TreeToTextile AB, org. no. 556989-2648 , Box 190 101 23 Stockholm ( “TreeToTextile” ) is the person responsible for personal data for the personal data processing described in this policy. You can reach us at firstname.lastname@example.org.
We care about protecting your privacy and treat all information and all personal information in accordance with applicable laws and regulations. In all contexts when we process personal data or other important information, appropriate measures are taken to prevent unauthorized access, dissemination, alteration or destruction.
Our goal is for you to feel secure that your personal privacy is protected and respected and that your personal data is processed correctly. All personal data must be processed carefully and in accordance with current legislation.
What are the legal grounds for the treatment?
In order for TreeToTextile AB to be able to enter into agreements with customers, we process certain personal data which is often the contact person at the customer / partner company. Some personal data is also processed because we have a legal obligation, such as an accounting obligation.
What personal data is processed and who is the recipient?
We process personal data for contact persons in companies with which we have a customer agreement or with whom we are expected to obtain a customer agreement. Personal data that is processed can be, for example, name, telephone number, e-mail address, social security number or other ID documents that can be directly or indirectly linked to the person. Those who receive the information are mainly the CEO, finance department or employee who helped with the deal or otherwise assisted in the sales work.
For what purposes do we process personal data?
In cases where there is a customer or collaboration agreement, we process personal data in order to fulfill the agreement in its entirety. The personal information may also be needed in connection with the dialogue that may occur before an agreement is in place. Representatives’ contact information can also be used to send quotes and offers for proposals for future business opportunities.
TreeToTextile AB hires personal data assistants for storage of personal data linked to customer agreements. This can be project tools, accounting software or cloud services for storage. In these cases, these personal data assistants handle personal data on our behalf as personal data controllers. In these cases, a personal data assistant agreement has been established to ensure that personal data is processed correctly and securely.
What information is processed?
In order for you to better understand how we process information and information about you, we present our overall guidelines and basic principles below.
Information that you give us / Personal data we process
You may directly or indirectly need to provide us with the following information:
- Personal and contact information: Name, date of birth, social security number, invoice and delivery address, e-mail address, mobile phone number and so on.
- Payment information: Invoice information, bank account number etcetera.
Information we collect about you / Personal data we process
When you are a customer, supplier or partner with TreeToTextile, we may need to collect the following information:
- Personal and contact information: Name, date of birth, social security number, invoice and delivery address, e-mail address, mobile phone number, etc.
- Information about services: For example, details regarding the services you have provided.
- Geographical information: Your geographical location.
The information you give us is generally necessary to enter into a contractual relationship with us. Other information is necessary for other purposes, read more below.
What do we do with your information?
All data is used to provide, perform and improve our services and to be able to maintain existing agreements. We process personal data on the following legal grounds and for the following purposes:
|Purpose of the treatment||Legal basis for the treatment (why is the treatment necessary)|
|To confirm your identity and verify your personal and contact information.||Legitimate interest in being able to perform commitments under our agreement with you.|
|To administer the customer / cooperation relationship, for example to fulfill our possible obligations to you and to provide information, products and services that you request from us.||Legitimate interest in being able to perform commitments under our agreement with you.|
|To determine which payment methods we can offer you, for example through internal or external credit assessments.||Consent|
|For customer analysis and for our internal operations, including troubleshooting, data analysis, testing, research and for statistical purposes.||Legitimate interest in business development.|
|To perform risk analysis, prevent fraud and risk management.||Comply with applicable law and other legitimate interests.|
|To improve our services and products and for general business development.||Legitimate interest in business development.|
|To comply with applicable legislation, such as the law on measures against money laundering and accounting laws and capital adequacy requirements.||Comply with applicable law other legitimate interests.|
This cookie contains all information about the source of traffic for the current visit, the cookie does not change if no traffic source is found for the current visit. This cookie does not contain historical information for previous sources. This is how Google Analytics attributes visitor information, such as transactions and conversions, to a traffic source. Being a persistent cookie means that it expires in 6 months. The only way to update it is to change the traffic source.
Utma is the main way in which Google Analytics tracks unique visitors. The cookie stores the date, time of the first visit and a visitor’s ID. In addition, this cookie stores information about the number of visits they have made. – utma cake can last for up to 2 years. However, you can customize the expiration time in the tracking code.
Utmb is a type of cookie that tells Google Analytics if a visit has timed out and also how far the visit went. It also stores information about the start time of the visitor’s current visit and the number of page views in the current visit. This persistent cookie expires in less than an hour. But every page visit updates it.
This is the only session cookie used by Google Analytics . – the utmc cookie registers that the visit ended when the user closed the browser.
We may use your personal information to communicate relevant information as well as information about other things that may be of interest. We may also use your personal data to carry out customer and collaboration satisfaction surveys, for example via electronic communication channels and by telephone. If you do not want to receive such communication, you are welcome to contact us.
We will not use your personal information for marketing purposes.
Who will we possibly share your information with?
We may transfer or share your information with selected third parties. We take all reasonable legal, technical and organizational measures to ensure that your data is handled securely and with an appropriate level of protection when transferring to or sharing with such selected third parties. We may share your information with the following parties or at the following times:
- Suppliers and subcontractors
We may provide necessary information to authorities such as the Police or the Swedish Tax Agency if we are obliged to do so by law or if you have approved that we do so. An example of when we as employers have a legal obligation to provide information is for measures against money laundering and terrorist financing.
We may share your information with third parties:
- If we sell or buy a business or assets. In these cases, we may provide your personal information to a potential seller or buyer of such business or such assets.
- If a significant part of our assets is acquired by a third party.
Please note that we will never sell your personal information to third parties without your consent.
Where do we process your personal data?
We always strive to process your data within the EU / EEA. As we are determined to always protect your data, we will take all reasonable legal, technical and organizational measures to ensure that your data is handled securely and with an adequate level of protection that is comparable to the protection offered within the EU / EEA. Transfers take place only to countries where there is an adequate level of protection or with the support of standard contractual clauses. When a transfer takes place on the basis of standard contractual clauses, you have the right to take part in these. To take advantage of the clauses, you can contact us at email@example.com.
How long do we store your personal information?
We store your data for as long as is necessary to carry out our agreed commitments to you and as long as it is required by statutory storage times. When we save your data for purposes other than our agreed commitments, for example to meet requirements for measures against money laundering or accounting, we save data only for as long as is necessary and / or statutory for each purpose.
Your rights of access, correction and deletion
- Right to access your data:
You can request a copy (a so-called register extract) and verify the information we have about you. It is free to request a copy.
- Right to correction:
You have the right to correct incorrect or incomplete information about yourself.
- Right to be deleted (“the right to be forgotten”):
You have the right to request deletion of your personal data in cases where the information is no longer necessary for the purpose for which it was collected. However, there may be legal obligations that prevent us from immediately deleting parts of your data. These obligations come from accounting and tax legislation, banking and money laundering legislation, but also from consumer law legislation. In such cases, we block the data we are obliged to save from being used for purposes other than fulfilling such legal obligations.
- Right to request limitation of treatment: In some cases you have the right to demand limitation of treatment that concerns you,
- Right to object to treatment: You have the right, for reasons relating to his or her specific situation, under certain conditions to object to treatment that concerns you.
- Right to data portability: When your personal data is processed with the support of consent or agreement, you have the right to request that we transfer your personal data to another personal data controller.
- The right to submit a complaint to the Privacy Protection Authority if you are dissatisfied with our personal data processing.
- Right to revoke your consent: However, this does not affect the legality of such processing that took place before the consent was revoked.
Cookies and tracking techniques