookie consent box. | Session | HTTP Cookie |
| li_gc | linkedin.com | Stores the user's cookie consent state for the current domain | 180 days | HTTP Cookie |
| manifests.artifacts | content.powerapps.com | Used by Microsoft Power BI platform to display graphics on the website. | Persistent | HTML Local Storage |
| manifests.extensions | content.powerapps.com | Used by Microsoft Power BI platform to display graphics on the website. | Persistent | HTML Local Storage |
| manifests.products | content.powerapps.com | Used by Microsoft Power BI platform to display graphics on the website. | Persistent | HTML Local Storage |
| manifests.tabs | content.powerapps.com | Used by Microsoft Power BI platform to display graphics on the website. | Persistent | HTML Local Storage |
| PHPSESSID | fortress.maptive.com | Preserves user session state across page requests. | Session | HTTP Cookie |
| TiPMix | winda.globalwindsafety.org | Registers which server-cluster is serving the visitor. This is used in context with load balancing, in order to optimize user experience. | 1 day | HTTP Cookie |
| wf_auth_page | www.globalwindsafety.org | This cookie is necessary for the login function on the website. | Session | HTTP Cookie |
| x-ms-routing-name | winda.globalwindsafety.org | Registers which server-cluster is serving the visitor. This is used in context with load balancing, in order to optimize user experience. | 1 day | HTTP Cookie |
| ZD-suid | static.zdassets.com | Unique id that identifies the user's session. | Persistent | HTML Local Storage |
Preferences (3)
Preference cookies enable a website to remember information that changes the way the website behaves or looks, like your preferred language or the region that you are in.
| Name | Provider | Purpose | Maximum Storage Duration | Type |
|---|---|---|---|---|
| maps/gen_204 | maps.googleapis.com | Used in context with the website's map integration. The cookie stores user interaction with the map in order to optimize its functionality. | Session | Pixel Tracker |
| plyr | cdn.plyr.io | Necessary for the implementation of video-content on the website. | Persistent | HTML Local Storage |
| ZD-store | static.zdassets.com | Registers whether the self-service-assistant Zendesk Answer Bot has been displayed to the website user. | Persistent | HTML Local Storage |
Statistics (13)
Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.
| Name | Provider | Purpose | Maximum Storage Duration | Type |
|---|---|---|---|---|
| _ga [x2] | fortress.maptive.com maptive.com | Registers a unique ID that is used to generate statistical data on how the visitor uses the website. | 2 years | HTTP Cookie |
| _ga_# [x2] | fortress.maptive.com maptive.com | Used by Google Analytics to collect data on the number of times a user has visited the website as well as dates for the first and most recent visit. | 2 years | HTTP Cookie |
| _gid [x2] | fortress.maptive.com maptive.com | Registers a unique ID that is used to generate statistical data on how the visitor uses the website. | 1 day | HTTP Cookie |
| _pk_id# | fortress.maptive.com | Collects statistics on the user's visits to the website, such as the number of visits, average time spent on the website and what pages have been read. | 1 year | HTTP Cookie |
| _pk_ref# | fortress.maptive.com | Used by Piwik Analytics Platform to identify the referring website from which the visitor has come. | 6 months | HTTP Cookie |
| _pk_ses# | fortress.maptive.com | Used by Piwik Analytics Platform to track page requests from the visitor during the session. | 1 day | HTTP Cookie |
| ai_user [x2] | app.powerbi.com winda.globalwindsafety.org | Used by Microsoft Application Insights software to collect statistical usage and telemetry information. The cookie stores a unique identifier to recognize users on returning visits over time. | 1 year | HTTP Cookie |
| WFESessionId | app.powerbi.com | Stores data on the time spent on the website and its sub-pages, during the current session. | Session | HTTP Cookie |
| ZD-buid | static.zdassets.com | Unique id that identifies the user on recurring visits. | Persistent | HTML Local Storage |
Marketing (31)
Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third party advertisers.
| Name | Provider | Purpose | Maximum Storage Duration | Type |
|---|---|---|---|---|
| #-# | youtube.com | Used to track user’s interaction with embedded content. | Session | HTML Local Storage |
| __Secure-ROLLOUT_TOKEN | youtube.com | Pending | 180 days | HTTP Cookie |
| _fbp [x2] | globalwindsafety.org gwosafetyawards.com | Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers. | 3 months | HTTP Cookie |
| bcookie | linkedin.com | Used by the social networking service, LinkedIn, for tracking the use of embedded services. | 1 year | HTTP Cookie |
| Ely_vID | globalwindsafety.org | Collects data of the user's navigation and interaction on the website in order to personalise the purchasing experience. | 10 years | HTTP Cookie |
| insight_tag_errors.gif | ads.linkedin.com | Pending | Session | Pixel Tracker |
| iU5q-!O9@$ | youtube.com | Registers a unique ID to keep statistics of what videos from YouTube the user has seen. | Session | HTML Local Storage |
| LAST_RESULT_ENTRY_KEY | youtube.com | Used to track user’s interaction with embedded content. | Session | HTTP Cookie |
| lastExternalReferrer | connect.facebook.net | Detects how the user reached the website by registering their last URL-address. | Persistent | HTML Local Storage |
| lastExternalReferrerTime | connect.facebook.net | Detects how the user reached the website by registering their last URL-address. | Persistent | HTML Local Storage |
| lidc | linkedin.com | Used by the social networking service, LinkedIn, for tracking the use of embedded services. | 1 day | HTTP Cookie |
| LogsDatabaseV2:V#||LogsRequestsStore | youtube.com | Used to track user’s interaction with embedded content. | Persistent | IndexedDB |
| nextId | youtube.com | Used to track user’s interaction with embedded content. | Session | HTTP Cookie |
| NID | google.com | Pending | 6 months | HTTP Cookie |
| pcdc | static.ws.apsis.one | Pending | Persistent | HTML Local Storage |
| remote_sid | youtube.com | Necessary for the implementation and functionality of YouTube video-content on the website. | Session | HTTP Cookie |
| requests | youtube.com | Used to track user’s interaction with embedded content. | Session | HTTP Cookie |
| ServiceWorkerLogsDatabase#SWHealthLog | youtube.com | Necessary for the implementation and functionality of YouTube video-content on the website. | Persistent | IndexedDB |
| TESTCOOKIESENABLED | youtube.com | Used to track user’s interaction with embedded content. | 1 day | HTTP Cookie |
| VISITOR_INFO1_LIVE | youtube.com | Tries to estimate the users' bandwidth on pages with integrated YouTube videos. | 180 days | HTTP Cookie |
| YSC | youtube.com | Registers a unique ID to keep statistics of what videos from YouTube the user has seen. | Session | HTTP Cookie |
| ytidb::LAST_RESULT_ENTRY_KEY | youtube.com | Stores the user's video player preferences using embedded YouTube video | Persistent | HTML Local Storage |
| YtIdbMeta#databases | youtube.com | Used to track user’s interaction with embedded content. | Persistent | IndexedDB |
| yt-remote-cast-available | youtube.com | Stores the user's video player preferences using embedded YouTube video | Session | HTML Local Storage |
| yt-remote-cast-installed | youtube.com | Stores the user's video player preferences using embedded YouTube video | Session | HTML Local Storage |
| yt-remote-connected-devices | youtube.com | Stores the user's video player preferences using embedded YouTube video | Persistent | HTML Local Storage |
| yt-remote-device-id | youtube.com | Stores the user's video player preferences using embedded YouTube video | Persistent | HTML Local Storage |
| yt-remote-fast-check-period | youtube.com | Stores the user's video player preferences using embedded YouTube video | Session | HTML Local Storage |
| yt-remote-session-app | youtube.com | Stores the user's video player preferences using embedded YouTube video | Session | HTML Local Storage |
| yt-remote-session-name | youtube.com | Stores the user's video player preferences using embedded YouTube video | Session | HTML Local Storage |
Unclassified (3)
Unclassified cookies are cookies that we are in the process of classifying, together with the providers of individual cookies.
| Name | Provider | Purpose | Maximum Storage Duration | Type |
|---|---|---|---|---|
| 5ce6247122f44f06d8edebbb#pages | www.globalwindsafety.org | Pending | Persistent | IndexedDB |
| GeocoderCache#objects | app.powerbi.com | Pending | Persistent | IndexedDB |
| topicsLastReferenceTime | connect.facebook.net | Pending | Persistent | HTML Local Storage |
Data Privacy Policy
At Global Wind Organisation ("GWO", "we", "us", "our") we care about the protection of your personal data. By law, we must also inform you about how we process and share personal data about you.
GDPR Statements
GWO has designed its data privacy policy to be in compliance with the European Union General Data Protection Regulations ("GDPR"). For information on our policies in relation to this, please view our GDPR data protection procedures and architecture.
GWO is the data controller for all data that GWO administrates/registers on WINDA and on its website as described in this policy.
A guide to data protection in WINDA
WINDA is designed to enable employers and duty-holders to verify current and valid training records of Course Participants/Technicians. All Course Participant records belong the Course Participant.
To enable this verification, the Course Participant must communicate his/her WINDA Id to the GWO Certified Training Provider and allow upload of a training record upon completion of training. Further, he/she must communicate his/her WINDA Id to those persons (legal entities) he/she wishes to enable to verify training (e.g. an employer).
In searches to verify a Course Participant's training, the result will by default show only:
Course Participant name and nationality
Course Participant valid training and dates
GWO Certified Training provider delivering said training
No other Course Participant's personal data is shared in any way unless you perform a search yourself (see below). Course Participants are able to access a search history of all searches that includes their WINDA Id and may access the name and email address of users that have performed said searches. Course Participants are able to block other users from searching their records by entering the email addresses of any user they wish to block.
In this privacy notice, we describe the processing, including the use and disclosure of your personal data relating to your registration in the WINDA database (winda.globalwindsafety.org) as a Course Participant user, an Organisation user, a Training Provider user, a Certification Body user, or as an Auditor user and on our website globalwind-safety.org.
We use cookies only to enhance the user experience of the site. Read more about our cookies below.
Our general policy for collected data is to store only necessary data, at as low a privacy level as possible, and share only what is necessary to ensure efficient operations of globalwindsafety.org and of WINDA on winda.globalwindsafety.org.
Read more about what we collect and what we share for each of the user types below.
Course Participant users' personal data in WINDA
When registering as a Course Participant user of WINDA, you agree to the WINDA Terms and Conditions, which allows certified Training Providers to upload training records to your profile and allows all registered users to verify your training records by entering your WINDA Id provided to them by you.
By registering as a Course Participant user of the WINDA database, the following personal data is collected and processed:
- Your private email address or work email-address
- Your full name as written in your passport
- Your nationality
- Your full GWO training history as uploaded by GWO certified Training Providers
- Your WINDA Id, which is generated upon registration. All of the above data is associated with this WINDA Id. The WINDA Id is your unique identification number
GWO's legal basis for processing the personal data as listed above is in order to perform the agreement (the agreed WINDA Terms and Conditions) with you, cf. GDPR Article 6(1)(b).
WINDA is designed to allow you to enable employers and duty-holders to verify your current and valid training records. To do so, they must also register as users in WINDA, and you must communicate your WINDA Id to them. When you attend a GWO certified training course, you must provide your WINDA Id after passing a Training Module if you wish your training to be accepted as GWO training by employers. When registering for the course you must also bring and show a government-issued ID such as your driver's license or your passport together with your WINDA Id. The information on your government-issued ID is processed by the Training Provider to verify your identity only and is not shared with GWO. We do not register personal information such as your social security number, passport number, gender, or birth date in the WINDA database.
Your GWO training may be verified through a search by anyone to who you have communicated your WINDA Id (e.g. an employer).
GWO will at all times maintain an audit trail to be able to document which users have performed a verification search against your WINDA Id. There are no restrictions on who may register as users. If in possession of your WINDA Id, a search result in WINDA will only provide these personal data:
- Your full name as you have entered it (as stated in your passport)
- All current and valid training records that have been uploaded to your WINDA Id, including completion dates of training (expiry dates of validity), name and site of training provider
GWO's legal basis for processing the personal data as listed above is our legitimate interest in generating an audit trail to be able to document which users have performed a verification search against your WINDA Id, cf. GDPR Article 6(1)(f).
If you perform a search against another person's WINDA Id, the Course Participant whose training records you have searched will be able to see your name and the email address associated with your WINDA Id.
Likewise, you will be able to access a search history, that includes the name and email address of any WINDA user that have verified your training records through a search in WINDA. You have the ability to block individual users from verifying your records. If you do not perform a search against a WINDA Id, your associated email address is never shared with anyone outside of the GWO Secretariat. Your email address is used for purposes of notifying you of changes to your profile, changes to the Terms & Conditions, password retrieval or safety-related information from GWO.
Your expired training history can only be viewed in WINDA by yourself and the GWO Secretariat.
All your search results in WINDA are logged and may be retrieved by GWO Audit and Compliance Committee or the Secretariat. All searches you have performed against a specific WINDA Id are visible to the Course Participant user associated with this specific WINDA Id. Subject to a legal request, authorities may also gain access to the search log.
We do not share any other types of personal data.
Organisational users' personal data in WINDA
When registering as an Organisation user of WINDA, you agree to the WINDA Terms and Conditions, which allows you to search the WINDA database for valid training records, if you have been provided with a WINDA Id by a trained Course Participant. By registering as an Organisation user of the WINDA database, the following personal data is collected and processed:
- Your job title
- Your full name as written in your passport
- Your work email-address
- Your work phone number
- The name of the organisation that employs you
- The address of your employer
GWO's legal basis for processing the personal data as listed above is in order to perform the agreement (the agreed WINDA Terms and Conditions) with you, cf. GDPR Article 6(1)(b).
Course Participants are able to access a search history of all searches that includes their WINDA Id and may access the name and email address of users that have performed said searches. Course Participants are able to block other users from searching their records by entering the email addresses of any user they wish to block.
Except as described above, your email address is never shared with anyone outside of the GWO Secretariat. Your email address is used for purposes of notifying you of changes to your profile, changes to the Terms & Conditions, password retrieval, or safety-related information from GWO.
All your search results in WINDA are logged and may be retrieved by GWO Audit and Compliance Committee or the Secretariat. All searches you have performed against a specific WINDA Id are visible to the Course Participant user associated with this specific WINDA Id. Subject to a legal request, authorities may also gain access to the search log.
We do not share any other types of data.
Training Provider users' personal data in WINDA
When your Certification Body creates a Training Provider user for you in WINDA, you will be asked to agree to the WINDA Terms & Conditions, that allow you to upload training records on trained Course Participants and purchase credits as well as searching the WINDA database for valid training records, if you have been provided with a WINDA Id by a Course Participant.
By registering as a Training Provider user in the WINDA database, the following personal data is collected and processed:
- Your full name as written in your passport
- Your work email-address
- Name, telephone number, and address of the Training Provider
GWO's legal basis for processing the personal data as listed above is in order to perform the agreement (the agreed WINDA Terms and Conditions) with you, cf. GDPR Article 6(1)(a) and (b).
We may ask third parties, such as Certification Bodies, to verify the information you provide to us as part of the GWO registration and/or audit procedures.
Your work email address is primarily used for purposes of notifying you of changes to, your profile, changes to the Terms & Conditions, password retrieval, and safety-related information from GWO. We may use your email address to request further information from you or provide you with HSE relevant information.
Your uploads of training records are saved for statistical purposes as well as ensuring an accurate credit balance and maintain an audit trail.
Course Participants are able to access a search history of all searches that includes their WINDA Id and may access the name and email address of users that have performed said searches. Course Participants are able to block other users from searching their records by entering the email addresses of any user they wish to block.
All your search results in WINDA are logged and may be retrieved by GWO Audit and Compliance Committee, the Secretariat, or the person whose WINDA Id you have searched. All searches you have performed against a specific WINDA Id are visible to the Course Participant user associated with this specific WINDA Id. Subject to a legal request, authorities may also gain access to the search log.
We also keep an audit trail of users that you have created and removed from the account as well as the access level that you have provided them.
The training records that you upload into WINDA are visible to anyone that has registered for a profile in WINDA and performs a search against the specific WINDA Id(S). The search results include the Course Participant's name, valid training records, Training completion dates, and expiry and the location and company name of the Training Provider that uploaded the training.
Instructor users' personal data in WINDA
The Instructor is an additional role a Course Participant user may have, hence the above Course Participant users' personal data in WINDA also applies for Instructor users.
In addition, the following applies.
Training Providers are in accordance with Requirements for Training required to register the instructors they use to deliver training. Training Providers do that through an Affiliation request to an Instructor's Course Participant user profile. If the Instructor does not have a Course Participant user profile, one will be created.
The Instructor user can accept or reject the Affiliation with the Training Provider at any time. But if rejected or removed, the Instructor user is not eligible to deliver training on behalf of the Training Provider. Likewise, the Training Provider can at any point in time remove an Affiliation with an Instructor User.
Should the Instructor user no longer have any Affiliations, the Instructor user's Course Participant profile remains untouched unless handled as described above in the section about Course Participant users' personal data in WINDA.
Certification Body users' personal data in WINDA
When registering as a Certification Body user in WINDA, you agree to the WINDA Terms & Conditions. As a Certification Body user, you can create Auditor users and you gain full WINDA functionality when you have created an Auditor user and this auditor was approved by GWO, holds a valid certificate, and meets the minimum auditor requirements set by GWO. Full WINDA functionality means that you can also create Training Provider users and provide certificates and audits for their training providers. You can also create additional logins for the Certification Body.
When registering as a Certification Body user in the WINDA database, we will collect and process the following personal data about you:
- First Name(s)
- Surname
- Work email address
- Organization name
- Website
- Street address 1
- Street address 2
- City
- Postal code
- Country
- Region
- ISO document (attached as pdf)
- ISO certificate number
GWO's legal basis for processing the personal data as listed above is in order to perform the agreement (the agreed WINDA Terms and Conditions) with you, cf. GDPR Article 6(1)(b).
The audit records that you upload to WINDA are visible to GWO database administrators, Auditors that you have created in WINDA, and Training Providers for whom you provided specific audits. The search results include certificate document, audit report document, Training Providers WINDA Id, Training Providers company name, audit completion date, Auditors, which were part of the audit.
Auditor users' personal data in WINDA
When your Certification Body creates an Auditor user for you, you will be asked to agree to the WINDA Terms & Conditions. As an Audi-tor user, you gain full WINDA functionality when you have been approved by GWO, hold a valid certificate, and meet the minimum auditor requirements set by GWO. Full WINDA functionality means that you can also create Training Provider users and provide certificates and audits for their training providers.
When your Certification Body creates an Auditor user for you in the WINDA database, we will collect and process the following personal data about you:
- First Name(s)
- Surname
- Work email address
- Phone number
- Street address 1
- Street address 2
- City
- Postal code
- Country
- ISO/OHSAS documentation
- AQT certificate
- AQT Valid From
- AQT Valid To
GWO's legal basis for processing the personal data as listed above is in order to perform the agreement (the agreed WINDA Terms and Conditions) with you, cf. GDPR Article 6(1)(b).
The audit records that you upload to WINDA are visible to GWO database administrators, Auditors that belong to your Certification Body profile in WINDA, and Training Providers for whom you provided specific audits. The search results include certificate document, audit report document, Training Providers WINDA Id, Training Providers company name, audit completion date, Auditors, which were part of the audit.
Purpose of collecting data
GWO will collect and process your personal data for the following purposes:
- For registration purposes in our WINDA database win-da.globalwindsafety.org
- In WINDA, your email address is registered for notification purposes concerning changes to your profile or the Terms and Conditions, password retrieval, or safety-related information from GWO
- To allow Course Participants information on who has viewed their training records and enable the option to block specific users from viewing these records
- If you sign up for a newsletter, we register your email address for this purpose. We will obtain your consent upon the sign-up process in accordance with GDPR Article 6(1)(a).
- Regarding Training Provider users' and Organisation users' registration, your email address is also registered, so we can request further information from you
- Audit purposes or defence of legal claims
- In aggregate and anonymized form to produce statistics, analysis and in other ways related to achieving the goals of the GWO
- For Certification Body users and Auditor users' email-address is registered for notification purposes concerning audit approval process and new audit requirements]
We aggregate and pseudonymize (and anonymize to the extent possible) all personal data to the furthest extent possible.
Disclosure of personal data to third parties
GWO only share Course Participants name and valid training history with other registered WINDA users who are in possession of your WINDA Id. If you perform a search against another person's WINDA Id, the Course Participant whose training records you have searched will be able to see your name and the email address associated with your WINDA user profile.
Apart from the above, GWO does not share your personal data with any third party or with companies, organisations, and individuals outside GWO, unless you consent to such disclosure or it is required by law, regulators, public authorities (in particular supervisory authorities), relevant accredited organisations or court orders or unless necessary as part of the establishment, exercise or defence of legal claims, e.g. towards legal representation.
Data processors
We use a number of data processors who are providing systems and services to us, including the following:
Microsoft Azure (legal entity residing in Ireland)
Netcompany (legal entity residing in Denmark)
Amazon SES (legal entity residing in Luxembourg)
Other relevant data processors and sub-data processors within the category of providing necessary support (IT, etc.) to GWO and WINDA in order to provide you with a sufficient WINDA platform.
Transfer of data to third countries outside the EU/EEA
When you share your WINDA Id with other users, they are able to search and verify your training records from anywhere in the world.
Subject to legal requirements, GWO does not actively transfer personal data to any third party, including third parties outside of EU/EEA.
However, if you share your WINDA Id with other users outside the EU/EEA, and/or if the other user access WINDA from a third country, GWO will theoretically share your training records with that third country in question via a so-called 'view access'. The legal basis for GWO to be able to share your training record via this 'view access' is GDPR Article 49(1)(b).
Some of our sub-data processors have the possibility to use support from third countries outside the EU/EEA via a 'view access. The legal basis for this 'view access is the European Commission's Standard Contractual Clauses.
Storage period and deletion of User accounts
GWO does not want to retain unnecessary data.
Course Participant and organisational user accounts may be deactivated at any given time upon written request from the user to info@globalwindsafety.org. Deactivation means we will delete your WINDA Id. All records of training associated with the WINDA Id will remain in the system, however, the association between your name/email address and these records will be removed.
Training Provider user's accounts may be deactivated at any given time upon written request from the user to info@globalwindsafety.org. Deactivation means we will discontinue your users' rights to upload records. All uploaded records remain in the system, and the association between the Training Provider's name and the WINDA Id's to which records were originally uploaded will remain in the system to ensure a complete audit trail.
Certification Body user's accounts may be deactivated at any given time upon written request from the user to info@globalwindsafety.org. Deactivation means we will discontinue your users' rights to upload audit records, create new Auditor, Certification Body or Training Provider user profiles, administrate Training Providers, Auditors, or your Certification Body user's profile. All Auditor users associated with your Certification Body profile will be deactivated as well. All up-loaded records remain in the system, and the association between the Training Provider's name, certificate document, audit report document, audit completion date to which records were originally uploaded will remain in the system to ensure a complete audit trail.
Auditor user's accounts may be deactivated at any given time upon written request from the user to info@globalwindsafety.org. Deactivation means we will discontinue your users' rights to upload audit records, create new Training Provider user profiles, administrate Training Providers, or your Auditor user's profile. All uploaded records remain in the system, and the association between the Training Provider's name, Certification Body's name, certificate document, audit report document, audit completion date to which records were originally up-loaded will remain in the system to ensure a complete audit trail.
The different types of user accounts will automatically be deactivated after a certain period depending on the specific type of user profile.
Course Participants
Course Participant user accounts and all data associated with the user type along with the WINDA Id will be deleted after 48 months of inactivity. Activity is defined as either a user login or a training record added to the user profile by a certified Training Provider. Users will automatically be notified in advance of expiry. To prevent the account from expiring log in to the account on a regular basis. GWO will not be able to reactivate expired accounts. Organisation user accounts will be deleted after 12 months of inactivity. Users will automatically be notified in advance of expiry. To prevent the account from expiring log in to the account on a regular basis. GWO will not be able to reactivate expired accounts.
Training Providers
Training Provider users will be deleted after 24 months of inactivity. Users will automatically be notified in advance of expiry. To prevent the account from expiring log in to the account on a regular basis. GWO will not be able to reactivate expired accounts. All users may be deleted (deactivated) by the GWO Secretariat for any reason.
Certification Body users
Certification Body users are archived 24 months after their last activity on WINDA. Activity can be e.g. logging in to WINDA, having active Auditor users on their organisation account, having a valid certificate on WINDA that they have provided for the Training Provider user.
Auditor users
Auditor users are archived 24 months after their last activity on WIN-DA. Activity can be e.g. logging in to WINDA, having an active AQT certificate, having a valid certificate on WINDA that they have provided for the Training Provider user.
Security of the data
All data is transmitted over the public internet and is encrypted via https.
The database is physically hosted on Microsoft Azure located in Northern Europe. No physical access to data centres is provided to customers.
Web servers are located within a virtual private cloud. A firewall protects the database by only allowing direct access using credentials from a whitelisted IP address. Application level access controls are in place to ensure data security
Your rights
Under the applicable national / EU data protection law, you are entitled to:
- request access to the personal data
- request information about your personal data and the purposes and potential recipients of this data
- have personal data rectified or deleted.
- object to the processing of your personal data as well as the right to data portability
You also have the right to lodge a complaint with your national data protection authority (the Danish Data Protection Agency) or other public authorities governing the protection of your personal data.
Furthermore, you have the right to withdraw your consent. However, our processing based on your consent up until your withdrawal will be legal.
The right to object
You have the right to object – on grounds relating to your particular situation – to the processing of personal data where the legal basis for our processing is legitimate interests, as stated above. If you exercise your right to object, GWO may no longer process your personal data unless GWO demonstrates compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or the processing is necessary for the establishment, exercise, or defence of legal claims.
You also have the right at any time to object to the processing of your personal data for marketing purposes, which includes the right to object to profiling in so far as it relates to direct marketing. If you object to GWO processing for the purpose of direct marketing, your personal data may no longer be processed for this purpose.
If you need further information in regard to the processing of personal data, and/or you wish to use any of your rights, please contact the GWO Secretariat at info@globalwindsafety.org
This privacy notice is subject to a regular review and might be updated if needed. We will publish any new version on winda.globalwindsafety.org.
Cookie policy
Cookies
In the following sections, you can learn more about cookies and how they are used on the sites.
What is a cookie?
A cookie is a small data file that websites store on your computer in order to recognize it the next time you visit the website. A cookie is a passive file and cannot carry a computer virus or other damaging programs.
Cookies on globalwindsafety.org and winda.globalwindsafety.org
On globalwindsafety.org and winda.globalwindsafety.org we only use cookies to collect and generate statistics about the visitors' usage of the website. The data is exclusively used for web analysis to enhance the user experience. Confidentiality of all personal data is protected, and information is under no circumstances redistributed to a third party.
Rejection of cookies
You can reject cookies on your computer via the settings in your browser. Please be aware that by rejecting cookies you risk not being able to use all the features of globalwindsafety.org. Rejecting cookies will prevent you from accessing winda.globalwindsafety.org. As a cookie is located at the visitor's computer, you are at any time able to see, change or delete a cookie.
If you do not wish to receive cookies from globalwindsafety.org and winda.globalwindsafety.org, you can in most newer browsers, under the internet settings, choose the advanced cookie settings and add this domain to the list of websites from where you want to block the cookies. You will not be able to access winda.globalwindsafety.org if you block cookies.
For more information on the rejection or deletion of cookies, please visit www.allaboutcookies.org.
Why do we notify about cookies?
We notify you about cookies because we, like all other Danish websites, are obligated to do so under "The Act on Processing of Personal Data"
Please notice that the English version of the act is translated for Danish Data Protection Agency. The official version is published in "Lovtidende" (Official Journal) on 2 June 2000. Only the Danish version of the text has legal validity.
Questions or objections must be addressed to Global Wind Organisation's Secretariat at info@globalwindsafety.org.
