This Policy applies to our websites, products, services, software, or apps on which we post a direct link to this Policy or refer to within this Policy (collectively the "Services"). This Policy covers data collected through the Services and not any data collection or processing practices of other services that maintain their own, separate privacy policies. Occasionally, we refer to this Policy in relation to surveys and special-purpose web pages, for example, our Careers web pages; under such circumstances, this Policy applies as modified in the particular notice or consent request (e.g., with respect to types of data collected or purposes of collection).
California Consumer Privacy Act. If you are a California resident, please review the Additional privacy information for California residents section below, for important information about how we collect, use and disclose personal information about California residents and your rights under the California Consumer Privacy Act.
GDPR. We have also developed and posted a GDPR Privacy Notice, which is available here. Our GDPR Privacy Notice contains additional information about how we process personal information that is subject to EU data protection laws (including those implementing the EU General Data Protection Regulation, or "GDPR").
If you are a UK resident, you also can be found by visiting here.
Types of Data and Collection Methods
The personal data we collect depends on how you interact with us, the services you use, and the choices you make.
Data you submit.
Contact Information: We collect your name, email address(es), telephone number(s), country & region, and data related to the business you represent when you request information from us, register, order a product or service, visit our offices, or otherwise intentionally provide us such information.
Data we collect automatically from our websites.
When you visit our websites, we collect some information automatically. For example:
Device and Browser Information: When you visit one of our websites, we collect general data from your computer or mobile device such as your browser type, operating system, IP address and the domain name from which you accessed the site, and if you are accessing our site with your mobile device, type of mobile device.
Browsing Activities: We collect data about how you use our websites, such as the date and time you visit the site, the areas or pages of the site that you visit, the amount of time you spend viewing the site, the number of times you return to the site and other click-stream data.
Third Party Sources.
We may also obtain personal data from third party sources such as data brokers, social networks, other partners, or public sources. For example, like most companies and organizations, we collect business contact information and other personal data from public and third-party sources related to current, former, or prospective business contacts including representatives of other companies, civil society organizations, the press, and governmental bodies.
Collection Purposes, Use of Data
We collect and process personal data about you with your consent and/or as necessary to provide the products you use, operate our business, meet our contractual and legal obligations, protect the security of our systems and our customers, or fulfil other legitimate interests. The purposes for which we collect and use each of the categories of personal data include:
• To respond to the request that you sent us such as your request for information, or your request to subscribe to a service or purchase a product;
• To provide, manage, maintain, and secure the Service(s) you request;
• To operate and improve our business, including to administer, protect, and improve our services and our systems, to develop new products and services, and for other internal business purposes;
• To better understand the preferences of the users of our Services, compile aggregated statistics about usage of our Services, and help personalize your experience of our website and Services;
• To provide you with information about our technologies, product or service releases, news, and other communications;
• To respond to legal process (eg, court orders, subpoenas or warrants) or regulator investigations and inquiries, or where otherwise required by law or our legal, regulatory or ethical obligations；
• Any other use we describe in this Policy or at the point where we collect the data.
To achieve these purposes, and to the extent permitted by applicable law, we may combine the various types of data that we collect from different on and offline sources. In addition, we may de-identify and/or anonymize the personal data we collect such that it no longer can be used to identify you and, in such case, the de-identified and/or anonymized data is no longer subject to this Policy and we use such data for our business purposes.
Where We Store and Process Data
We store and process data in Sweden and on servers around in the world, including, without limitation, Asia and the European Economic Area. Wherever we store or process personal data pursuant to this Policy, we take measures designed to ensure that the data is processed in accordance with this Policy and in compliance with applicable law.
In order to provide services, we may need to transfer your personal data to locations in other jurisdictions. If you are based within European Economic Area (EEA), please note that where necessary to deliver the services, we will transfer personal data to countries outside the EEA. Countries outside the EEA may not provide an adequate level of protection to your personal information, which is why the Sveaverken entities have signed the cross-border data transfer Standard Contractual Clauses (SCC), to provide appropriate safeguards and an adequate level of protection for personal information.
You have a right to obtain details of the mechanism under which your personal data is transferred outside of the EEA; you may request such details by contacting us as set forth in the "How to contact us" section below.
We may share each of the categories of personal data we collect with the following types of third parties.
• Sveaverken affiliates may have access to personal data we collect, for example, where we share common data systems, where access is needed to provide our services or operate our business, or when we share your request to subscribe to a newsletter regarding certain products or services with the applicable Sveaverken affiliates.
• We may also share your personal data with service providers who process the data on our behalf for the purposes set forth in this Policy. For example, companies we've hired to provide customer service support or assist in protecting and securing our systems and services may need access to personal data to provide those functions. See also the description above in the section on cookies regarding our use of advertising and analytics service providers.
• We may also offer training or other services to the employees and workers of our business customers. In such cases, we may share data relating to the use of our training and other services with the identified business customers for their business use.
• We may also share your data as required by law or in the interest of protecting or exercising our or others' legal rights, protecting the security of our systems or those of our customers, and protecting people’s physical safety. Such disclosures may occur, e.g., without limitation, in connection with requests from law enforcement officials and in connection with court proceedings.
• We may share or transfer your data in connection with a prospective or actual sale, merger, transfer or other reorganization of all or parts of our business, including related negotiations.
• We may respond to claims asserted against us, enforce or administer our agreements and terms, or for fraud prevention, risk assessment and investigation, and to protect and defend the rights, property or safety of us, our clients and customers, or others.
• Finally, we may also share your personal data where you have granted us permission.
Note that we do not “sell” personal data as that term is defined by the California Consumer Protection Act (“CCPA”) and similar legislation, and have not done so in the previous 12 months.
Opt-In/Out. In some circumstances, such as email marketing, we offer you the ability to opt-in or opt-out of some kinds of data collection, use, or sharing. In such circumstances, we will respect your choice. If you opt- out of receiving emails about recommendations or other information we think may interest you, we may still send you emails about your account or any services you have requested or received from us.
Data Subject Rights. You are entitled by law to the following rights in respect of your personal data:
(1) Information and Access: You have the right to be provided with certain information about our processing of your personal data and access to that data.
(2) Rectification: If your personal data changes, we encourage you to inform us of the change. You have the right to require inaccurate or incomplete personal data to be updated or corrected.
(3) Erasure: You have the right to require that your data be erased in certain circumstance where it is no longer necessary for us to process this data in relation to the purposes for which collected or processed the data.
(4) Data Portability: You may have the right to have the data transferred to you or another controller in a structured, commonly used and machine-readable format, where this is technically feasible.
(5) Right to Restriction of Processing: You have the right to restrict ’our processing of your personal data while your request for data rectification or objection to personal data processing is being considered, if we no longer need to process your data but you need that data in connection with a legal claim, or if our processing is unlawful but you do not want us to erase the data. If this right applies, we will continue to store your data but will only further process it with your consent, for the establishment, exercise or defense of legal claims, to protect the rights of another person, or for reasons of important public interest.
(6) Right to Complaints: If you have any objection to our data processing activities and this Policy, you have the right to lodge a complaint with the regulatory authorities in your country or region.
We guarantee that you may lawfully exercise the relevant rights described in this section by contacting us or by changing settings. Please note that we may ask you to verify your identity and request before taking further action on your request. In general, we will not charge you any fees unless such requests exceed the usual requirements. If you have any questions, you can contact us.
Do Not Track. We do not currently respond to “Do Not Track” (“DNT”) signals sent by web browsers. A uniform standard has not yet been adopted to determine how DNT signals should be interpreted and what actions should be taken by websites and third parties that receive them. However, you may use a variety of other means of controlling data collection and use, including cookie controls in your browser settings and the personalized advertising controls described in the Cookies section above.
Non-Discrimination/Financial Incentives. The laws of some countries or states prohibit us from discriminating against you for exercising your rights described above and imposes requirements on any financial incentives offered to you related to your information. If we offer any such financial incentives, we will describe them in more detail here.
We retain personal data while your account is active, or as needed to provide you services. We will delete or de-identify personal data within a reasonable time after the data is no longer necessary for the business purposes for which it was collected. We will, however, retain and use personal data as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
Third-party websites and links
Our Sites may contain links to other sites whose information practices may be different than ours. Visitors should consult the other sites' privacy notices as we have no control over information that is submitted to, or collected by, these third parties.
Transmissions over the Internet are never 100% secure or error-free. However, we take reasonable steps to protect your data from loss, misuse, and unauthorized access, disclosure, alteration, and destruction. It is your responsibility to safeguard your passwords and User IDs and to notify us using one of the contact methods listed below if you ever suspect that your password or User ID for one of our Services has been compromised. To help us protect personal data, we request that you use a strong password and never share your password with anyone or use the same password with other sites or accounts. You are solely responsible for any unauthorized use of our Services conducted via your password and User ID.
We reserve the right to change, modify, add, or remove portions of this Policy at any time, but will alert you that changes have been made by indicating on the Policy the date it was last updated. If we change the Policy in a material way, we will provide appropriate online notice to you at least thirty days in advance and/or obtain your express consent as required by law. When you visit our websites or use our Services, you are accepting the current version of this Policy. We recommend that users revisit this Policy on occasion to learn of any changes.
How to Contact Us
Effective Date: October 1, 2022
©2022 Sveaverken, Inc. and/or its affiliated companies.
Additional Privacy Information for California Residents
In this section, we provide additional information to California residents, as required under California privacy laws, including the California Consumer Privacy Act (“CCPA”). This section does not apply to publicly available information lawfully made available by state or federal government records, identified information, aggregate consumer information, or other personal information that is exempt under the CCPA (such as information covered by the Health Insurance Portability and Accountability Act).
While our collection, use and disclosure of personal information varies based upon our relationship and interactions with you, in this section we describe, generally, how we have collected and disclosed personal information about California residents in the prior 12 months (from the Last Updated date above), and the rights California residents have under the CCPA regarding this personal information.
· Categories of personal information that we collect and disclose
The table below identifies the categories of personal information (as defined by the CCPA) that we have collected about consumers in the prior 12 months, as well as how we have disclosed such information for a business purpose (subject to our applicable legal and ethical obligations). For more information about the business and commercial purposes for which we collect, use and disclose personal information, please see the “Collection Purposes and Use of Data” and “Disclosures of Personal Data” sections above.
*Personal information collected
*Personal information collected
No, Categories of third parties
*Disclosed for business purposes
||Name, phone number, email address, country & region||No|
|Ads marketing||Name, phone number, email address||No|
|Automatically collected information-- Device and Browser Information||Browser type, operating system, IP address and the domain name from which you accessed the site, and if you are accessing our site with your mobile device, type of mobile device||No|
|Automatically collected information-- Browsing Activities||the date and time you visit the site, the areas or pages of the site that you visit, the amount of time you spend viewing the site, the number of times you return to the site and other click-stream data.||No|
|Automatically collected information—Cookies||date/time of banner ad shown, a unique identifier contained in their cookie, mobile IDs, the IP address of your device, and associated device and usage data.||No|
In addition to the above, we may disclose the personal information that we collect to others, as necessary to comply with applicable laws or our legal and ethical obligations. We do not sell personal information about California residents, including those we have actual knowledge are younger than 16.
• Categories of sources of the personal information that we may collect
As further described in the Information we collect section above, we may collect personal information directly from individuals, as well as from third parties* and other sources:
• Service providers*
• Judicial and quasi-judicial bodies*
• Regulatory and government entities*
• Public sources and records
• Social networks
*Additional information about the categories of third parties listed above:
• Service providers: includes vendors, service providers, and content providers.
• Judicial and quasi-judicial bodies: such as courts, arbitral bodies and tribunals.
• Regulatory and government entities: government, administrative, law enforcement and regulatory agencies; tax authorities; corporate registries; and other public agencies or authorities.
• Affiliates: our affiliates and subsidiaries, as well as other our member and relationship firms.
• CCPA Rights
In general, California residents have the following rights with respect to their personal information:
Do-not-sell (opt-out): to opt-out of our sale of their personal information. We do not sell personal information about California consumers, including those we have actual knowledge are younger than 16.
Right of deletion: to request deletion of their personal information that we have collected about them and to have such personal information deleted (without charge), subject to certain exceptions.
Right to know: with respect to the personal information we have collected about them in the prior 12 months, to require that we disclose the following to them (up to twice per year and subject to certain exemptions):
• categories of personal information collected
• categories of sources of personal information
• categories of personal information about them we have disclosed for a business purpose or sold
• categories of third parties to whom we have sold or disclosed for a business purpose their personal information
• the business or commercial purposes for collecting or selling their personal information
• a copy of the specific pieces of personal information we have collected about them
Right to non-discrimination: the right not to be subject to discriminatory treatment for exercising their rights under the CCPA.
• Submitting CCPA Requests
California residents may submit CCPA requests to know (access) and requests to delete their personal information through one of the following methods:
Online by emailing [email@example.com]
By phone at [+46 (0)150-48 77 00]
When you submit a request to know or a request to delete, we will take steps to verify your request by matching the information provided by you with the information we have in our records. You must provide your name and contact information to verify your request. In some cases, we may request additional information in order to verify your request or where necessary to process your request. If we are unable to adequately verify a request, we will notify the requestor. Authorized agents may initiate a request on behalf of another individual by contacting us by email at the above link; authorized agents will be required to provide proof of their authorization and we may also require that the relevant consumer directly verify their identity and the authority of the authorized agent.
For more information about our privacy practices, you may contact us as set forth in the How to contact us section above.