Clara Fernandes
Last updated February 22, 2026

Privacy Policy

This Privacy Policy explains how Clara Fernandes (“we”, “us”, or “our”) collects, uses, and protects personal data when you visit clarafernandes.dk.

On this page

1. Data Controller

Clara Fernandes is the data controller responsible for processing your personal data.

Location: Frederiksberg, Denmark
Email: hello@clarafernandes.dk

2. What Information We Collect

We may collect the following information:

  • Name
  • Email address
  • Message content (when submitted via contact form)
  • Technical data (IP address, browser type, device type)
  • Cookie consent preferences (via cf_cookie_consent cookie)
  • Website usage data (only if you consent to analytics cookies)

3. How We Collect Your Data

Your data may be collected when:

  • You submit the contact form
  • You email us directly
  • You browse the website
  • You make choices in the cookie banner

4. Legal Basis for Processing (GDPR)

We process your personal data based on:

  • Consent (Article 6(1)(a)) — for non-essential cookies via our cookie banner and for contact form submissions
  • Legitimate interest (Article 6(1)(f)) — to respond to inquiries, improve the website, and ensure security
  • Contractual necessity (Article 6(1)(b)) — if you become a client and we need to fulfill a contract
  • Legal obligation (Article 6(1)(c)) — to comply with Danish bookkeeping laws (for client data)

5. How We Use Your Data

  • Respond to inquiries and messages
  • Communicate about potential projects
  • Improve website performance and user experience
  • Ensure website security and prevent abuse
  • Remember your cookie preferences
  • Fulfill contractual obligations with clients
We do not sell your personal data to third parties.

6. Data Storage & Retention

Your data is stored securely and retained only as long as necessary:

  • Contact form inquiries: up to 12 months
  • Cookie consent preferences: 182 days (as stored in the cf_cookie_consent cookie)
  • Client data: as required by Danish bookkeeping law (typically 5 years)
  • Website logs: 30 days for security purposes

7. International Data Transfers

Some third-party services we use may transfer data to countries outside the EU/EEA:

  • Netlify (USA) — website hosting
  • Formspree (USA) — contact form processing

When data is transferred outside the EU, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission
  • Services participating in the EU-US Data Privacy Framework

For more information about these safeguards, contact us at hello@clarafernandes.dk.

8. Third-Party Services

We use the following third-party services that may process your data:

We do not currently use analytics or marketing trackers. If this changes, we will update this policy and request your consent.

9. Your Rights (EU Residents)

Under GDPR, you have the following rights:

  • Right to access — request a copy of your personal data
  • Right to rectification — correct inaccurate or incomplete data
  • Right to erasure ("right to be forgotten") — request deletion of your data
  • Right to restriction — limit how we use your data
  • Right to data portability — receive your data in a structured, machine-readable format
  • Right to object — object to processing based on legitimate interests
  • Right to withdraw consent — withdraw consent at any time
  • Right to lodge a complaint — with the Danish Data Protection Agency (Datatilsynet)

To exercise your rights, email hello@clarafernandes.dk. We will respond within 30 days.

10. Withdrawing Consent

You can withdraw your consent for non-essential cookies at any time:

  • Click the "Cookie Settings" button in the website footer
  • Adjust your browser settings to delete or block cookies

For contact form submissions, you can withdraw consent by emailing us directly. Withdrawing consent does not affect the lawfulness of processing based on consent before its withdrawal.

11. Security

We implement appropriate technical and organizational measures to protect your data, including:

  • SSL/TLS encryption for all data transmitted
  • Regular security updates
  • Limited access to personal data

12. Changes to This Policy

We may update this privacy policy when necessary. Updates will be reflected on this page with a revised "Last updated" date. Significant changes will be notified via the website.