Blue Cromos Data Protection
Processing of personal data according to GDPR, General Data Protection Regulation.
On this day 2022-07-01 the following policy has been drawn up by Blue Cromos Management AB:
Purpose
We at Blue Cromos protect your privacy and you should be able to feel safe when you entrust us with your personal data. That is why we have established this policy. It is based on current data protection legislation and clarifies how we work to safeguard your rights and your privacy.
The purpose of the policy is for you to know how we process your personal data, what we use it for, who may access it under what conditions, and how you can exercise your rights.
Background
The EU has adopted a Data Protection Regulation, called GDPR that aims to increase the
protection of personal data and the personal integrity of all EU citizens. GDPR introduces a
comprehensive set of regulations with both rights for the data subject and obligations that require an organizational structure and the ability to process personal data correctly.
Blue Cromos processes your personal data primarily to fulfill our obligations to you. Our starting point is not to process more personal data than is necessary for the purpose, and we always strive to use the least privacy-sensitive data.
We also need your personal data to provide you with good service, for example in terms of marketing, follow-up, and information. We may also need your personal data to comply with laws and to perform customer and market analyses.
Guidelines
What personal data does Blue Cromos process?
We only process personal data when we have a legal basis. We do not process personal data other than when it is needed to fulfill obligations according to agreements and laws. Here are examples of the personal data we process:
-
Name
-
Address
-
Email address
-
Telephone number
-
Employer
-
Job position
-
Country of residence
-
Information that you registered yourself and voluntarily provided
How does Blue Cromos get access to your personal data?
We try as much as possible to obtain your consent before we start processing your personal data. You consent to treatment by accepting our general terms and conditions. When you agree to our general terms and conditions, you also agree to us processing your personal data.
You have the right to withdraw your consent at any time. We will then no longer process your personal data or obtain new ones, provided that it is not necessary to fulfil our obligations according to agreement or law. Keep in mind that withdrawal of consent may mean that we cannot fulfil the obligations we have in relation to you.
We also get access to your personal data in the following ways:
-
Data that you provide us directly
-
Data registered when you visit our website, via the agreement form
-
Information we receive from public records
-
Data we receive when you hire one of our employees
Ensure the data subject's rights
The registered person has several rights that Blue Cromos is obliged to live up to:
-
The registrant's right to access register extracts about himself.
-
The registrant's right to rectification of his personal data if it turns out to be incorrect.
-
The registered right to be "forgotten", i.e. removed from the company's register. (This applies only under certain conditions, mainly with regard to when consent is given as a reason for the processing of personal data.)
-
Right to restriction of processing
-
Obligation to report to third parties in case of correction or deletion
-
Data portability
-
Right to object to treatment
-
Information about any personal data that has been subject to a data breach or leak
Companies' obligations
Blue Cromos must adapt its operations to the requirements of the data protection regulation. This gives us increased responsibility and a number of new obligations. as described below:
-
Add new roles that take care of the company's expanding responsibilities
-
Ensure that basic requirements for personal data processing are met.
-
Protect the data subjects' rights regarding personal data
-
Be able to justify and demonstrate that the processing of personal data is necessary by establishing a personal data register. The personal data register records information about each processing of personal data.
-
The company must establish policies and procedures for the processing of personal data so that the law is complied with.
-
The company must train its staff and monitor compliance with this policy within its own company
We at Blue Cromos develop routines and working methods to ensure that your personal data is handled securely. The starting point is that only employees and other people within the organization who need the personal data to perform their tasks should have access to it.
Our security systems are developed with your privacy in focus and protect to a very high degree against intrusion, destruction and other changes that may pose a risk to your privacy.
Our IT policy ensures that your personal data is processed securely.
We do not transfer personal data in cases other than those expressly stated in this policy.
When do we release your personal data?
Our starting point is not to disclose your personal data to third parties if you have not consented to it or if it is not necessary to fulfil our obligations under contract or law. In cases where we disclose personal data to third parties, we draw up confidentiality agreements and ensure that the personal data is processed in a reassuring manner.
Personal data controller
Blue Cromos Management AB
Org. no: 556912-6724
Jörgen Kocksgatan 9a
211 20 Malmö
This means that we are responsible for how your personal data is processed, that your rights are taken care of, and that the processing takes place in accordance with current legislation.
Contact information
If you have any questions regarding this data policy, please contact us via email at info@bluecromos.com.