The General Data Protection Regulation (GDPR) is applicable throughout the EU with the aim of providing strong protection for individuals’ data. At Sumeto AB, we are committed to safeguarding your data and transparency about how we strive to comply with these regulations.
With this in mind, we, Sumeto AB with organization number 559082-3034, have developed our Privacy Policy so that you can feel secure in your interactions with us. We follow the best practices and recommendations to protect your data.
This privacy policy is effective from 2021-12-22.
We may make additions and changes to this privacy policy. If so, the updated version will be published on our websites. For significant changes, we may also inform you in other ways. The most recent version of this privacy policy will apply to all personal data we process at any given time.
Sumeto AB is an IT and consulting company that provides cloud services to businesses and organizations to promote sustainability and profitability. SUMETO Employment is a cloud service that supports entities and professionals in labor market issues. SUMETO Business is a cloud service that helps companies strengthen their position throughout the business process. Our consulting services, called Sumeto Consulting, assist companies and other organizations in developing structured and sustainable work methods, better HR, and stronger business law.
As a customer of Sumeto AB, you should always feel secure about how we handle your data. We are committed to protecting your privacy, and you should feel confident when you entrust us with your personal data. Therefore, we have established this policy. It is based on applicable data protection legislation and clarifies how we work to uphold your rights and privacy.
The EU’s General Data Protection Regulation (GDPR) imposes higher demands on us as a company, which we see as positive. However, this does not result in any noticeable difference for you as a registered individual. The purpose of this policy is to ensure that Sumeto AB handles personal data in accordance with GDPR. The policy encompasses all processing activities involving personal data. You should know how we process your personal data, what we use it for, who will have access to it, under what conditions, and how you can exercise your rights.
We primarily process your personal data to fulfill our obligations to you. Our starting point is not to process more personal data than is necessary for the intended purposes, and we always strive to use the least sensitive data possible.
We also need your personal data to provide good service and relevant information regarding support, cloud service delivery, consulting services, marketing, follow-up, support, information, and news dispatches. We may also need your personal data to comply with laws and conduct information campaigns.
You have the right to object to our use of personal data for direct marketing purposes. When we collect personal data about you for the first time, you will receive more information about this and how you can object to it.
We process data about you in the form of a) name, b) address, c) email address, d) phone number, e) workplace, f) job title, g) username, h) billing information, and i) data that you voluntarily and willingly register in our contact forms.
We try, as much as possible, to obtain your consent before we start processing your personal data solely for direct marketing. We do this by letting you fill out explicit consent forms in cases where the processing is based on consent. You have the right to withdraw your consent at any time.
We obtain your personal data through a) information that you provide directly to us, b) information registered when you visit our website, c) information we obtain from public records, d) information we receive when you register for our events or seminars, e) information we receive when you subscribe to our newsletters or other dispatches, and f) information we receive when you contact us, seek employment with us, visit us, or otherwise get in touch with us.
We process your personal data to fulfill agreements, comply with prevailing laws, protect our rights, develop our services, deliver the best customer service, communicate with you, and send out marketing and information about our services and products via social media, newsletters, invitations, and information.
We send information based on a balance of interests and our legitimate interest in maintaining a business relationship with you in your professional role regarding information and offers that we believe may be of interest to you.
Your personal data is primarily managed by us, but to some extent, also by third parties. This might be due to parts of our IT environment being outsourced to third parties, where personal data is stored and managed following our instructions.
If you have not granted your consent, we process your personal data for the latest of either a) eighteen (18) months after we obtained the data, or b) eighteen (18) months after you or your assigning party ceased to have a business relationship with us.
Despite what is stated above, we may process your personal data for a longer time if required to comply with the law. One such example is accounting legislation. We may also process your personal data to the extent needed to safeguard our rights. This mainly applies to questions of responsibility and limitation.
Processing is carried out according to prevailing legislation, which means that personal data is not retained longer than necessary considering the purposes of the processing.
Practically, this means we delete personal data no longer current or necessary for direct marketing.
For us, it is of paramount importance that your personal data receives appropriate protection. Therefore, we have implemented suitable measures, such as technical, physical, legal, and organizational, to protect your personal data from unauthorized access, illegal processing, disclosure, accidental alteration, and loss.
You have the right to a) request information about which personal data we process about you and obtain a copy of this personal data, b) ask us to correct your personal data if it is inadequate, incomplete, or incorrect, c) request that your personal data be deleted, d) ask us to restrict the processing of your personal data, e) object to certain processing of personal data, and f) request to transfer personal data to another service provider by obtaining your personal data, to the extent provided by you, in a written or electronic format that is commonly used to transfer it to another party (data portability).
Despite what is stated above, we may have the right to refuse deletion if it would conflict with our legal obligations. Examples of such obligations include accounting and tax legislation. We may also have the right to refuse deletion if continued processing is necessary to safeguard our rights and protect our interests.
If you wish to exercise any of the above rights, please send us a signed request. Note that we may require proof of identity or another method to identify you. Requests should be sent to the address below.
Sumeto AB
Att: Data Protection Officer
Stora Ågatan 21
436 34 Askim
SWEDEN
We use cookies on our websites to provide improved functionality and user experience, to gather statistics, and to analyze traffic on the websites for improvement purposes and to target more relevant news and offers to you.
A cookie is a text file that is stored on your browser or device. You can remove such cookies at any time and set, in your browser, to what extent cookies should be accepted.
Sumeto AB is the data controller, which means we are responsible for how your personal data is processed and ensuring your rights are upheld.
This policy, together with procedures and policies for both organizational and IT security, aims to ensure your personal data is handled securely.
We establish procedures and working methods to ensure your personal data is managed securely. Our principle is that only employees and other persons within the organization who need the personal data to perform their jobs should have access to it.
Our principle is not to disclose your personal data to third parties other than if you have consented to it or if it is necessary to fulfill our obligations under an agreement or the law. When we disclose personal data to third parties, we ensure the data is handled securely.
By approving our Privacy Policy, you consent to us processing your personal data. You have the right to withdraw your consent at any time.
For further information on personal data handling or if you have other questions, please contact us at:
Address
Sumeto AB
Stora Ågatan 21
436 34 Askim
SWEDEN
Email
Email: kontakt@sumeto.se
Phone
Mobile: 0722-966822 / 0739-847458