Privacy Policy of Jofibo

The Terms of Service was last modified on 14th March 2019

Your privacy is very important to us. Accordingly, we have developed this Policy in order for you to understand how we collect, use, communicate and disclose personal information. The following outlines our privacy policy.

Before or at the time of collecting personal information, we will identify the purposes for which information is being collected.

We will collect and use personal information solely with the objective of fulfilling those purposes specified by us and for other compatible purposes, unless we obtain the consent of the individual concerned or as required by law.

We will only retain personal information as long as necessary for the fulfillment of those purposes.

We will collect personal information by lawful and fair means and, where appropriate, with the knowledge or consent of the individual concerned.

Personal data should be relevant to the purposes for which it is to be used, and, to the extent necessary for those purposes, should be accurate, complete, and up-to-date.

We will protect personal information by reasonable security safeguards against loss or theft, as well as unauthorized access, disclosure, copying, use or modification.

We will make readily available to customers information about our policies and practices relating to the management of personal information.

We are committed to conducting our business in accordance with these principles in order to ensure that the confidentiality of personal information is protected and maintained.

The following applies from March 14th 2019

Jofibo ApS, Steen Blichersgade 10, 9000 - Aalborg, Denmark (“Jofibo”, “we”, “us” or “ours”) are the controller of your personal information, and we are obligated to protect and respect your privacy and your personal integrity, when your use our products and services and are browsing our website. This Privacy Policy will help you understand, which personal information we gather, why we gather this information and how we use them. The Privacy Policy will also explain how you can exercise your rights, when you confide us with your personal information. We ask you to read this Privacy Policy carefully and familiarize yourself with the content. If you have any questions, you are welcome to contact us via the contact information, which is found in the bottom of this Privacy Policy.

Which personal information do we gather from you?

When you gain access, sign up, participate in, create an account or in other way use our services, we can collect personal information about you. The personal information, we collect, depends on the circumstances and the services you use, but can consist of the following:

Personal information which you actively provide us

User generated personal information

Your purchase references, i.e. if you react on ads or campaigns

We can also gather other information about your use of our services through cookies and similar technologies.

Personal information gathered from third party

We may supplement the information we collect from you with information we receive from third parties and through your use of websites, products or services offered by other companies in our group, ("CMN") CM Network Holding ApS. This can for example Include information we receive from third parties who provide our payment solutions in order to enable payment when using our services.

What happens, if you connect your social media services with our service?

You can use your account on social media services, for example, your Facebook account, to connect to some of our services, such as when you create an account on our Jofibo. If you choose to do so, we collect certain information about your social networking account for the purposes described under “Why do we gather your personal information”. We collect only such personal information as is necessary to perform the services you request by logging in to your social media account.

Please note that this Privacy Policy does not apply when you use the features of your social media account. Instead, your interactions with these features are governed by the privacy policy and other policies of the companies that provide the services.

Why do we gather your personal information?

Our purpose

We process your personal information for the following purposes:

A.For the sake of our contractual relationship:

B.For legitimate purposes:

C.For marketing purposes:

D.We may also process your personal information if it is necessary for us to comply with a legal obligation or decision of an authority.

What legal basis in GDPR is the processing of your personal data based on?

The processing of your personal information for the purposes described below:

Is it mandatory for you to provide your personal information?

Personal information that we request from you and which is marked “mandatory” in any way, such as using the * symbol, is required for us to provide our services (for legal, contractual, administrative, technical or similar reasons ). However, some of your personal information may only be required if you use specific features, enable optional parts of the Service, or request access to certain resources, offers, promotions, programs, or similar from us or our affiliates. This will you be informed about before collecting such personal information from you.

Who can we share your personal information with?

Group transfers

We may disclose your personal information to other companies within the CMN Group, if necessary for administrative purposes or for the provision of our services to you. If you have consented to this, we may also disclose your personal information to companies within the CMN Group for marketing purposes. CMN Group companies that access your personal information follow practices in accordance with this Privacy Policy.

The partners, sponsors and advertisers

We can share your personal information with our collaborators and sponsors when you participate in surveys and competitions through In addition, we may also share your personal information with our collaborators and advertisers, but only after you have requested it or assent that you have consented to it.

As described, we may also use aggregated information to monitor the use of our services in order to help us improve and develop our services, and we may make such aggregated information available to third parties, such as, content partners or advertisers. Aggregated information does not include personal information and can’t be linked to you.

Third parties for security or other legitimate reasons

We may also disclose your personal information to third parties if we reasonably have reason to believe that disclosure of such personal information is necessary:

Where do we process your personal information?

The personal data we collect from you can be transferred to and stored at a destination outside the European Economic Area (“EEA”), including destinations not covered by a decision of the European Commission on an adequate level of protection for the processing of personal data. It can be shared with other companies within the CMN Group, handled by employees working for us or for one of our suppliers outside the EEA. Such staff may, for example, be involved in fulfilling your order, processing your payment information and performing our support services. We take all reasonable precautions to ensure that your personal information is processed safely and in accordance with this Privacy Policy and has taken appropriate safeguards to protect your personal information. For further information about or a copy of these safeguards, please contact us using the contact information found at the end of this Privacy Policy.

How long do we store your personal data?

We will keep your personal information only as long as we consider it necessary to fulfill our purposes as described above under “Why do we process your personal information”. Then we will delete or, in some cases, anonymize your personal information. We regularly check whether we have saved personal information to be deleted. Since we process your personal information for different purposes, the actual period of personal information will vary.

Typically, the following deletion deadlines apply:

Data type What is it? Deletion deadline

User data

User data is information about, how you use the service and which products you use.

Until the account is deleted (is processed in 5 years)

Customer service data

Customer service data is information that you provide when you are in contact with Jofibo's customer service and voice recordings made for educational purposes.

3 years (call logs and text dialogs)

1 month (voice recordings)

Account information

Account information is information about your account, such as username, password and purchase information made on

Until deletion of account

Transaction data

Transaction data is information about transactions made on your account in connection with purchases made on

10 years

How do we protect your personal information?

Protecting your personal information is important to us. All personal information you provide us is stored on secure servers and we have strict procedures to protect against loss, abuse, unauthorized access, change, disclosure or destruction of your personal information. Any payment transactions will be encrypted by industry standard technology and subject to PCI security standards.

While we work hard to protect your personal data, we cannot guarantee that our security measures prevent any unauthorized attempts to access, use or disclose personal information. However, we maintain safety and incident plans, including plans for handling any breach of data security, in case of a physical or technical incident to handle this in a timely fashion and limit any adverse effect of such an incident.

How can you access your personal information?

We understand that sometimes you may need additional information from us about your personal information and how they are processed or that you may want to update or correct the personal information you have given us. Therefore, you include the following rights:

If our processing of your personal information is based on your consent, you have the right to withdraw such consent at any time (however, it will not affect processing based on your consent before withdrawal) by contacting us or by updating the settings in the Service. (where relevant).

Please contact us using the contact details below to make a request for your rights. We will make commercially reasonable efforts to respond to your request within 30 days of receiving such a request. If we cannot comply with your request within 30 days, we will let you know about this, the reason for the delay and when we expect to be able to meet your request.

Also, be aware that you can change your contact preferences on the “Account Settings” page if you do not want to receive certain types of information from us. You can also do this at any time by contacting us at

Changes to this Privacy policy

Our Privacy Policy may be amended from time to time. Therefore, be sure to review the latest version of this policy on a regular basis. We will disclose any changes to the Privacy Policy here, and if the changes are significant, we will provide you with a more prominent message such as email. If we change this Privacy Policy in a way that will affect how we use your personal information, we will advise you about the choices you may have as a result of these changes. We will also keep previous versions of this Privacy Policy in an archive for your review.


We welcome any questions, comments and requests regarding this Privacy Policy, which should be sent to

We are subject to and bound by General Regulation (EU) 20116/679 of the European Parliament and of the Council of 27 April 2016 on Data Protection (“GDPR”), Law No 429 of 31 May 2000 on the processing of personal data (“Personal Data Act”) and Act No. 227 of 22 April 2002 on Information Society services, including certain aspects of electronic commerce (the “e-commerce Act”).