2022-04-06 the following policy has been established for Eco3 AB.
We protect your privacy. You should be able to feel safe when you entrust us with your personal data. That is why we have established this policy. It is based on current data protection legislation (GDPR) and clarifies how we work to safeguard your rights and your privacy.
The purpose of this policy is to let you know how we process your personal data, what we use it for, who can access it and under what conditions, and how you can exercise your rights.
We process your personal data primarily to fulfill our obligations to you – regardless of whether you are a customer or a business partner. Our starting point is to never process more personal data than is needed for the current purpose, and we always strive to use the least privacy-sensitive data.
If you are a customer or partner, we need your personal data to provide you with good and agreed service, for example in terms of delivery, marketing, follow-up and information. We may also need your personal data to comply with laws and perform customer and market analysis aimed at improving our service.
You have the right to object to us using personal data for direct marketing. When we collect personal data about you for the first time, you will receive more information about this and how you can object to it.
What personal data do we process for customers and partners?
We only process personal data when we have a legal basis. We do not process personal data other than when it is needed to fulfill obligations according to concluded agreements and current legislation, or when you have given your consent. Here follows the personal data we process for you as a customer/collaboration partner:
As a customer or partner, we collect necessary personal data on our various contract forms. Information that is collected is needed to fulfill our obligations according to the current agreement and information about the collection is in the respective agreement text.
You can withdraw your consent at any time, the safest way to do this is by sending an email to email@example.com where you clearly state who you are, so that we can certainly act on the right individual. We will then no longer process your personal data or obtain new ones, provided that it is not necessary to fulfill our obligations according to agreement or law. Keep in mind that withdrawal of consent may mean that we cannot fulfill the obligations we have in relation to you.
We may also gain access to your personal data in the following ways:
For all these cases, of course, it also applies that we only handle the personal data that we have a legal basis to handle.
Your data is processed as long as our contractual relationship requires it in order for us to be able to fulfill our obligations and protect our rights according to the current agreement. Necessary information is then saved that needs to be available in relation to various authorities. Our basic routine for deleting personal data regarding external contact persons means that outdated data is deleted at least once per calendar year.
We collect personal data as above. Your rights in this regard are protected in accordance with data protection legislation and you can contact us at any time to find out what personal data information we have stored about you – with one week’s notice. Contact is preferably made via email at firstname.lastname@example.org.
We develop routines and working methods to ensure that your personal data is handled securely. The starting point is that only employees and other people within the organization who need the personal data to perform their tasks should have access to it.
In terms of sensitive personal data, we have set up special authorization checks, which means a higher level of protection for your personal data. Sensitive personal data only appears in our systems regarding employees.
Our security systems are developed with your privacy in focus and protect to a very high degree against intrusion, destruction and other changes that may pose a risk to your privacy.
We do not transfer personal data in cases other than those expressly stated in this policy.
Our starting point is not to disclose your personal data to third parties if you have not consented to it or if it is not necessary to fulfill our obligations under contract or law. In cases where we disclose personal data to third parties, we draw up confidentiality agreements and ensure that the personal data is processed in a reassuring manner.
Eco3 AB is responsible for personal data, which means that we are responsible for how your personal data is processed and that your rights are taken care of.