Policy purpose and applicability
-
This policy aims to inform you about how Eurocon Consulting AB and its sister companies (hereinafter “Eurocon”) process personal data about you,
-
when Eurocon processes your personal data,
-
which of your personal data Eurocon processes and for what purposes, as well as
-
what rights you have in your capacity as
The Policy applies when you visit Eurocon’s websites, when you make contact with Eurocon and when you enter into or fulfil an agreement with Eurocon.
This policy is valid as of 25 May 2018.
Why does Eurocon process personal data about you?
Eurocon processes personal data that is required for
-
verifying your identity,
-
responding to enquiries or requests,
-
entering into or fulfilling agreements,
-
issuing invoices and other order documents,
-
offering existing or new services, as well as
-
being able to provide you with services during and after your purchase.
What types of personal data do we process?
To achieve the aforementioned purposes, we need to process the following personal data:
-
company name,
-
company address,
-
organisation number,
-
VAT registration number,
-
billing address,
-
First and last name of the company’s contact person,
-
email address of company’s contact person, as well as their telephone number
When you visit Eurocon’s websites, Eurocon can only identify the IP address from which the visit to the websites is made. Despite this, you will remain anonymous should you choose not to provide us with information that can be used to identify you, for example by sending an email to Eurocon.
On what legal grounds do we process personal data about you?
Eurocon processes your personal data in order to be able to enter into or fulfil an agreement with you. This means that we only process personal data about you for the purposes explicitly mentioned in this policy.
The provision of personal data by you is a contractual requirement that is necessary in order for us to be able to provide you with our products and personal services, or to procure products or services from you. Without the requested data, it is therefore not possible for us to provide our services or products to you, or to procure products or services from you.
How long do we retain your personal data?
The basic premise is that we only process your personal data for as long as it takes to fulfil or enter into an agreement with you. When the agreement with you has been performed in full, or has otherwise been terminated, we process your personal data for a further year following the agreement’s termination/performance. This is because the data may be required for establishment, exercise or defence of legal claims.
Personal data that you provide to us, and that is not required for the purposes for which we process your data, is deleted promptly, provided we have not obtained your explicit consent to further process this data.
Personal data that is required for invoicing purposes, as well as to meet the requirements of the Accounting Act, the VAT Act and other binding legislation, is retained for a period of at least ten years.
When do we disclose your data?
We don’t give away, sell or hire out your personal data to third parties. We don’t transfer your data to third countries either.
In certain cases, we may give out your data where this is necessary for monitoring, establishing or exercising legal claims. This may happen when there is reason to believe that the data is necessary in order to identify, contact or take action against someone who may have carried out a security breach on the website and or violated our general terms and conditions, or who has otherwise breached or infringed Eurocon’s rights or property.
Disclosure of your data can also occur where it is a legal requirement or if it is required in order for Eurocon to fulfil its legal or contractual obligations.
Security
Eurocon takes protection of your personal data very seriously. The security measures we have taken are based on the technical means available, the associated costs for implementing such measures, the known risks, as well the sensitivity of the data being processed.
Our aim is to process as little of your personal data as possible. To the extent that several different types of personal data can fulfil the same function, we only process the least privacy-sensitive data. We therefore don’t process certain categories of personal data (“sensitive personal data”) about you, unless you have explicitly consented to this.
Eurocon has taken security measures with the aim of protecting your personal data from unauthorised access or other forms of unauthorised use. For example, we have introduced access control and storage limitation procedures.
Your rights
According to the General Data Protection Regulation, you have various rights as a data subject. You are entitled to contact Eurocon at any time in order to exercise your rights. The easiest way to do this is to contact us at info@eurocon.se.
Eurocon may implement security or safety measures to verify that you are who you say you are. If you cannot credibly verify your identity, Eurocon may reject your request. Below you can read about your rights according to the General Data Protection Regulation and what these rights entail.
Eurocon may choose to charge a reasonable fee to cover the administrative costs for providing the information, implementing the requested measure or rejecting the request. However, this only applies to requests that are obviously unfounded or unreasonable.
Access to personal data
You have the right to request access to the personal data we process about you. This right is also referred to as the right to obtain register extracts and means that you receive a compilation document containing the personal data we process about you.
Rectification and erasure
If you consider that your personal data is incorrect, you have the right to request the rectification, supplementing or erasure of the information in question. Depending on which personal data is being erased, it is not guaranteed that Eurocon will be able to provide certain services to you.
Data portability
Under certain conditions, you have the right to obtain the information we process about you in a commonly-used, written, machine-readable and structured format. This right only applies to personal data you have personally provided to us and which is processed on the basis of the legal grounds of consent or entering into/fulfilment of an agreement.
Restriction of processing
You have the right to restrict the processing of your personal data. Restriction means that data is marked in such a way that it may only be processed for certain limited purposes. Depending on which personal data is being restricted, it is not guaranteed that Eurocon will be able to provide certain services to you.
Right to object
The right to object applies when the controller is processing personal data in order to perform a task of public interest, in the exercise of their public duties or following a balancing of interests. Eurocon does not process your personal data on the basis of any of these legal grounds. This means that you may not raise objections to our handling of your personal data on these bases.
Right to lodge a complaint
If you consider that we have processed your personal data improperly, you have the right to lodge a complaint with the supervisory authority – in this case with the Swedish Authority for Privacy Protection: PO Box 8114, 104 20 STOCKHOLM, email: datainspektionen@datainspektionen.se
Cookies
We use cookies to maintain our website, collect web statistics and to keep track of your preferences when you log in. The table below explains which cookies we use and for which purposes.
Contact details and information about the controller
Eurocon Consulting AB (“Eurocon”) with organisation number 556736–3188 is the controller of the personal data the company processes about you. Eurocon’s registered office is in Örnsköldsvik. Eurocon can be contacted by email: info@eurocon.se or by phone: +46 (0)660-29 56 00