Privacy Policy: For Video Dataset Subjects

Last Updated:2025-02-18

Welcome

Who Should Read This Policy?

This Privacy Policy is relevant even if you are not a user or customer of Project Hafnia but are curious about why and how we process personal data for R&D purposes. We explain how we process personal data to innovate, generate new knowledge, and develop products as part of our work at (Milestone System A/S - “Project Hafnia”, “PH”, “we”, “Milestone”), including how we:

Collect, use, store, delete, and share personal data.
Maintain confidentiality and apply privacy-preserving techniques by default.
Ensure personal data is not distributed to the public nor accessed by unauthorized people.
Never identify, target, or profile individuals in our research activities.

We value data protection and privacy and we are committed to protect individuals data.

If you’re looking for information related to the processing of personal data of our users, please refer toPrivacy Policy: For Users.

The Role of Personal Data in Advancing R&D at Project Hafnia

At Project Hafnia, we utilize visuals of personal data to advance our Research and Development (R&D) initiatives. Personal data play a crucial role in enabling us to develop products, improve computer vision awareness, and create technologies that benefit individuals, society, and the environment.

Confidentiality and Privacy-Preserving Practices

The data and information we collect for our research are, as a general rule, kept confidential and are never made publicly available. We systematically apply privacy-preserving techniques by default to safeguard individuals' data.

Non-Identification

As a rule, PH does not identify individuals, take measures against them, or engage in profiling as part of our research activities.

Ethical Data Usage

We are committed to ethical AI development and take pride in the contributions of our partners who source and process data responsibly. To reinforce this commitment, we have established clear ethical guidelines for:

For more information on our ethical commitment, please see ourEthical Oath

Contacts

Legal entity processing your personal data:

Milestone Systems A/S
Company Registration No: 20341130
Banemarksvej 50
2605 Brøndby, Denmark
Tel.: +45 88 30 03 00

If you have any questions or concerns about our processing of personal data or wish to withdraw your consent, please reach out to us athafnia@milestonesys.com

Authorities Contact

Datatilsynet (Danish Data Protection Agency)
Carl Jacobsensvej 35
DK-2500 Valby
Denmark
phone + 45 33 19 32 00

Please visitwww.datatilsynet.dkfor more information.

For other relevant European supervisory authorities, please seehere.

Processing Data to Advance R&D at Project Hafnia

We process personal data to achieve the following objectives:

Set New Industry Standards: Establish robust datasets and end-to-end compliance frameworks to advance computer vision development responsibly.
Build a Compliant Data Space: Develop an indexed, adaptable, and compliant space for model development.
Analyze Privacy-Preserving Techniques: Assess the quality and robustness of privacy measures applied to images and videos.
Innovate Curation and Annotation Flows: Build advanced methods for curation and labeling of data.
Optimize Models: Improve the accuracy and performance of computer vision models.
Benchmark Models: Evaluate computer vision models for accuracy, performance, and biases.
Advance VLMs and Foundational Models: null
- Create new training and fine-tuning techniques.
- Enable and deploy Vision-Language Models (VLMs) and foundational models effectively.
Develop New Use Cases: Advance computer vision.
Generate New Knowledge and Insights: Expand innovation in computer vision.

These goals reflect our commitment to responsible innovation and the development of cutting-edge technology in the field of computer vision.

Our Approach

At PH, we are committed to acquiring data exclusively through official channels under dedicated license agreements. We do not use web crawlers, data scraping, or data mining to expand our data acquisition processes.This approach ensures ethical and transparent data acquisition practices in alignment with our privacy commitments.

Sources of Personal Data

We obtain personal data from the following trusted sources:

Cities: Data provided through partnerships and agreements with municipalities.
Our Own Cameras: Data collected directly by PH cameras and available Milestone Group data.
Resellers and Partners: Data sourced from Resellers of Milestone solutions and their associated Partners.
Universities: Data sourced through academic collaborations.
Public and Open Source Datasets: Data available through publicly accessible and open sources, where the license allows it.

Privacy Preserving Techniques for Personal DataAny service involving personal data has privacy-preserving techniques applied. The data will neither be distributed nor made downloadable by our customers or users of our products.

Access to Raw Data by Processors and Research PartnersOur data processors and key research partners may, in some cases, access raw data. This data is pseudonymized to the greatest extent possible using state-of-the-art anonymization techniques.

Types of Personal Data Processed

Visual Data (Personal Identifiable Attributes):
- Facial features of individuals.
- Body shapes and physical movements.
- Actions performed in the footage (e.g., waiting at a signal, walking, cycling).
- Identifiable clothing or accessories (e.g., distinctive uniforms, logos, brands, or reflective gear).
Vehicle-Related Data:
- Vehicle license plates.
- Vehicle brand, model, color, or other distinctive visuals.
Contextual Data:
- Exact or approximate location where the video was recorded.
- Exact or approximate date and time of the recording.
- Visually identifiable landmarks.

These measures ensure the ethical handling of personal data while balancing the need for innovation and research.

Our processing of personal data requires a legal basis, and we ensure that all activities involving personal data are conducted in compliance with applicable laws and regulations.

We process it because it is necessary for our legitimate interests in conducting scientific research within the core areas in which we operate.

Additionally, we process personal data to:

Develop and improve our offerings to benefit users globally.
Gain insights into how our products and services are used.

We process personal data in accordance with:

GDPR Article 6(1)(f): Processing necessary for legitimate interests.
GDPR Article 9(2)(j): Processing for scientific research purposes.
Section 10 of the Danish Data Protection Act.

In all cases, we have thoroughly assessed that our legitimate purposes do not override the rights and interests of individuals.

We may share personal data with the following parties to support our operations and development efforts:

Public Authorities:

When legally required, we may share data with public authorities upon request.

Suppliers and Service Providers:

Suppliers and Service Providers may require access to certain data to support and advance our R&D efforts.
These include entities such as consultants, law firms, and other service providers.

Research Organizations we collaborate with:

Research Organizations that support our research and innovation efforts may require access to certain data.
These include entities such as research labs, universities etc.

Private Research or Innovation Departments:

Close collaboration partners may require access to certain data to advance research, innovation and product development.

All data sharing is conducted in compliance with applicable laws and guided by agreements ensuring confidentiality and the protection of personal data.

We may transfer personal data to countries outside the European Economic Area (EEA). In such cases, we ensure the protection of personal data by using one or more of the following safeguards, as required by law:

Adequacy Decisions by the EU Commission:

Personal data may be transferred to countries that the EU Commission has deemed to have an adequate level of data protection.

Standard Contractual Clauses:

For transfers to countries without an adequacy decision, we rely on Standard Contractual Causes approved by the EU Commission.
We conduct thorough assessments of the processor and the processing activity to ensure compliance with legal requirements.

Comprehensive Assessments:

All use of processors and storage of personal data in third countries is carefully evaluated, considering the scope of the transfer, the safeguard level, and compliance with Data Processing Agreements (DPAs).

These measures ensure that personal data transferred outside the EU/EEA is protected and processed in accordance with applicable data protection regulations.

We retain personal data for a period of 7 years. However, during this period, we conduct periodic reviews to ensure that no data has become obsolete or lost its value. If data is deemed unnecessary before the retention period ends, it may be deleted sooner.

Retention Evaluation

We evaluate the relevance of the data every 7 years.
If the data is still relevant, we may extend the retention period by an additional 2 years.
This evaluation process will repeat at the end of each extended retention period.

Data Deletion Procedures

Destroy the data, ensuring it is permanently and irreversibly deleted.
Anonymize the data, provided current techniques guarantee that re-identification is impossible.

Retention by Partners

Our partners adhere to the same retention periods. They may delete data earlier if required or at our request, ensuring consistency in data handling and protection.

This approach ensures we only keep personal data as long as it is necessary and relevant while maintaining a high standard of security and compliance.

When personal data is processed for scientific purposes, certain rights under the GDPR may be limited. We are committed to addressing your questions and concerns regarding the processing of personal data.

Important Notes:

If you are not a user of our platform, due to the nature of the personal data we process, we do not have your contact information.here. (LINK NEEDED)
If you are a user of our platform,here.

Changes to this Privacy Policy

We regularly update our privacy policy to reflect new privacy practices or changes to our policies. We recommend that customers, partners, and website visitors revisit this Privacy Policy periodically to stay informed.

If you have any questions about this policy or wish to exercise your rights, please contact us athafnia@milestonesys.com We are committed to responding to your inquiries within one month, though we strive to reply sooner.

This Privacy Policy was last updated in March 2025.