Elpro in Alingsås AB GDPR and Privacy Policy

At Elpro, we are committed to protecting your privacy, and process all information and personal data in accordance with applicable laws and regulations. Whenever we process personal data or other important information, we take appropriate measures to prevent unauthorised access, disclosure, alteration or destruction.

 

PURPOSE
The purpose of our privacy policy is to explain how we collect and use your personal data. We will also outline your rights and how to proceed if you have comments or wish to submit a complaint to us.

 

OBJECTIVE
Our goal is to reassure you that your privacy is protected and respected, and that your personal data is properly processed. All personal data must be processed with care and in accordance with applicable law.

 

What data do we process?
Data you provide us

You may directly or indirectly need to provide us with the following information:

  • Personal and contact details: name, date of birth, personal identification number, billing and delivery address, email address, mobile phone number, etc.
  • Payment details: billing details, bank account number, etc.

 

The data you provide us – including information about the services as well as your financial position – is generally required to enter into a contractual relationship with us. Other data is required for other purposes; you can read more below.

 

What do we do with your data?
All data is used to provide, deliver and improve our services, and to uphold applicable agreements. We process personal data on the following legal grounds and for the following purposes:

 

  • Purpose of processing

To confirm your identity and verify your personal and contact details.

  • Legal basis for processing (why the processing is required)

To fulfil commitments under our agreement with you.

 

  • Purpose of processing

To administer your payment and customer relationship, e.g. to fulfil any of our obligations to you and to supply information, products and services that you request from us.

  • Legal basis for processing

To fulfil commitments under our agreement with you.

 

  • Purpose of processing

To determine which payment methods we can offer you, e.g. through internal or external credit assessments.

  • Legal basis for processing

To fulfil our commitments under our agreement with you and to comply with applicable law.

 

  • Purpose of processing

For customer analysis, administration of our services and for our internal operations, including troubleshooting, data analysis, testing, research and for statistical purposes.

  • Legal basis for processing

To fulfil commitments under our agreement with you and other legitimate interests.

 

  • Purpose of processing

To ensure that the content is presented effectively for you and your device.

  • Legal basis for processing

To fulfil commitments under our agreement with you.

 

  • Purpose of processing

To prevent misuse of our services as part of our efforts to keep the services safe and secure.

  • Legal basis for processing

To fulfil commitments under our agreement with you and to comply with applicable law.

 

  • Purpose of processing

To carry out risk analysis, prevent fraud and manage risk.

  • Legal basis for processing

To comply with applicable law and other legitimate interests.

 

  • Purpose of processing

To improve our services and for general business development, such as improving credit risk models in order to e.g. minimise fraud, develop new products and features and new business opportunities.

  • Legal basis for processing

Other legitimate interests.

 

  • Purpose of processing

To comply with applicable law, such as the Swedish Anti-Money Laundering Act, accounting laws and capital adequacy requirements.

  • Legal basis for processing

To comply with applicable law.

 

Communications
We may use your personal data to communicate relevant information about the services you use with us, as well as information about similar services that may be of interest. We may also use your personal data to conduct customer satisfaction surveys about our services, e.g. through electronic communication channels and by phone. If you do not wish to receive such communications, you are welcome to contact us or you can unsubscribe from our mailing list.

 

Who might we share your data with?
We may transfer your data to or share it with selected third parties. We will take all reasonable legal, technical and organisational measures to ensure that your data is processed securely and with an appropriate level of protection when transferring to or sharing with such selected third parties. We may share your data with the following parties, or in the event of the following:

  • Suppliers and subcontractors
    If necessary, we will disclose your personal data to suppliers or subcontractors in order to be able to fulfil our commitments in accordance with our agreement with you and for other purposes set out in this privacy policy.

 

  • Government authorities
    We may provide the required data to government authorities, such as the police or the Swedish Tax Agency, if we are obligated to do so by law or if you have agreed to for us to do so. An example of when we as an employer have a legal obligation to hand over data is for measures against money laundering and the financing of terrorism.

 

  • Disposal
    We may share your data with third parties:

– If we sell or buy businesses or assets. In these cases, we may provide your personal data to a potential seller or buyer of such businesses or assets.

– If a substantial part of our assets is acquired by a third party.

Please note that we will never sell your personal data to third parties without your consent.

 

Where do we process your personal data?
We always strive to process your data within the EU/EEA. However, in certain situations, your data may be transferred to, and processed in, a country outside of the EU/EEA by a company within our group or by another supplier or subcontractor. As we are determined to always keep your data protected, we will take all reasonable legal, technical and organisational measures to ensure that your data is processed securely and with an adequate level of protection comparable to the level of protection offered in the EU/EEA.

 

How long do we store your personal data?
We will store your data for as long as is necessary to fulfil our contractual commitments to you and as long as required by statutory retention periods. When we retain your data for other purposes than for our contractual commitments, such as in order to meet the requirements for accounting or measures against money laundering, we will retain your data only as long as is necessary and/or statutorily required for each purpose.

 

Your rights to access, rectification and erasure

  • Right to access your data
    You can request a copy (known as register extract) of your data and verify the data we hold on you. Requesting a copy is free of charge.

 

  • Right to rectification
    You have the right to correct any false or incomplete data about yourself.

 

  • Right to erasure (“right to be forgotten”)
    You have the right to request erasure of your personal data if the data is no longer necessary for the purpose for which it was collected. However, there may be legal obligations that prevent us from immediately erasing portions of your data. These obligations arise from accounting and tax law, as well as banking and money laundering law. In such cases, we block the data that we are required to retain from being used for purposes other than fulfilling such legal obligations.

 

RESPONSIBILITY
It is the responsibility of the company’s senior management to ensure that all employees who process personal data have sufficient training and technical resources to ensure that no undue encroachment on the privacy of a data subject can occur.