Privacy Policy

Systecon Group AB, corporate identity number 556710-8492 (“Systecon”, ”we”, ”us” and ”our”), with address Box 19171, 104 32 Stockholm, is the data controller for the processing of your personal data.

Personal data we process regarding you

The personal data we process about you is name, title, employer, email, phone number and pictures.

Your personal data have been collected either directly from you or from your employer in connection with the business relationship between us and your employer.

Purpose and lawful basis for processing your personal data and storage time

It is not a statutory or contractual requirement to provide us with your personal data. Furthermore, you do not have any other obligation to provide us with your personal data. It may however affect our possibilities to enter into a contract with you or our possibilities to administer the contractual relationship with you if you do not provide us with your personal data.

Customer or employee of a customer

When you contact us as a customer, and when you are using our services and purchase our products, we will process your personal data for the purpose of providing the services and products as stipulated by the contract. This processing is carried out on the basis to fulfil our obligations according to the contract with you.

Your personal data as an employee of a customer will also be processed in relevant cases in accordance with the contract with the customer for the purposes of handling invoices, payment and administration of the contractual relationship, handling deliveries and for contact and communication. When your personal data as an employee are being processed we do that on the basis of a legitimate interest. The legitimate interest of Systecon is to offer your employer and our customer with the services and products we provide.

If you are having a customer relationship with us, or have had within the last twelve (12) months, or are employed by such customer, and have not consented in accordance with what is stated in the paragraph below, we process your personal data on the basis of a balance of interests between your interests and our legitimate interest of being able to market our products and services for the purpose of direct marketing. We never process sensitive personal data on the basis of a legitimate interest. This processing may include sending newsletters, information about our courses and other direct marketing.

If you have given us your consent, we process your personal data for the purpose of direct marketing. This processing may include sending newsletters, information about our courses and other direct marketing.

In relevant cases where we process personal data concerning you as a customer or you as an employee of our customer for bookkeeping purposes, e.g. invoicing or payment of our services or products, we carry out this processing on the basis of legal obligations according to the Swedish Accounting Act.

Neither customer nor customer employee

We process your personal data when you contact us or when you have asked us to contact you. The purpose of our processing is to help you with questions regarding Systecon or related to using our services or products. This processing is carried out on the basis of a legitimate interest. The legitimate interest of Systecon is to help future customers and other interested parties by answering questions and provide potential material.  

We process your personal data for the purpose of direct marketing that is relevant for your professional role. The purpose is to inform potential future customers about Systecon’s services and products. This processing is carried out on the basis of a legitimate interest. The legitimate interest of Systecon is to inform potential customers about such available services and products that might be of interests for the customer in the customer’s professional role. This processing may include sending newsletters, information about our courses and other direct marketing.

If you have given us your consent we process your personal data for the purpose of direct marketing. This processing may include sending newsletters, information about our courses and other direct marketing.

Employee of a supplier

Your personal data as an employee of one our suppliers are being processed in accordance with the contract with the supplier for the purposes of handling invoices, payment and administration of the contractual relationship, handling deliveries and for contact and communication. When we process your personal data related to your role as an employee we do it on the basis of a legitimate interest. The legitimate interest of Systecon is to be able to administer the contracts and fulfil our obligations towards our suppliers/your employer.

In applicable cases we process your personal data in your role as an employee of our supplier for accounting purposes, for instance regarding invoicing or paying your services or products. This processing is carried out on the basis of a legal obligation in accordance with the Swedish Accounting Act.

Particularly regarding pictures

We will process pictures of you from different arrangements such as event and seminaries which we arrange and which you have participated in. The purpose of the processing is to inform about our business. This processing is carried out on the basis of a legitimate interest and Systecons legitimate interest is to inform about our business.

Our use of Cookies

When you are using our website we may process your personal data in the form of your IP address when using Cookies. You can read more about our use of cookies at https://www.systecongroup.com/gl/cookies

Who may get access to your personal data?

Your personal data may be shared with suppliers who process your personal data on our behalf, i.e. data processors. Our data processors handle inter alia our IT-infrastructure (DGC One AB, Sweden), financial system (PE Accounting, Sweden), system for customer data handling (SuperOffice, Norway and eMarketeer, Sweden) and our web site (Happiness, Sweden). In addition, suppliers of different cloud services related to our product development and recruitment may be added.

We also transfer your personal data to recipients other than data processors. These recipients are independent data controllers when processing personal data, for instance public authorities and collection agencies.

Transfers of personal data to third countries or international organizations

We and our suppliers and partners, as a general rule, only process your personal data within the EU/EEA. In cases where personal data are processed outside the EU/EEA, there is either a decision from the European Commission that the relevant third country ensures an adequate level of protection, or appropriate safeguards, e.g. standard data protection clauses, binding corporate rules, or Privacy Shield, to ensure your rights are protected. If you wish to receive a copy the safeguards taken by us or information regarding where these have been made available, you can obtain it by contacting us.

How do we protect your personal data?

We, and in relevant cases third parties, have taken several security measures to protect the personal data that is being processed. We have firewalls and anti-virus software to protect and prevent unauthorised access to our networks and systems. Our employees have strict instructions to process all personal data in accordance with applicable laws and regulations. Only a limited number of employees have access to the facilities and systems where personal data are being stored and passwords and usernames are required to access these systems.

How long do we keep your personal data?

We never process your personal data for a longer period than is allowed by applicable law, regulation, case law or authority decision. Personal data that we process in order to fulfil our agreement with you are normally processed for the period that it is necessary for us to be able to fulfil our obligations towards you. To comply with legal obligation, because you have given your consent or because we have the right to do so on the basis of a legitimate interest, we may keep your personal data for a longer period in accordance with what is stated below.

Your personal data that is processed on the basis of a consent are being processed until you withdraw your consent.

Your personal data that is processed on the basis of a legitimate interest with the purpose to perform direct marketing towards you are being processed in accordance with applicable national law and case law. If you have a customer relationship with us we process your personal data for no more than one (1) year after the cessation of the customer relationship or until you notify us that you do not wish to receive our send outs anymore. If you are not an active customer we process your personal data for no more than three months or until you notify us that you do not wish to receive our send outs anymore.

Any information concerning payments where processing is required in accordance with the Swedish Accounting Act are being processed as stipulated by the law for seven (7) years. We process some information regarding your purchase in accordance with applicable legislation for purchase of goods and services and consumer protection.

Your rights

In accordance with applicable data protection regulation, you have the right of access to the personal data we process regarding you, and have the right to request rectification of your personal data. 

During certain circumstances, you are entitled to request the erasure or restriction of your personal data or object towards our processing of your personal data. Furthermore, during certain circumstances, you are entitled to receive the personal data concerning you in a structured, commonly used and machine-readable format and have the right to transmit the personal data to another data controller.

You have the right to fully or partially withdraw a given consent regarding the processing of personal data at any time. With effect from the time of the withdrawal. You also have the right to object against the processing of your personal data for direct marketing.

If you have any complaints regarding our processing of your personal data you have the right to lodge a complaint to the Swedish Data Protection Authority or any other competent supervisory authority that monitors enterprises’ processing of personal data.

Contact us

If you wish to exercise your rights in accordance with what is stated above or otherwise wish to contact us regarding our processing of your personal data you may contact us
by telephone +46 8 459 07 50 or e-mail dataskydd@systecon.se.  
______________________

This privacy policy was established by Systecon Group AB on 4th of May 2018.