Drafted 2019-04-23, for Sterisol AB.
The policy is based on applicable data protection legislation and clarifies how we work to safeguard your rights and privacy. We care about your privacy. You should be able to feel safe when you entrust us with your personal data.
Regarding customer and supplier contacts, we need personal data in the form of name, telephone number and e-mail address in order to maintain business relationships, fulfill legal and contractual obligations, exercise rights, perform customer and market analysis, marketing and follow-up.
We only process personal data when we have a legal basis, to fulfill obligations under contracts and laws or have your consent.
Consent: The data subject has agreed to the processing of personal data.
Agreements: The data subject has an agreement or is to conclude an agreement with the controller.
Balance of interests: The controller may process personal data without the consent of the data subject if the interests of the controller outweigh the data subject's interests and if the processing is necessary for the purpose in question.
Legal obligation: There are laws or regulations that require the controller to process certain personal data in the course of its activities.
Basic interest: The controller must process personal data in order to protect a data subject who cannot give consent.
We access your personal data through personal contacts, telephone, contracts, emails or when you have chosen to identify yourself through social media such as Facebook and Linkedin. The information collected through cookies does not contain any personal information but is used to determine the visitor's (IP address) patterns regarding the use of our web services on www.sterisol.se. IP addresses are stored in our databases to be used for marketing purposes.
In some cases, we process your personal data based on our legitimate interest. If you have any questions or would like to know more about how we have made these trade-offs, please feel free to contact us.
You have the right at any time to withdraw your consent or not follow us on social media. You have the right to object to our use of personal data for direct marketing purposes. You have the right to access data, the right to rectification, erasure and restriction of processing and the right to lodge a complaint with the Privacy Protection Authority. When we collect personal data about you for the first time, you will receive more information about this and how you can object to it.
Please be aware that withdrawal of consent may mean that we are unable to fulfil our obligations to you.
When we collect your personal data for the first time, we will inform you how we have obtained the personal data, what we will use it for, what rights you have under data protection law and how you can use it. You will also be informed about who is responsible for the processing of personal data and how you can contact us if you have questions or need to make a request or request relating to your personal data and/or rights.
We develop procedures and working methods to ensure that your personal data is handled securely. The starting point is that only employees and other persons within the organization who need the personal data to perform their duties should have access to them. Since the company has outsourced services (IT operations, e-invoice services, archives), the company has drawn up personal data processing agreements with these companies.
Our starting point is not to disclose your personal data to third parties unless it is necessary to fulfill our obligations under contract or law. In cases where the company discloses personal data to third parties, or that third parties have access to personal data, a personal data processing agreement is drawn up and we ensure that the personal data is processed in a reliable manner.
The personal data is stored for as long as there are business relationships, or as long as the company has any legal obligations under contract or law stipulated. If processing is based on someone's consent, the personal data will be processed until the consent is withdrawn, or for a shorter period if the consent is timed.
Sterisol AB is the data controller, which means that we are responsible for how your personal data is processed and that your rights are exercised.
If you have questions about what applies to your personal data, a complaint or a question, please contact the company. Sterisol AB, Box 149, 592 23 Vadstena.