WeSafe Privacy and Personal Data Policy

We care about your privacy. You should be able to feel safe when you entrust us with your personal data.

That is why we have established this policy. It is based on applicable data protection legislation and clarifies how WeSafe works to protect your rights and privacy. We therefore wish you to take the time to read through the following information. The purpose of this policy is to let you know how we process your personal data, what we use it for, who gets access to it and under what conditions, and what rights you have and how you can use it.

Background

We process your personal data primarily to fulfill our obligations to you and provide you with the best possible experience of our services. Our starting point is not to process more personal data than is necessary for purposes, and we always strive to use the least privacy-sensitive data.

We also need your personal data to provide you with good service, for example in terms of marketing, follow-up and information. We may also need your personal data to comply with laws and perform customer and market analyses. When you contact us through one of the communication channels we use, the contact information you provide is used to manage your case, manage the continued contact with you and to improve our service in case of recurring contact.

You have the right to object to us using personal data for direct marketing purposes. When we collect personal data about you for the first time, you will receive more information about this and how you can oppose it. If you visit our website, you agree to cookies for the processing of your data.

Guidelines

What personal data do we process?

We only process personal data when we have a legal basis. We do not process personal data unless it is necessary to fulfil obligations under contract and law. Here are examples of the personal data we process:

– Name

– Address

– E-mail

– Telephone number

– Title

– Username

– Photographs

– Debit card numbers, credit card numbers and other bank-related information

– Data you registered of your own accord and voluntarily state

– Content that you publish yourself, so-called user-generated content

– IP addresses

How do we access your personal data?

We try as far as possible to obtain your consent before we start processing your personal data. You agree to processing by accepting our terms and conditions? When you agree to our terms and conditions, you also agree that we process your personal data.

You have the right to withdraw your consent at any time. We will no longer process your personal data or collect new ones, provided that it is not necessary to fulfil our obligations under contract or law.

Keep in mind that revocation of consent may mean that we are unable to fulfill the obligations we have in relation to you. Read more about this in the section ”Your rights” below.

We also gain access to your personal data in the following ways:

– Information you provide to us directly

– Information recorded when you visit our website

– Data we receive from public registers

– Information we receive when you hire one of our employees

– Information we receive when you register for our courses or seminars

– Information we receive when you sign up for newsletters and other mailings

– Information we receive when you respond to questionnaires and surveys

– Information we receive when you contact us, apply for employment with us, visit us or otherwise contact us

What information do we give you?

When we collect your personal data for the first time, we will inform you about how we have obtained the personal data, what we will use it for, what rights you have under data protection legislation and how you can take advantage of it. You will also be informed about who is responsible for the personal data processing and how you can contact us if you have questions or need to submit a request or request regarding your personal data and/or rights.

Is your personal data processed in a safe manner?

We develop procedures and working methods to ensure that your personal data is handled safely. The starting point is that only employees and other persons within the organization who need the personal data to carry out their duties should have access to them.

With regard to sensitive personal data, we have set up special access checks, which means greater protection of your personal data. Our security systems are developed with your privacy in focus and very much protect against intrusion, destruction and other changes that may pose a risk to your privacy.

We have several IT security policies to ensure that your personal data is processed securely.

When do we disclose your personal data?

Our starting point is not to disclose your personal data to third parties unless you have consented to it or if it is not necessary to fulfil our obligations under contract or law. In order to be able to deliver some of our services, it is sometimes necessary that we share certain personal data with other companies. In cases where we disclose personal data to third parties, we draw up confidentiality agreements and ensure that the personal data is processed in a safe manner. The suppliers with whom WeSafe cooperates have corresponding obligations regarding the processing of personal data as the obligations we have towards you as a customer. We do not transfer personal data in cases other than those expressly set out in this policy.

How long do we save your data?

As long as there is a customer relationship, WeSafe saves your personal data. This is in order to be able to fulfill the obligations we have towards you. The data is also saved when necessary to achieve the purposes described in this policy. When the customer relationship ends, some data is deleted, others are anonymized, and some are deleted. This is done within a reasonable time after you cease as a customer of WeSafe unless current legislation says otherwise. How long your personal data is stored depends on the purpose for which it has been collected and what legal basis there is for the processing of your personal data. The personal data collected for billing purposes is stored for as long as it is necessary for accounting purposes. The personal data may also be saved if there is a balance of interests that says it is necessary and is based on other economic or security reasons. In these cases, storage is restricted and managed using the permission controls set out in this policy.

Your rights

Since this policy is about how your personal data is processed, we also want you to know what rights you have. You have the right to request a register extract of which of your personal data we process. You also have the right to have your personal data corrected if you believe that it is incorrect or misleading in any way and you have the right to restrict the processing of your personal data until we change it. You have the ”right to be forgotten” but erasure of personal data cannot take place if it is contrary to current legislation or if it is based on a balance of interests. You have the right to object to the processing if you think that the balance of interests is incorrect or that there are no legitimate reasons for the processing. You also have the right to withdraw your consent or lodge a complaint regarding the processing with the Swedish Data Protection Authority.

Responsibility and contact

Wesafe IT is the data controller, which means that we are responsible for how your personal data is processed and that your rights are exercised. If you have any questions about the processing of your personal data or questions regarding this policy, please contact us through dataskydd@wesafe.se or via the contact details on our website wesafe.se