GDPR Privacy Policy for OpiFlex

GDPR Privacy Policy for OpiFlex

We at OpiFlex Automation are committed to protecting you and your personal privacy. It is important for us that you should feel safe when you provide us with your information. We therefore treat your personal data in a transparent way with your privacy in focus.

In this privacy policy, which applies to anyone who in any way uses OpiFlex Automation services or products and/or otherwise has contact with us, we describe, among other things, how and why we treat your personal information and what Rights you have under applicable personal data legislation.

Unless specifically stated otherwise, it is OpiFlex Automation AB, org. No SE 556854-4554 Glödgargränd 3, 721 30 Västerås, (“OpiFlex”, “we”) is responsible for the processing of your personal data. The OpiFlex also includes the sister company OpiFlex Solutions AB, as well as other sister and subsidiary companies owned by the Prästmyran Invest AB, org. No SE 556817-7207.

You are always welcome to contact us if you have any questions about this policy or other data protection issues. Contact details can be found at the end of this policy.

What is a personal data?

A personal data is any information that directly, or indirectly, can be attributed to a natural person. Examples of this are from Social Security numbers to e-mail addresses, but also encrypted data can be personal data if they can be linked to natural persons.

What is a “treatment” of a personal data?

The concept of “treatment” is broad and covers most things you can do with a personal task. Everything from collection and storage to alteration, use or deletion constitutes “treatment”.

When do we collect personal information about you?

  • Information you provide to us

We collect and process personal information that you provide to us, such as When you visit our website, purchase a particular product or service, sign up for our newsletter, contact us, or use our digital channels.

  • Information collected when you use our services

When you use our services, we record information about your use. This information includes the services you use, the pages you visit and how you behave on the website. For example, we use Google Analytics and other tools to record information. This information may include the operating system, browser version, IP addresses, cookies and unique identifieringsfiler.

  • Data from other sources

We collect personal information, such as e-mail addresses, which you have provided to other companies within the group with whom you have a customer relationship. We do this to ensure that we always have updated information to you and to be able to provide offers on our own, other group companies and selected partners ‘ goods and services. Examples of data we collect are identity and contact information such as: Name, email address, and phone number.

We also collect your information in cases where your employer has signed an agreement with us about, for example, training and has provided your personal information to us, for example, to ensure that communications in connection with the agreement are made with you or that the service Delivered to you on behalf of your employer.

In some cases, we may obtain information from other sources such as Partners and other suppliers. We also collect and update your address information via third-party address update Services.

Why do we treat your personal information?

In order for us to provide services and goods to you, we must process your personal information.

We process your data mainly to:

  • Administer and provide our services and goods
  • Manage customer service cases and other inquiries
  • Provide information and promote goods and services that you may be interested in
  • Improve our services and goods, for example by examining and evaluating customer satisfaction or the market.

See further information under point 7.

What is the legal basis for processing your personal data?

The processing of personal data requires the existence of a legal basis for this. OpiFlex processes personal data on the following grounds;

  • When the processing of personal data is necessary for us to be able to complete a contract that we have with you – e.g. To provide or manage a service you have purchased
  • Where the processing of personal data is necessary for the performance of a legal obligation e.g. Accounting obligation
  • Where we have a legitimate interest in processing your personal data e.g. To be able to respond to requests for goods or to communicate with you about similar goods and services you previously purchased
  • When the processing of personal data is permitted because you have given your consent to it.

See further information under point 7.

How long do we save your data?

Your personal data will only be processed for as long as it is necessary for the purposes for which they have been collected-for example, as long as it is required for us to fulfil the obligations that we have in relation to an agreement with you. We may keep this information longer if required to do so by law or to safeguard our legal interests, such as If a legal process is in progress.

Your personal data will be deleted or anonymised when they are no longer relevant for the purposes for which they have been collected.

See further information under point 7.

Compilation of our personal data processing

For what purposes do we treat your personal information? What legal basis do we have for the processing? What categories of personal data are processed? How long will your data be stored?
Manage inquiries, such as Questions about our services/products. Legitimate interest. • Identity data e.g. Name
• Contact details, such as address, telephone number and e-mail
• Customer interactions e.g. Journal notes and Mailings
As long as it is necessary to handle your enquiry.
Manage the customer relationship, such as Register your information in our customer register, send notifications, communicate with you about the customer relationship, etc. Completion of contracts and in some cases a balance of interest if the agreement to provide you with a service has been concluded with a legal entity. • Identity data e.g. Name
• Title and Right of authorization
• Contact details, such as address, telephone number and e-mail
• Customer interactions e.g. Journal entries and Mailings.
• Details of your purchases
As long as you have a customer relationship with us and two years thereafter.
To administer and deliver our goods and services. Completion of contracts. In cases where sensitive personal data is processed, this is done on the basis of your express consent and only where it is necessary to provide the services you have requested. • Identity data e.g. Name
• Title and Right of authorization
• Contact details, such as address, telephone number and e-mail
• Sensitive personal data such as food allergies in the event that you are attending events where food is served
As long as you have a customer relationship with us and two years thereafter.
Manage payments for services and goods you’ve purchased. Completion of contracts and in so far as it is subject to a legal obligation such as the Accounting Act. • Identity data e.g. Name
• Contact details, such as address, telephone number and e-mail
• Invoice Information
• Payment Information
• Customer engagement, e.g. What you bought for service/product
As long as we are required to store the data under applicable law and as long as it is necessary for the contract.
Establish, assert and exercise/defend against legal claims. Legitimate interest. • Identity data e.g. Name
• Contact details, such as address, telephone number and e-mail
• Invoice Information
As long as it is necessary to satisfy our interest in determining, asserting and exercising legal claims e.g. Statutory limitation periods.
To market our and our partners or group companies ‘ goods and services in order to provide relevant information and offers. Legitimate interest. • Identity data e.g. Name
• Contact details, such as address, telephone number and e-mail
• Customer segments, e.g. Information about which customer segment you belong to
• Geographic information
• IP address, device information, log information
Two years after you last been active with us, for example by purchasing a product or contacting our customer service.
Monitoring and evaluation regarding the use of our services & products. Legitimate interest in improving your user experience. • Identity data e.g. Name
• Title
• Contact details, such as address, telephone number and e-mail
• Customer engagement e.g. What you bought for service/product
• generated tasks, e.g. Information about your interactions on our websites
As long as it is necessary to carry out follow-up and evaluation.
Conduct market/customer surveys in order to evaluate our goods & services. Processing is necessary to satisfy our legitimate interest in obtaining information about your and other customers ‘ perceptions of e.g. Our services and products. Legitimate interest. • Identity data e.g. Name
• Title
• Contact details, such as address, telephone number and e-mail
• Response Results
• Customer Segments
• Geographic information
The data are only saved as long as it is necessary to send out the surveys. The replies to the surveys are anonymous and therefore the data do not constitute personal data.
Lifecycle management, such as To troubleshoot, log, develop, test and improve our systems and services. Legitimate interest. • generated tasks, e.g. Information about your interactions on our systems and services
• IP address, device information, log information
Saved only as long as it is necessary for the purpose.
Pictures from events in order to document company history and to be used for editorial purposes and for the marketing of similar events. Legitimate interest. • Where applicable, name, title, company
• Picture
As long as it is justified on the basis of a company’s historical perspective as well as as long as the images are current to use in order to market similar events.
To manage your account ownership. Completion of an agreement with you or a balance of interest if the agreement to provide you with an account has been concluded with a legal entity. • Name, address, telephone number and e-mail
• IP address, device information, log information
• Information about how you use our web, about which of our offers you have been interested in, which of our newsletters you have interacted with and which of our events you signed up to
• Information about your account ownership
As long as you have an account with us and a year thereafter.
Implement and manage recruitment processes and incoming job applications. Interest in managing the recruitment process. • Name, address, telephone number and e-mail
• Other information you provide in your application e.g. title, experience, etc.
As long as the recruitment process for the service you have sought is in progress and as long as required by the applicable limitation requirements of the Discrimination Act. In the event that we want to save your data for future recruitments, we will request your consent.
If you register your CV in our database, the personal data is stored and processed in order to match you with relevant job offers. However, this does not happen with the help of automated decision-making. Completion of agreements with you. • Identity Data
• contact details
• Other information you provide in your application e.g. title, experience, etc.
We store the data until you choose to deregister your account or otherwise notify us that you do not want to be included in the database, or if you have been inactive for more than 3 years.

Profiling

If you are a customer of ours, we look at how you use our web, which of our goods, services and offers you have been interested in, which of our newsletters you interacted with and which of our events you signed up to, details of your purchases and information about your account Nnehav. We do this to provide you with offers and invitations to events that we think you would be interested in.

You may object to the processing of personal data by profiling. You can do this by contacting us at gdpr@opiflex.se.

Who can we share your information with?

We share your personal information with our sister company OpiFlex Solutions AB, org. No 556999-2125, for the communication and delivery of offers of our own, sister company and selected partners ‘ goods and services. To be able to send relevant offers to you, receiving companies can also process your information. The company receiving the data is responsible for the processing of your personal data that it carries out for these purposes.

We may share your personal information with companies and suppliers who provide services to us e.g. To handle mailings, communicate offers, provide IT systems and conduct customer analyses. These companies may only process your personal information in accordance with our instructions and may not use your information for their own purposes.

We may also share the personal data necessary for the identification, assertion and exercise of OpiFlex automation’s legal interests, for example with collection companies.

We may also share your personal information if it is provided by law or government regulations, for example if we are required to disclose information to the Skatteverket for accounting purposes.

Where is your data processed?

As a starting point, your personal data is processed within the EU. In the event that we use service providers that transfer your personal data to countries outside the EU and the EEA, we will take steps to protect your personal data in accordance with applicable legal requirements, for example by requiring guarantees that The supplier protects the data in accordance with applicable data protection rules. If you would like to know more about the security measures we have taken, please contact us.

Your rights

Rectification and access to your personal information

As a registered person, you have the right to request rectification of erroneous information at any time or change the personal information you provided.

You also have the right to take part of the personal data we have registered about you. This is done by requesting a so-called register extract.

Withdrawing consent with future effect

If we process your personal data on the legal basis consent, you have the right to revoke your continued consent for future processing at any time.

Oppose Treatment

You have the right to oppose treatments that we perform on the basis of a balance of interests.

You can opt out of advertising and communications at any time. You can unsubscribe by clicking on a link in the current mailing or contacting us (see contact details below).

Deletion

Under certain circumstances, you have the right to have your personal data deleted. This does not, however, apply if we are required by law to retain the data.

Restriction of treatment

You may also have the right to request that the processing of your personal data be limited. However, if you request that the processing of your information be limited, we may not be able to fulfill our obligations to you during the time the treatment is limited.

Data portability

In the event that you wish to move your information from us, you also have the right to obtain a copy of the personal data concerning you collected in a structured, machine-readable format (right to data portability). This right includes only information that you have shared with us.

Especially about cookies

When you visit our websites we use cookies. We will shortly update our cookiepolicies.

Complaints regarding our processing of your personal data

Should you be dissatisfied with the way we process your personal data, we ask you to contact us in the first instance at gdpr@opiflex.se

If you are not satisfied with the way we handle your complaint, you may present your complaint to the competent supervisory authority, currently the data Inspection Board.

Data controller Contact details

OpiFlex Automation AB, org. No 556854-4554, Glödgargränd 3, 721 30 Västerås, Tel: 010-206 94 00, is a data controller and is responsible for OpiFlex automation processing of your personal data.

If you have any questions about data protection or if you want to use your rights as described above, you can easily reach us at:

gdpr@opiflex.se

Changes to the Privacy policy

We reserve the right to make changes to our privacy policy. You can always find the latest version on the website. In the event of updates that are critical to our processing of personal data (for example, modification of specified purposes), this will be communicated to you.