Cookies on SPG Nordic
1. What information do we process?
We collect personal information, such as name, surname, company name, professional title, e-mail address and telephone number, among other things when you register a user account, conclude agreements, order services, or otherwise provide your personal information to us.
2. The purpose of processing personal data
Personal data for customers and potential customers is stored for the following purposes: Administration regarding sales of SPG Nordic’s products and services, marketing and preparation of quotation proposals.
3. Legal basis
According to current data protection regulations, there must be legal support, a so-called legal basis, for our processing of your data to be legal and necessary. Below are the legal bases we use.
1) Fulfillment of agreements.
We only process necessary information to identify you as a customer or user to handle and deliver orders in accordance with your agreement.
2) Legal obligation
We process your data in order to fulfill our statutory obligations, e.g. your billing information according to the Accounting Act.
3) Balancing of interests
We process your data to develop our services, processes and to market our products and services directly to you.
In some cases, you can subscribe to our newsletter and marketing materials by subscribing to our website, or by submitting your request for our products and services via web forms, or in other circumstances agree that we process your information. You then agree that we process your data only for the stated purpose.
4. Recipient of the data
In some cases, SPG Nordic forwards personal data about customers to the following categories of recipients with whom SPG Nordic cooperates: Insurance companies, finance companies, and possibly other cooperating companies.
In some cases, the information can be transferred and processed by own companies within the Group in order to be able to deliver services or extensive security measures. However, these parties may not use your information for any purpose other than that which we have provided to you.
5. Storage time for personal data
Your information is stored as long as you have a contractual or business relationship with us and as long as it is necessary with regard to the purpose of the processing. After the end of the relationship, we save your information for up to 12 months. In cases where there are legal requirements to save data for a long time, we follow such laws. We save information that forms an invoice basis for seven years in accordance with the Accounting Act.
6. Right to information about the processing of personal data
All persons who request information about what personal data SPG Nordic stores about the person in question have the right to receive information about this in accordance with applicable law, regardless of how these were collected. Such information may contain information about where we received the personal data, the recipients or the categories of recipients with whom the personal data was shared and the purpose of the processing of the personal data. If you would like such information, please send a written request to firstname.lastname@example.org Requests for register extracts are archived by SPG Nordic. We will respond to your requests without undue delay and within one month. If for any reason we are unable to fulfill your wishes, a justification must be provided and we will also inform you how long we need to respond to your request. We will send your register extract to your population registration address or to the e-mail address you provided in connection with the start of the treatment.
7. Right to rectification
We have a responsibility to ensure that the information we process is correct. In the event that you, as the questioner, believe that any information is incorrect, you have the right to request that this be corrected. The request must be made to SPG Nordics via e-mail: email@example.com SPG Nordic shall promptly decide whether the request is justified and take appropriate action and then inform you as the questioner of how the correction has been handled.
8. Right to deletion
Your information is stored as long as you are a customer of ours and then deleted as soon as possible if no other applicable law indicates otherwise. Invoicing information and invoice documents are stored for as long as is necessary by law, e.g. the Accounting Act.
9. Right to object
If we perform on the basis of a balance of interests, you have the right to object to the processing of your data. You must then specify which treatment you object to. If, after evaluation, we believe that such treatment should still take place, we must show that our interest in the treatment outweighs it.
10. Right to restriction
The right to limitation applies when you consider that the information is incorrect and requested correction. In such cases, you can also request that the processing of the data be restricted while the accuracy of the data is being investigated.
11. Right to portability
You have the right to obtain the information that you have provided to us and to use it in another way, provided that you have given consent to the data processing or if you have provided the information in connection with the agreement.
However, you are not entitled to data portability if we process these due to a balance of interests or an obligation under law.
12. Right to complain
If you believe that the processing of your data is in violation of current regulations, you have the right to submit a complaint to us as soon as possible.
13. Withdrawal of consent
You also have the right to revoke a consent to the processing of personal data at any time.
14. Email Address Management Policy
SPG Nordic respects your personal privacy. For information and newsletters via e-mail, the following applies to the handling of subscribers’ e-mail addresses and other information. Under no circumstances will our subscribers’ email addresses be sold or rented out to another party. Mailings are made in such a way that an e-mail address does not become available to anyone other than the current recipient. The reason why we collect our customers’ e-mail addresses, names, regions, etc. is only to improve the information service and make it more relevant and personal. If you do not want this, of course we respect it!
To keep the personal data we process in safe custody, we have taken several security measures. We enter into agreements with our suppliers and partners regarding their processing of your personal data to ensure that these are processed in accordance with our instructions. If your personal data is transferred to operations in countries outside the EU / EEA, we enter into an agreement, regulatory transfer and handling of personal data and containing, for example, the standard contract clauses approved by the European Commission, with the receiving company. Furthermore, access to the spaces where personal data is stored is limited and our employees must use a personal identifier to access them, passwords and usernames are required to log in to the corporate network, we have firewalls and antivirus software and otherwise take the technical and organizational security measures required to protect and prevent unauthorized access to your personal data.