Policy on Processing Personal Data
Established on April 23, 2019, for Sterisol AB.
This policy is based on current data protection legislation (GDPR) and clarifies how we work to protect your rights and privacy. We value your privacy. You should feel secure when entrusting us with your personal data.
Regarding customer and supplier contacts, we need personal data in the form of names, telephone numbers, and email addresses to maintain business relationships, fulfill obligations under the law and agreements, protect rights, perform customer and market analysis, marketing, and follow-up.
What personal data do we process?
We only process personal data when we have a legal basis to do so, to fulfill obligations under agreements and laws, or with your consent.
What is the legal basis?
Consent: The data subject has given consent to the processing of personal data.
Contract:: The data subject has a contract or is about to enter into a contract with the data controller.
Legitimate interest:The data controller may process personal data without the data subject's consent if the data controller's interests outweigh those of the data subject, and if the processing is necessary for the specific purpose.
Legal obligation: There are laws or regulations requiring the data controller to process certain personal data in its operations.
Vital interest: The data controller is obliged to process personal data to protect an individual who is unable to give consent.
How do we access your personal data?
We obtain access to your personal data through personal contact, telephone, agreements, email, or when you choose to identify yourself through social media such as Facebook and Linkedin. The information collected through cookies does not contain personal information but is used to determine the visitor's (IP address) patterns regarding the use of our web services at www.sterisol.se. IP addresses are stored in our databases for marketing purposes.
In some cases, we process your personal data based on our legitimate interest. If you have any questions or want to know more about how we have made these interest assessments, please contact us.
What rights do data subjects have?
You have the right to withdraw your consent at any time or not to follow us on social media. You have the right to object to us using personal data for direct marketing. You have the right to access data, rectification, erasure, and restriction of processing, as well as the right to lodge a complaint with the Swedish Data Protection Authority. When we collect personal data about you for the first time, you will receive more information about this and how you can object to it.
Please note that revoking consent may mean that we cannot fulfill our obligations towards you.
What information do we provide to you?
When we collect your personal data for the first time, we will inform you of how we obtained the data, what we will use it for, what rights you have under data protection legislation, and how you can exercise these rights. You will also be informed about who is responsible for the processing of personal data and how you can contact us if you have any questions or need to make a request or inquiry regarding your personal data and/or rights.
Are your personal data processed in a secure manner?
We develop routines and working methods to ensure that your personal data is handled securely. The starting point is that only employees and other individuals within the organization who need the personal data to carry out their tasks should have access to them. When the company has outsourced services (IT operations, e-invoicing services, archives), the company has established data processing agreements with these companies.
When do we disclose your personal data?
Our starting point is not to disclose your personal data to third parties unless necessary to fulfill our contractual or legal obligations. In cases where the company discloses personal data to third parties, or when third parties have access to personal data, data processing agreements are established, and we ensure that personal data is processed securely.
How long are personal data stored?
Personal data is stored as long as business relationships exist or as long as the company has any legal obligations as prescribed by agreements or laws. If processing is based on someone's consent, personal data is processed until the consent is withdrawn, or for a shorter period if the consent is time-limited.
Sterisol AB is the data controller, which means that we are responsible for how your personal data is processed and your rights are safeguarded.
If you have any questions regarding your personal data, a complaint, or an inquiry, please contact us.