Glykol AB, 556765-8983, Pilgrimsvägen 62, 12648 Hägersten, is a SaaS provider, hereinafter referred to as Glykol AB. Glykol AB is a Data processor and is responsible for the organizational and technical security measures.
Data controller is Glykol AB´s customer which is the registered organization at Glykol AB. This may be small and medium-sized companies, large companies, groups and industry associations as well as non-profit associations.
You who are users and have your own login details to Glykol AB Saas are referred to below as the ”User”. In Glykol AB SaaS, the role of ”System Administrator”, which is representative of the Customer in Glykol AB Saas, is responsible for uploading users and other system administrators, granting rights and access to Glykol AB´s SaaS.
Glykol AB is also data controller for processing the personal information that you share with us – as a customer. This information is used to maintain services for you and to communicate with you.
- you order Glykol AB Saas
- You get login information and become a user of Glykol AB Saas
- You enter into an agreement with Glykol AB
- You are registered as a contact person at Glykol AB for your organization
- You have a question and / or contact us
- You visit our website and accept cookies
What personal data does our services need
The information that should be collected by our customers in our systems is first name, last name, e-mail. These can then be linked to the user’s user profile. Therefore, username and password are also considered personal data. This applies to all user groups in our services. Our concepts are created in such a way that no sensitive personal data can or should be saved. There are also no reasons to save information about children. Note that it is our customer who is responsible for what information is stored in our services.
Why do we process personal information?
When the individual using Glykol AB’s SaaS they are logged in to the services by user namn and password. By this the services and benefits that the user expects to achieve can happen. The information that is collected is used to provide the user with products and services and to ensure that the user is able to use them safely and easily.
Who do we share personal data with?
The personal data is stored at the cloud service company 24-7webhosting that is GDPR compliant. The data is stored in Europe and 24-7webhosting is certified both according to the ISO 9001 quality standard and the ISO 27001 information security standard and has met the rigorous requirements for routines, processes and various systems contained in these.
How long do we save personal information?
Glykol AB saves personal information about you as a customer as long as there is a customer relationship or is necessary to achieve the purposes described in this policy. Upon termination of the agreement, Glykol AB will delete or anonymize customer related information within a reasonable period of notice, unless another Swedish or European law, court or authority says otherwise. After termination of the customer, we also delete the personal information generated through the use of the services.
What rights do you have?
As customer, user, registered with Glykol AB you have several rights that you should know. You are entitled to request a registry extract of any information that is registered about you, free of charge once a year, provided you have legitimate reasons.
You are entitled to have your personal information corrected if they are incorrect, incomplete or misleading and may limit the processing of personal data until they are changed.
You have the right to be forgotten, but deletion of personal data can not be done if it is required to fulfill the agreement or other Swedish or European law, court or government decision states otherwise, and if it is based on interest-weighting.
Should you find that there are no legitimate reasons or the balance of interest is incorrect, you may object to the treatment. You also have the right to withdraw a consent, make complaints about the processing to the Data Inspectorate, automatically oppose decision making, profiling and opposing direct marketing.
Appendix 1 – Categorization of personal data
When ordering a service
Category of tasks: Company data
Personal Information: Organization Number, Company Name, Address, Postcode, City
Legal basis: Comply with our contractual obligations to you
Category of tasks: Contact details
Personal information: First Name Last Name, Email, Phone
Legal basis: Comply with our contractual obligations to you
When using Glykol AB SaaS
Category of tasks: Contact details
Personal information: First Name, Last Name, E-mail
Legal basis: Comply with our contractual obligations to you
Category of tasks: Login details
Personal Information: Username
Legal basis: Comply with our contractual obligations to you
Category of data: Online identification
Personal data: IP address
Legal basis: Comply with our contractual obligations to you