PRIVACY POLICY

Extent

The scope of this policy is limited to the processing of personal data required by the General Data Protection Regulation (GDPR). This includes Automation Technology, external consultants who perform tasks on behalf of Automation Technology and personal data assistants who perform data processing on behalf of Automation Technology.

 

In addition to the general guidelines in this policy, detailed requirements in local data protection laws, where applicable, must be followed by employees when processing personal data.

 

In the case where Automation Technology is the personal data assistant for an external organization, the data processing must be done in accordance with this policy, unless otherwise stated in a personal data access agreement between Automation Technology and the data controller.

 

The Privacy Policy applies to all personnel who perform tasks on behalf of Automation Technology regarding the processing of personal data. It is also intended to form the basis for information to personal data providers regarding personal data processing. This also applies to personal data assistants who carry out personal data on behalf of Automation Technology.

 

Roles and responsibilities

Personuppgiftsansvarig

Automation technology in Hässleholm AB, with org. No. 556499-1403 (hereinafter referred to as "Automation Technology or the Company") is responsible for the processing of your personal data when Automation Technology provides and markets services and products and for other contacts with the Company. As a personal data manager, it is the company's responsibility to ensure that your data is handled correctly and securely in accordance with applicable legislation.

Automation Technology has a common IT infrastructure with other companies within the Levins group. Personal data covered by this infrastructure is managed in accordance with a common policy, which ensures the safe handling of your personal data.

 

Personal Data Assistants

External suppliers and the like where personal data is processed on behalf of Automationsteknik are called personal data assistants. A personal data assistant shall perform the tasks specified in a personal data access agreement.

 

Employees

All employees are personally responsible for the legal and correct processing of personal data in their daily work. By following the Levins Group's governing documents regarding IT and personal data processing, employees contribute to compliance with the correct personal data processing.

 

Privacy Requirements

Legal basis for processing

Personal data may only be processed if certain conditions are met:

 

  • If the person to whom the personal data relates has given their consent to the processing.

  • The treatment is necessary for the performance of an agreement to which the person is a party.

  • The treatment is necessary for the Levins group to fulfill a legal obligation.

  • The processing of personal data is needed to, for example, protect or save lives

  • Automation Technology's legitimate interest in processing personal data outweighs the individual's interest in not having their personal data processed.

 

Principles for processing personal data

 

Legality, accuracy and transparency - When processing personal data within Automation Technology, we must ensure that the processing is legal, and that we are transparent and open to personal data providers.

 

Data Minimization - In Automation Technology, we never collect and handle more personal data than is required to fulfill the purpose of the data. This means that we must ask ourselves in every collection of personal data if necessary. If the purpose of data processing has expired, we must delete personal data that is no longer needed.

 

Purpose restriction - When collecting personal data, we must have a clear and legitimate purpose for the collection and processing. If the purpose is no longer valid, we must delete the personal data processed according to the purpose. If we want to process personal data for a new purpose, it must not be incompatible with the original purpose, for example outside of what the personal data provider concerned would reasonably expect. We must also make sure to inform the personal data provider about this, as well as the legal basis for which we process the personal data.

 

Accuracy - Personal information must be accurate and current. Personal data that is incorrect or incomplete must be erased or corrected.

 

Storage Minimization - Personal data should only be stored for as long as necessary for the purposes for which the data is processed or as required by applicable law (for example, the Accounting Act). When that time has expired, personal data must be permanently deleted in a secure way. If we want to keep personal data for a longer period than required for the purpose, we must ensure that the data can no longer be linked to a person, directly or indirectly (anonymization / pseudonymization). For personal data that we have received from a person with whom we have a customer relationship, we retain these for the period of time that is the practice determined by the national data protection authority.

 

Integrity and confidentiality - Personal data must be protected, among other things, against unauthorized or unauthorized treatment and against loss, destruction or damage through an accident. The Levins Group should therefore take appropriate technical and organizational measures to protect personal data.

 

Responsibility - Automation Technology is responsible for ensuring that the principles of personal data processing are followed when personal data is processed and should be able to show how they are followed.

 

Rights of the personal data provider

 

Automation technology shall respond to the wishes of the personal data provider in the manner required by applicable law or otherwise considered reasonably practical and appropriate in consultation with our personal data controller.

 

Transparency and information - Persons whose personal data are processed should be clearly informed. Such a message should be concise, accessible, written in clear and simple language and must contain some specific information.

 

Right to information - An individual can request information about Automationsteknik's processing of personal data.

 

Right to rectification and deletion - An individual can request that individual data be corrected or deleted.

 

Right to object - In some cases, an individual has the right to object to the data controller's processing of his or her personal data.

 

Right to object - Applies when personal data is processed to perform a task of public interest, as part of an exercise of authority or after a balance of interests.

 

Responsible for the personal data and the duties of the personal data assistant

 

Data protection through “privacy by design” - Any new service or business process introduced by Automation Technology that involves the processing of personal data should be designed to take into account the protection of such data, for example by ensuring that necessary security measures are built into its design (“Privacy by design”). Each such new service or business process should also be designed to ensure that, by default, only personal information necessary for the specific purpose of the processing is processed ("privacy by default").

 

Impact assessment of data protection - Where there are high risks when processing personal data, especially when it comes to new technologies, cloud services and other IT systems, Automation Technology should conduct an impact assessment prior to such processing. Automation technology must then follow the data inspection guidelines on impact assessment.

 

Reporting of personal data incidents - employees who suspect that this policy or relevant data protection laws have been violated should contact Automation Technology's data protection representative immediately to enable Automation Technology to comply with statutory reporting requirements.

 

Security measures - An employee who has access to personal data may only process the data in accordance with the purpose of the processing, and may not share, distribute or otherwise disclose the personal data to a third party unless instructed to do so by Automation Technology. Appropriate technical and organizational measures should be implemented to protect personal data against accidental or unlawful destruction, accidental data loss or alteration, unauthorized disclosure or access, and other illegal processing. Appropriate protective measures in relation to the risk shall be taken.

Transmission of personal data outside the EU, EEA and EEA is only allowed when the importing entity has provided sufficient guarantees that sufficient personal data will be protected. This can be achieved by using one of the EU's standardized data transfer agreements.

 

Training and awareness - Automation technology provides adequate training for all employees, based on employees' role and responsibilities.

The Levins Group and its companies have a special internal IT policy for the processing of personal data in e-mail and for the protection of personal data in the digital environment.

 

What personal information do we collect? Why? And how long?

Purpose

Stored ground

Categories of personal data

Stored time

customers

In order to manage your orders and purchases

Contractual obligations according to Automation Technology's general sales terms

  • Contact information eg name, mailing address, email address

  • Account Information

  • Identification number

  • Ordering Information

  • Payment information eg card number and card holder

  • Financial information

Seven years after your order is paid and delivered or, if the warranty period for purchased product or service is longer, after that period has expired.

To handle cases that come in to customer service and other support functions

Justified interest

  • Contact information eg telephone number and email address

  • Account Information

  • Identification number

  • Order information such as order number, purchased products and delivery time

  • Payment information such as payment method

  • User generated data

  • Employment or membership that qualifies for benefits

  • Correspondence and other information about support matters such as technical information about the customer's equipment

Seven years after the last contact in the case or, if the warranty period for the product or service to which the case relates is longer, after that period has expired.

To fulfill legal obligations such as requirements in the Accounting Act, product liability and protection of your personal data in our systems.

Legal obligation

  • Contact information eg name and address

  • Account Information

  • Identifikationsnumme

  • Order information such as date of purchase

  • payment details

  • Correspondence and other information about support matters

As long as we are obliged to save the data in accordance with the applicable law or government decision.

To prevent abuse and prevent, prevent and investigate crimes within the framework of our operations

Justified interest

  • Contact information eg names and telephone numbers

  • Account Information

  • Identification number

  • Order information e.g. ordered goods

  • Payment information such as payment method

  • User generated data e.g. click and visit history

During the time necessary checks are performed. If the processing leads to the police report, the data will be saved as long as it is necessary to complete the report and to establish, defend or make legal claim.

Suppliers and subcontractors

For us to be able to make payments or contact you in one way or another so that you can effectively carry out your assignment or offer your product or service.

Execute agreements

  • Contact information eg. name, telephone number and
    E-mail address

  • Payment details

  • Correspondence and other information about support matters

As long as we are obliged to save the data in accordance with the applicable law or government decision.

Employees

To manage employment administration and salaries.

Legal obligation

  • Contact information eg names and telephone numbers

  • Account Information

  • Identification number

  • In some cases trade union membership (consent)

Ten years after employment ended

Employees' relatives

In order to be able to notify employees' relatives in the event of illness or accident

Consent to the processing of personal data

  • Contact information eg names and telephone numbers

For termination of employment or requested change.

Jobseekers

To handle applications and personal data during recruitment.

Consent to the processing of personal data

  • Contact information eg names and telephone numbers

  • CV

  • Personal letter

The application and personal data in it are saved for two years with the support of legal obligation. The application documents for those who ultimately receive the service will be preserved in our archive, supported by legal obligation.

Other contacts/stakeholders

To maintain contacts with government officials or other stakeholders

Justified interest

  • Contact information eg name and address

  • Company information or similar

  • Role

  • Correspondence and other information regarding the company's interests

  • Payment details

  • Correspondence and other information about support matters

As long as we are obliged to save the data according to applicable law or authority's decision.

Vilka delar vi dina personuppgifter med?

Automationsteknik kan komma att dela dina uppgifter med tredje part som är personuppgiftsbiträden till företagen ingående i Levinsgruppen, dvs. företag som behandlar dina uppgifter för vår räkning och enligt våra instruktioner, eller självständigt personuppgiftsansvariga, dvs. företag som ansvarar självständigt för behandlingen av dina uppgifter då de har en direkt relation med dig som kund/anställd.

Automationsteknik kan även komma att lämna ut dina uppgifter till myndigheter om det är nödvändigt för att följa lag, föreskrift eller myndighetsbeslut eller för att Automationsteknik ska kunna fastställa, försvara eller göra gällande rättsliga anspråk.

Automationsteknik kommer inte att sälja dina personuppgifter till tredje part om vi inte har ditt tillstånd till det.

 

Beroende på vilka kontakter du har haft med Automationsteknik kan företaget lämna ut dina personuppgifter till följande mottagare:

  • Andra bolag inom Levinsgruppen som agerar personuppgiftsbiträde till Automationsteknik för vi ska kunna uppfylla de olika ändamålen som anges i denna policy. De lagliga grunderna för överföringen till våra koncernbolag är desamma som för vår egen behandling.

  • Statliga myndigheter, såsom Polismyndigheten eller Skatteverket, som vi är skyldiga att lämna ut dina personuppgifter till enligt lag eller myndighetsbeslut eller som vi lämnar ut personuppgifter till pga. misstanke om brott eller försök till brott. De kategorier av uppgifter som lämnas ut är kontaktuppgifter, identifikationsnummer, kontoinformation, orderinformation, betalningsuppgifter, användargenererade data och videoinspelningar baserat på rättslig förpliktelse som åligger Automationsteknik eller för att vi ska kunna fastställa, försvara eller göra gällande rättsligt anspråk.

Om du lägger en beställning eller genomför köp från Automationsteknik kan vi dessutom lämna ut dina personuppgifter till följande mottagare inom ramen för hantering av dina beställningar och köp baserat på våra avtalsförpliktelser gentemot dig som laglig grund:

  • Leverantörer, tillverkare, distributörer och underleverantörer av produkter och tjänster som Automationsteknik säljer som bland annat tillhandahåller produkterna och tjänsterna samt hjälper oss med supporttjänster såsom underhåll, reparation och kassering av returnerade produkter. Uppgifterna som lämnas är kontaktuppgifter och orderinformation.

  • Logistikföretag och speditörer som hjälper oss med varutransporter så vi kan leverera våra produkter och tjänster till dig. Vi lämnar ut kontaktuppgifter och orderinformation till dessa mottagare.

  • Försäkringsgivare som tillhandahåller försäkringar för vissa av våra produkter och tjänster.

  • Samarbetspartners och leverantörer av betalningslösningar, t.ex. kortinlösande företag, banker, kreditinstitut och andra finansiella aktörer, som ser till att du kan genomföra betalningar och erbjuder dig olika finansieringslösningar. Uppgifterna som lämnas ut är kontaktuppgifter, identifikationsnummer och betalningsuppgifter.

  • Kreditvärderingsinstitut, kreditupplysningsföretag eller banker som förser oss med underlag för att vi ska kunna säkerställa din betalningsförmåga, t.ex. kreditupplysningar, när du ansöker om kredit inom ramen för hantering av dina beställningar och köp. Den uppgift som lämnas ut är identifikationsnummer.

  • Företag som tillhandahåller finansiella tjänster såsom reskontra och inkassoverksamhet som säkerställer att Automationsteknik får betalt för levererade produkter och tjänster inom ramen för hantering av dina beställningar och köp. De av uppgifter som lämnas ut är kontaktuppgifter, identifikationsnummer, orderinformation och betalningsuppgifter.

Tillämpning och ändring av integritetspolicyn

Den senast uppdaterade versionen av Automationstekniks integritetspolicy finns alltid på vår webbplats. Vår integritetspolicy gäller vid var tid i den form och till det innehåll som är publicerat på webbplatsen.

Automationsteknik har rätt att när som helst uppdatera integritetspolicyn. Om integritetspolicyn ändras kommer den uppdaterade policyn att publiceras på företagets webbplats.

Övrigt

Inbäddat innehåll från andra webbplatser

Artiklar på de webbplatser Automationsteknik verkar på kan innehålla inbäddat innehåll (exempelvis videoklipp, bilder, artiklar o.s.v.). Inbäddat innehåll från andra webbplatser beter sig precis på samma sätt som om besökaren har besökt den andra webbplatsen.

Dessa webbplatser kan samla in uppgifter om dig, använda cookie-filer, bädda in ytterligare spårning från tredje part och övervaka din interaktion med sagda inbäddade innehåll, inklusive spårning av din interaktion med detta inbäddade innehåll om du har ett konto och är inloggad på webbplatsen i fråga.

Länkar till andra webbplatser

I händelse av att vår webbplats innehåller länkar till tredje parts webbplatser, hemsidor, eller material publicerat hos tredje part, är dessa länkar endast till för informationssyfte. Eftersom Levins saknar kontroll över innehållet på dessa webbplatser eller dess material tar företaget därför inte ansvar för dess innehåll. Företaget ansvarar inte heller för skador eller förluster som skulle kunna uppstå vid användning av dessa länkar.

Tillgång, rättelse och radering till/av dina personuppgifter

Du har rätt att få tillgång till information om vilka personuppgifter vi behandlar, vidare har du rätt att begära rättelse om någon uppgift är felaktig. Om du vill ha ut ett registerutdrag mer än en gång om året så tar vi ut en mindre administrativ kostnad. Under vissa omständigheter kan du få dina personuppgifter raderade, till exempel om du inte givit samtycke eller återkallat ditt samtycke.

För frågor angående vår personuppgiftsbehandling kan du kontakta vårt dataskyddsombud via växelnumret:

+46 (0) 10-472 02 00

dataskyddsombud@levinsgruppen.se.

Bäckhagsvägen 1, SE-281 33 Hässleholm, Sweden

©2020 Automationsteknik

  • YouTube
  • Instagram
  • LinkedIn

A Company in

levinsgruppen 2009-07-01_b600px.png