The purpose of this policy is to tell you how we treat and process your personal information — how we use that information, who has access to that information and under what conditions, and how you can take advantage of your rights.
We process your personal information primarily to fulfil our obligations to you. Our starting point is not processing more personal information than is necessary for these purposes, and we always strive to use the least sensitive data.
We also need your personal information to provide you with good service, such as marketing, follow-up, and other important information. We may also need your personal information to comply with laws, as well as to conduct customer analyses and market analyses.
You are entitled to oppose the use of your personal data for direct marketing. When we collect personal information about you for the first time, you will get more information on this use and how to oppose it.
What personal data do we process?
We only process personal information when we have legal basis to do so. We do not process personal data in any case other than when it is needed to fulfil legal or contractual obligations. Here are examples of personal data we access and process:
- Email address
- Phone number
- Payment/debit card number and other bank-related information
- Information that you have recorded yourself and/or have willingly provided
- Content that you publish such as user-generated content
How do we access your personal information?
We try to obtain your consent as far as possible before we begin processing your personal information. You agree to this processing of your personal data by accepting our terms and conditions. By agreeing to these terms and conditions, you also agree that we may process your personal information.
You have the right to revoke your consent at any time. If you revoke your consent, we will no longer process your personal information or obtain any new information, provided that such information or processing is not necessary to fulfil our legal or contractual obligations. Keep in mind that withdrawal of consent may mean that we cannot fulfil certain obligations we have in relation to you.
We also have access to your personal information through the following means:
- Details you provide directly
- Information that is recorded when you visit our website
- Information we receive when you attend an event with us
- Information we receive from public records
- Information that we receive when you hire one of our employees
- Information that we receive when you sign up for our newsletters and other mailings
- Information that we receive when you answer our surveys and questionnaires
- Information that we receive when you seek employment with us, visit us, or otherwise contact us.
Vilken information ger vi till dig?
När vi samlar in dina personuppgifter för första gången kommer vi där så är möjligt att informera dig om hur vi har fått tag i personuppgifterna, vad vi kommer att använda dem till, vilka rättigheter du har enligt dataskyddslagstiftningen och hur du kan ta tillvara dessa. Du kommer också att bli informerad om vem som är ansvarig för personuppgiftsbehandlingen och hur du kan kontakta oss om du har frågor eller behöver lämna en begäran eller förfrågan som avser dina personuppgifter och/eller rättigheter.
What information do we provide you?
When we collect your personal information for the first time, we will be able to inform you about how we have received this personal data, how we will use that data, what rights you have under data protection legislation, and how invoke those rights. You will also be informed of who is responsible for processing your personal data and how to contact the relevant parties if you have questions, need to make a request, or if you have an inquiry regarding your personal information and/or your rights.
Is your personal information processed safely?
We have routines and procedures in place to ensure that your personal information is managed safely. Our starting point is that only employees and other persons within the organization who need your personal data to perform their duties should have access to it.
In the case of sensitive personal data, we have established special access controls, meaning that there is a higher standard of protection for your personal data.
Our security systems are developed with your privacy in mind and are designed to protect against intrusion, destruction, and other changes that could pose a risk to your privacy.
We have IT security policies to ensure that your personal information is processed safely.
We do not transfer personal data in cases other than those expressly stated in this policy.
When do we share your personal data?
We will not disclose your personal information to third parties unless you have consented to it or if it is not necessary to fulfil our legal or contractual obligations. In cases where we disclose personal information to third parties, we establish confidentiality agreements to ensure that your personal data is processed safely and securely.
Steningevik Konferens AB is the responsible data controller which means that we are responsible for how your personal data is processed and for how your rights are taken into account.