This informative text describes how and why Välinge processes the personal data collected through your usage of the website or communicate with us via e-mail. It also describes your rights, the cookies that are used, and why they are used. Personal data involves all information that directly or indirectly can identify a physical person, e.g., names, personal identity numbers, IP-addresses, etc.
This general text can be complemented with specific information regarding certain collecting or processing activities relating to personal data. We may also ask for your consent regarding particular processing activities. If specific information is provided or if consent is requested, then this will be in addition to, and with preference to, this general text.
Who controls your personal data?
Välinge is the controller of personal data and is responsible for processing your personal data collected through our website, our services, or our campaigns. Contact information can be found at the end of this policy.
With communication via e-mail, it is the specific Välinge company with whom you have communicated that is the controller for your personal data. Identification of this company is provided in the privacy notice that has been added to your email correspondence. However, the contact information at the end of this policy still applies, regardless of which Välinge company is the controller of your personal data in the case in question.
Being a data controller means that the Välinge company in question decides on the purpose (i.e., why information should be processed) and means (i.e., how it should be processed) for all processing activities concerning personal data. It is our responsibility to ensure that the processing of information follows all applicable regulations for data protection.
With regards to cookies from third parties on the website, Välinge is only responsible for the information that Välinge receives from the relevant third party. If and to the extent that third-party cookies collect information used for other purposes, the relevant third party is responsible for such processing.
How is your personal data collected?
Your personal data, for example information regarding name and contact information, will be collected when you use the services on our website or communicate with us via e-mail. It will also be collected when you provide us with other information, for example, when you register interest in our technologies, products, or services. Providing us with certain information is mandatory when you register such interest or communicate with us via e-mail. Notice of interest and other collection of data can also be performed at Välinge’s partners’ websites, including LinkedIn and Facebook, which means that the partner then provides Välinge with the necessary information.
Välinge may also collect personal data on our websites, such as IP-addresses and user behaviours/patterns, when you use the website. This may include, e.g., which pages you visit and how you scroll and navigate on the website. Such data is collected through cookies or similar technology. Read more about cookies and the data that we collect through them further down in this text.
Why do we process your personal data and on what legal basis?
We process your personal data for the following purposes:
- to ensure an efficient and secure usage of the website and to optimise/improve the user experience of the website
- to contact and communicate with you if you contact us through our website, via e-mail or through our partners’ websites
- to analyse statistics and user behaviour/patterns on the website
- to provide individualised services and content adapted to the information with which you provide us
- to offer targeted marketing, including ads, offers, and recommendations adapted after the information with which you provide us and
- to develop and improve the website and to make adaptions based on user requests.
Processing activities in accordance with points i) and ii), above, will be performed based on Välinge’s legitimate interests, including that we are able to provide necessary functions on our website and communicate with you via our website.
Processing activities in accordance with paragraphs iii), iv), v, and vi), above, is only performed provided that you have approved it in advance, i.e., that you have given your consent.
Transferring personal data
For the purposes stated above, Välinge in some cases transfers your personal data to subcontractors or partners within or outside of the European Union/European Economic Area. Such subcontractors or partners can, for example, be hired to perform technical services for the website or for marketing. Välinge will always take the necessary actions, such as entering into a personal data assistant agreement, to protect your personal data with the help of suitable technical and organizational protective measures.
If Välinge transfers your information outside of the EU/EEA, such transfer normally takes place with the support of the European Commission’s standard agreements in accordance with Article 46 in the EU’s General Data Protection Regulation. You can read more about the standard agreements at https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/model-contracts-transfer-personal-data-third-countries_en.
Unless otherwise stated, the receiver of personal data may only process your personal data on behalf of Välinge, and under no circumstances for their own purposes.
How long do we save your personal data?
Välinge does not save your personal data for longer than is necessary to fulfil the purposes stated above or what is required by law. Thereafter we delete your information or make it anonymous in such a way it can no longer be connected to you.
Generally, we will save your personal data when you declare your interest in our technologies, products, or services during the time that the technology, product, or service is offered by Välinge. When you communicate with us via e-mail, we generally save your personal data during the time you have an ongoing business or other matter with us and two years thereafter.
If you have removed your declaration of interest, Välinge may use certain personal data for the purpose of recovering you as an interested party, for twelve (12) months from your removal.
Välinge may also save your personal data during a longer period to determine, enforce, or defend against legal claims, or if we have a legal obligation to do so. For example, we save all accounting data according to the Swedish Accounting Act (“Bokföringslagen”, 1999: 1078), which results in a storage period of seven (7) years from the end of the accounting period.
See storage times for different cookies that are stored on your device under ”Compilation of cookies and storage times” below.
Which rights do you have when registered?
You have the following rights according to the applicable data protection regulation:
You have the right to access information such as the record of the processing activities upon request, with additional information of the processing activities. Requests for such extracts must be made in writing, signed by you, and sent to the address at the bottom om this policy. Label the envelope ”Dataskydd”. To be sure that the register extract is not sent to the wrong person, we will send it to your population registration address (folkbokföringsadress).
If you believe that your personal data is incorrect or incomplete, you have the right to request that the information be corrected.
Under certain circumstances, you can request that your personal data is deleted or limited.
When processing is performed based on legitimate interests, you have the right to object to such processing activities. If the objection concerns processing for direct marketing, the personal data shall no longer be processed for this purpose.
Upon request, you may also, under certain circumstances, obtain and transfer some of your personal data to another controller of personal data, i.e., data portability.
If you believe that Välinge has processed your personal data incorrectly or is in violation of applicable data protection regulations, you have the right to lodge a complaint with the Swedish Data Protection Authority (Integritetsskyddsmyndigheten), at https://www.imy.se/.
If you want to exercise your rights in relation to Välinge according to the above paragraphs, please provide us with a signed request in accordance with the contact details at the end of this text.
Below is a description of which cookies we use on our website, why we use them, and how you as visitor on our website can reject these cookies. This policy uses the concept ”cookies” as a generic name for web beacons, pixel tags and other identifiers and/or tracking techniques.
What are cookies?
Cookies are small text files that are embedded in your computer, tablet, or smart phone when you visit Välinge’s website, and they make it possible for Välinge to recognise your web browser when you visit our website. The cookies contain information about your browser, for example which type of browser and screen resolution, and your activity on Välinge’s website, for example when and what content you have seen and clicked on and which website you visited before your visit to our website.
Which cookies do we use and why?
Which types of cookies we use and why we use them can be categorized in the following way:
STRICTLY NECESSARY COOKIES
Certain cookies are necessary if you want to use our website and use all of its functions, for example so that we can identify requests from the same browser for a limited session time.
Functional cookies contain a unique ID and help the website store user settings, such as information about language, region, and other preferences, to provide you with individualised and adapted services and content.
These cookies are used to analyse the website’s performance and to identify and fix possible problems as soon as Välinge discovers them.
We use marketing cookies to store information about user activity on our website, including which pages the user has visited and which links he or she has clicked on, but also how the user moves between different websites. Välinge uses this information to offer targeted and adapted marketing that we believe is relevant and of interest to you. With the help of marketing cookies, Välinge can also show ads when the user visits other websites. Finally, these cookies are used to make sure that the same ads are not displayed to you too many times, and to measure the efficiency of our marketing campaigns.
We also use third-party cookies on our website, this means that they come from a different domain name sender than the one you visit. The same third-party cookie can be used by several different websites that work together to understand how visitors browse between the websites. Information from these cookies can be shared with us but also be used for other purposes. This is controlled by the respective actor who is responsible for and delivers the cookie.
Compilation of cookies and storage times
How can you limit or delete cookies?
Contact details for the controller of personal data
If you have questions about the processing of your personal data or about cookies, or if you want to exercise your rights in accordance with the above paragraphs, you are welcome to contact us.
Välinge Innovation AB, org nr: xxxxxxxxx [verifiera org nummer]
263 65 Viken, Sweden
E-post: email@example.com [verifiera adress]
Do you want to send us a request for access? Please see more information on how to proceed under the paragraph Which rights do you have when register?
The protection of your personal data is important to us. We are constantly working to improve our processing of your personal data.
In order to further ensure our continuous work on data protection issues, we have also chosen to have a data protection officer. You will find all our contact details under section 13.
By ”Välinge” we mean all companies in the Välinge group: Välinge International AB, Välinge Holding AB, Välinge Innovation AB, Välinge Innovation Sweden AB, Ceraloc Holding AB, Ceraloc Innovation AB, Ceraloc Innovation Sweden AB and Välinge Photocatalytic AB.
1. Main concepts
Personal data is information that, individually or in combination with other information, can be used to identify, locate or contact a person. Examples of personal data are name, email address, phone number or IP address.
Processing of personal data means any kind of handling of personal data, for example, when we collect information about a customer in order to deliver a product. Under section 5 you can read about the purposes for which we may process your personal information.
The data controller is the company which determines what personal data shall be requested and what the purpose to this is. It is the data controller’s responsibility to ensure that the processing of your personal data is in accordance with applicable personal data regulation.
2. Välinge Innovation Sweden AB is responsible
Välinge Innovation Sweden AB is responsible for compliance with the obligations concerning the processing of your personal data in the Välinge group (joint controllers).
3. What types of data do we collect?
When you get in touch with us, e.g. via email, phone or visit our website, we process personal data. Depending on the situation we may ask for the following personal data:
- Email address
- Country and/ or region
- Phone number
- Which company you work for
- Job title
- Which industry you work in
- Website address of your company
- Other data that is featured in the communication
- Usernames on Facebook, LinkedIn, Instagram and Twitter when communicating with Välinge through social media, as well as other information that you may provide.
- Technical Data: The URL through which you can access our web pages, your IP address and user-type, browser type, language, and identification and operating system information.
4. Information from other sources
We may also process other data about you that you have previously provided to us. Based on publicly available information, we may also complete your registered data with us. If you are a customer to us, we may complete your data with additional contact information.
5. How do we use the data?
We always strive for only processing the personal information that is necessary to fulfill our commitments to you. In addition, personal data may also be used for certain limited purposes. (For recruitment purposes, see section 9.)
The information you provide from you is used for the following purposes:
- Communicate with you and respond to requests
- Fulfill our commitments according to an agreement with you or in accordance with law
- Sales and marketing activities in the form of direct mail, which may also include product offers and other content that you may be interested in to give you a more personal experience (see section 6) or social media updates
- Customer care and information about our products
- To get statistics and information about user behavior to improve our website, social media channels and the user experience of these
- Maintain a customer register
6. Newsletters and other direct marketing
As an example, when you are or become a customer to Välinge or have shown interest in our products and activities (e.g. by subscribing to our newsletter), we may send you our newsletter or other direct marketing to you via email. These will contain information about our products or other events and updates within Välinge. Within the framework of GDPR, we are of the opinion that we have a legitimate interest in maintaining business relations and communicating with you about our products and operations.
You can update your subscription settings and decline future marketing emails by following the link you find at the bottom of all our marketing emails, or by contacting us directly.
7. For how long is the data stored?
We process personal data for no longer then what is necessary to fulfill the purpose of its collection, then we delete the data.
If you have an active dialogue with us, your data is stored for 36 months from the latest interaction; then we will discard the data we have registered about you. An active dialogue is defined as having interacted with Välinge or representatives of Välinge by telephone, email, downloading materials on the website or registering via a form.
If you are a customer or licensee to us, we will save the data for seven years after the termination of the agreement in accordance with law, e.g. the Swedish Accounting Act.
We process your personal data for email newsletters or other direct mail until you terminate your subscription. Then we will delete the personal data.
When you are employed by a company that is a customer, partner or licensee to us, we process your data in order to fulfill our agreement and to give customer care. During active relationships with your company, we process your data until either i.you have terminated your employment at the company or ii.the company no longer has an active relationship with us. If a relationship with a customer, partner or licensee has ended, our storage and processing of your data will follow the same conditions as described in the previous two paragraphs. If you terminate your employment at the company, you are responsible for notifying us so that we can delete your information.
Please note that some information may be processed for longer than what is stated above if we are required to do so by law, by a governmental or court decision, due to a legal dispute or when there is a risk of the latter or similar.
8. Who has access to your personal data?
We constantly strive for that your personal data is only processed by those who need to. Generally, data will be available to persons within the company who work in the departments of marketing, law, finance and communication. In addition, data can be processed by other people at Välinge that you are in direct contact with.
9. Job application and recruitment
If you are applying to work with us, we may process further data about you:
- contact information (such as name, mailing address, email address and phone number),
- employment history and education,
- language skills and other work-related skills,
- social security number, national ID number or other government-issued ID number,
- birth date,
- citizenship and status regarding work permits,
- disability and health-related information,
- where relevant, results from drug tests, extract from the criminal records registry and other background checks,
- where relevant, results from personality tests,
- information about references and the information provided through these references, as well as
- other information that you may provide us, such as in your resume or application or other information regarding your qualifications for employment.
When the recruitment process is over, your personal information will be deleted unless you have given us your consent to keep it. However, some information may be processed further if we are required to do so by law, by a governmental or court decision, due to a legal dispute or when there is a risk of the latter or similar.
More information about how we process personal data in connection with recruitment may be given in connection with a specific recruitment process.
10. Shared information with our partners
We neither sell, rent, distribute or otherwise make your personal data available to third parties. However, we may share information with companies within the same company group, partners or suppliers for the purposes stated in this policy.
11. Security, storage and transfer
We use administrative, technical and physical security measures to protect the personal data you provide against accidental, illegal or unauthorized destruction, loss, modification, access, disclosure or use.
We may need to share your personal data with our international offices in the US and China so messages from these offices also can be sent to you. We may also need to allow our suppliers to access your personal data when they provide services to us, primarily to maintain and support our IT systems.
Any transfer of data outside the EU/ EEA is made in accordance with applicable data protection laws. If there is no other legitimate reason, our international transfers of personal data (including transfers to our international offices outside the EU/ EEA) are based on the EU Commission’s standard contractual clauses.
This transfer of data, made to servers in so-called third countries, lives up to the rules of secure data transfer under the GDPR in accordance with the Privacy Shield Frameworks, which has been developed between the EU and the United States. More information about the Privacy Shield Frameworks can be found on this page: https://www.privacyshield.gov.
Personal data can also be stored via IT services through Google, Microsoft, Slack or other IT services for different cloud-based solutions. Please note that these providers may locate their servers outside the EU/ EEA area and that Välinge can not take responsibility for these IT providers. However, we always strive to have secure IT solutions, both for our and your safety.
12. You are entitled to know what data we have about you and request rectification or erasure
You are entitled to get information about what data we have about you in the form of a registry extract, which you can also get digitally. You may also request that we rectify incorrect data, erase information about you or, under certain circumstances, transfer your information to another data controller according to your demands (”data portability”). You may also object to the processing of certain personal data or request that the processing of your personal data is restricted. If you have given us your consent to the processing of personal data, you are also entitled to withdraw this. If you withdraw your consent, we will erase the information we have about you due to the consent. Please note that restriction or erasure of your personal data may affect the delivery of information within the customer relationship, as well as possibly affecting any ongoing contact with you.
If you wish to withdraw your consent, or request registry extracts, rectifications or erasure, please contact us via the email address we have provided in the contact details section below.
13. Contact information to Välinge Innovation Sweden AB
If you have questions about our processing or wish to get in touch with us to exercise your rights, please find our contact information below.
Välinge Innovation Sweden AB
263 65 Viken
Phone number: 0046- (0)42- 23 78 15
Company registration number: 556365-1255
General Email address: contact[at]valinge.se
For questions regarding processing of personal data or contact with Välinges Data Protection Officer: gdpr[at]valinge.se
14. Updates to this data protection policy
15. Contact details of the Swedish Data Protection Authority
The responsible supervisory authority is the Swedish Data Protection Authority. You can contact the Swedish Data Protection Authority if you have questions about GDPR and its application or comments on Välinge’s process of personal data.
Email address: firstname.lastname@example.org