I help Leaders make their Data Protection Strategies.
Strategies aligned with business objectives.
Strategies that shift the perception of their role from being a necessary evil to a growth enabler.Taking a pragmatic view
I’m Tim Clements, Business Owner of Privacy Program Management, trading as Purpose and Means.
I’m a sole proprietor based in Denmark specialising in providing consultancy and advisory services covering Data Protection Strategy, Privacy Program Management and Data Protection Training.
My aim is to provide exceptional consultancy and advisory to data-driven businesses globally.
My postal address is Esthersvej 21.st, 2900 Hellerup, Denmark.
You can contact me by email via firstname.lastname@example.org
Data about you is processed in order to run my business and I endeavor to collect and process only the absolute minimum data required to deliver my products and services, as well as meet legal obligations.
I process data about you for the following purposes:
Registering for, and delivery of training courses
Registration and participation in webinars
Informing you of new products, services or webinars
Dealing with enquiries you may make
Invoicing for products or services you have purchased
Website usage (necessary cookies only) to provide a coherent and secure website experience for you (see the Cookie Banner and explanation for further information).
Processing and transfer of your personal data to the USA
The course you enrol on with Purpose and Means is offered in cooperation with the IAPP based in the USA.
Once you register for the course, your name, email address, and existing IAPP membership status will be transferred to the IAPP in the USA. This is necessary in order to complete the course registration, and to allow you access to online training material, register you as a member of the IAPP, and make the required arrangements before a certification exam, if relevant.
The transfer of your personal data to the IAPP in the USA is necessary for the performance of the training course contract between you and Purpose and Means, and for the performance of the contract concluded in your interest between Purpose and Means and the IAPP.
When you register for a webinar with Purpose and Means your name, email address and location (country) is collected directly by LogMeIn Inc. who are based in the USA. Registration is confirmed to you by LogMeIn Inc. via email including the URL to be used to access the webinar at the specific time and date.
As part of the registration, you are offered the possibility to explicitly consent to receive a newsletter from Purpose and Means.
All registration information collected by LogMeIn Inc. is accessibe by Purpose and Means.
During the webinar itself, data about your participation is captured by LogMeIn Inc. including the time you joined and left the webinar, any interactions you made during the session (e.g. questions, chat, surveys or polls completed), as well as an assessment of your level of attention during the session (this is based your use of other applications during the session, e.g. checking email, etc).
Information about your participation in specific webinars is accessible to Purpose and Means, and is used to assess the effectiveness and suitability of the webinar content, and to provide you with a newsletter if consent was given.
Data about you will be retained only for as long as is necessary for the duration of each processing purpose and will be deleted when there is no applicable purpose or outstanding legal requirement.
Purpose and Means is currently undertaking various projects to migrate to third parties solely based in the EU and currently use the following companies to provide services that involve the processing of your data:
Hetzner - storage of data using Nextcloud storage share platform and Nextcloud Talk for small group video conferencing (Hetzner's Privacy Notice)
Tutanota - secure email (Privacy Notice)
Cookie Script - provides cookie banner and cookie consent functionality (Privacy Notice)
Webflow – hosting provider of this website (Privacy Notice)
LogMeIn Inc. – GoToWebinar webinar platform (Privacy Notice)
Microsoft – large group video conferencing and training (Teams) and booking meetings (Bookings & Calendar)
Stripe – processing credit card payments (Privacy Notice)
Information about the companies and their own Privacy Notices can be obtained by clicking the links.
Please contact me to exercise your rights according to the GDPR that are summarized in this chart.
Please note that not all rights apply to all lawful bases of processing.
If you are not satisfied in any way with your experience of using this website, or have any concerns regarding the processing of data about you, please contact me so I can address your concerns.
You also have the right to complain to the Danish Supervisory Authority, Datatilsynet.