Privacy policy

Pontech’s personal data policy.

Pontech’s Personal Data Protection Policy

1. Scope

1.1 This policy describes the personal data processing within Pontech (hereinafter the “Company”, “we” or “us”).

1.2 We care about your privacy. It is important for us to protect your personal data and ensure our processing of personal data is conducted in a proper and legal manner. This policy is based on applicable legislation, including the General Data Protection Regulation (GDPR), and clarifies how we work to uphold your rights and your privacy.

1.3 This policy outlines what type of personal data we may process and the purpose of such processing, as well as the choices and rights you have in relation thereto.

1.4
The policy concerns the processing of personal data for which the Company is personal data controller. This means we are responsible for the handling and processing of your personal data. It also means that it you should turn to us if you have questions or comments, or if you want to exercise any of your rights in relation to our processing of your personal data.

1.5 This Personal Data Protection Policy applies when we process personal data collected from you.

2. Processed personal data

Our aim is not to process personal data in excess of what is required and we always strive to use the least sensitive personal data. Normally, we do not collect sensitive personal data, unless there are legal grounds for this, such as in the case of recruitments and employments. We mainly process your personal data for the purpose of fulfilling our obligations according to agreements, contracts and laws, as well as for the purpose of customer and market analysis.

For an individual who is a contact person at a company that purchases services from us, or is a supplier to us, we may process the following personal data in relation to you:

(a) name
(b) email address
(c) phone number
(d) address
(e) customer number/supplier number
(f) information about your employer and your work position

3. The purpose of the processing and legal grounds

3.1 In relation to contact persons at the Company’s customers or suppliers, we process the personal data listed in clause 2 above for the purpose of managing our customer and supplier relations, delivering of goods and services, and marketing of our goods and services. The processing is based on our legitimate interest of making our operations and our contacts with customers and suppliers more efficient, as well as marketing purposes. In situations where the Company sells goods or services to a company where you are the contact person, the processing is done on the basis that we are required to fulfil our contractual obligations with the company you work for.

3.2 In relation to contact persons at the Company’s customers and suppliers, we process the personal data in clause 2 above for the purpose of managing statistics, customer surveys and analysis of sales/projects. The processing is based on our legitimate interest of being able to follow up on, analyse and ensure the quality of sales/projects.

4. Storing of personal data

4.1 In relation to contact persons at the Company’s customers and suppliers, we store your personal data as long as it is required in order to fulfil the purpose of the processing.

We store your personal data for as long as we, based on your professional role, deem you to be a potential customer to us. Personal data required to send marketing information to you is stored unless you object to the marketing.

4.2 We always process your personal data based on the extent and for the time period we are legally obliged to do so. An example of this is personal data required to ensure correct accounting. The personal data is stored for seven years after the date of the business transaction. In cases where the personal data is not linked to applicable legislation and current contracts, we review our registers once every two years to delete outdated personal data.

4.3 When applying for a vacant position with us, we store and process your personal data for recruitment purposes and to be able to contact you. If you give your consent to future recruitment opportunities, we may also store personal data for up to 12 months after our last contact with you, with the purpose of possibly contacting you for follow-up later. You can withdraw your consent at any time during the 12-month period.

4.4 To the extent your personal data is no longer required to fulfil the purpose of the processing, or if the processing for other reasons is no longer permitted, the personal data will either be anonymised or erased.

5. Recipients

5.1 We may disclose your personal data to our personal data processors, for example a company providing IT or cloud services. In such cases, a personal data processing agreement is entered into, and ensures your personal data is processed in accordance with this Personal Data Protection Policy.

5.2 We may also disclose your personal data to government authorities if required.

5.3 We do not disclose your personal data to any third party.

6. Security

6.1 We have procedures and working methods in place to ensure your personal data is processed in a secure way. Our aim is to only allow access to the personal data to employees and other persons within the organisation who require access in order to perform their work duties.

6.2 Our security systems are developed with a focus on your privacy, and provide high protection against data breaches, destruction and other actions that may pose a risk to your privacy. We have robust IT security processes to ensure your personal data are securely processed.

7. Rights

7.1 You have the right to be informed if we process personal data in relation to you, and if so, to have access to such personal data, including information about the personal data and our processing of them.

7.2 You have the right to have inaccurate personal data in relation to you rectified by us without unnecessary delay. You furthermore have the right, depending on the purpose of the processing, in certain circumstances, to have incomplete personal data completed.

7.3 You have the right to, in certain circumstances, have your personal data erased by us. For example, if your personal data no longer is required to fulfil the purposes for which they were collected, or if the personal data is processed in an illegal way.

7.4 You have the right, in certain circumstances, to request that we restrict our processing of your personal data. If you, for example, dispute the accuracy of the personal data, you may request us to restrict the processing during the time it takes us to validate the accuracy of the personal data.

7.5 You have the right to object to the processing of your personal data that is based on our legitimate interest. In such cases, and to continue the processing, we must demonstrate compelling legitimate reasons that override your interests, rights and freedoms

7.6 You have the right to object to the processing of your personal data to the extent the processing is related to direct marketing. In case of such objection, we will no longer process your personal data for that purpose.

7.7 You have the right, under certain circumstances, to receive the personal data concerning you, which you have provided to us, in a machine-readable commonly used format. You have the right to transmit those data to another personal data controller (data portability).

7.8 You are welcome to contact us (see Contact us) if you have concerns about our processing of your personal data. You further have the right to lodge a complaint about the processing of your personal data with the Swedish Data Protection Agency (Sw. Datainspektionen). Note, however, that there may be restrictions by law or other regulations that affect your rights above.

8. Collection of data and tracing

You can visit our website without submitting any personal data. We use Google Analytics, Hotjar, and cookies to enhance our services and the user-friendliness of our website, as well as to analyse the use of the website. Apart from the approximate location (IP address), information collected is mostly anonymous traffic data, such as web browsing information, device and language.

To ensure our website is well functioning and to improve navigation, we or our service providers use cookies (small text files stored on the user’s computer) and web beacons (electronic picture files that allow our websites to count the number of visitors who have visited a certain page and to access certain cookies) to collect aggregate data. By using the website, you agree to the use of cookies. You can change the cookie settings in your web browser if you don’t want to allow cookies. (Read more “Cookies policy”)

9. Addenda and amendments

We may make addenda and amendments to this Personal Data Protection Policy. When we do so, we will publish the updated policy with a new revision number.

10. Contact us

Please contact us for any questions you have about our Personal Data Protection Policy, or if you wish to update, rectify or erase the personal data we have concerning you.

More information about personal data regulations can be found at the Swedish Data Protection Agency website: www.datainspektionen.se

Contact us
Contact us

Stockholm

08-403 05 900

Gothenburg

031-361 40 30

Malmö

040-645 33 70