It also describes your rights in respect of us and how you can exercise your rights. You can always contact us if you have any questions on privacy and data protection by sending an email to us at email@example.com.
By using SSG’s services, you accept our data protection policy and our processing of your personal data. You also accept SSG’s use of electronic communication channels to send information to you. It is important for you to read and understand our data protection policy before you use our services.
To be able to offer you our services such as SSG Entre or our courses, we need to process your personal data as outlined below. This is done with the greatest possible consideration for your privacy.
Provide, supply and improve our services
All data is used to provide, supply and improve SSG’s services. SSG processes personal data for the following purposes on the basis of the following legal ground:
Purpose of processing
Legal basis for processing (“why is processing necessary?”)
To communicate with you
SSG may also use your data to communicate relevant information concerning agreed or related services and to perform customer satisfaction surveys in respect of our services (e.g. when you have contacted SSG service support). This contact may take place via electronic communication channels, over the phone or by post. If you do not wish to receive such communication, you are welcome to send an email to firstname.lastname@example.org.
We will not communicate to contractors (end-users) for marketing purposes unless they have stated an interest in this beforehand. Administrators of organisations may receive messages that are considered to be of relevance.
Information that you provide to us
You may directly or indirectly give us information about yourself in a number of different ways, such as when you register on our website or are registered in our systems as a user by an administrator. This information may include:
Information that we collect about you
When you use our services, we simply collect information required in order to maintain our agreements (such as when you enter a plant via an access gate). The following are examples of the kind of information that we store:
Information that you provide to us, such as information about the services and your use of them, is generally considered necessary in order to conclude a contractual relationship with us.
For customers that have Access cards
If you are an SSG Entre customer or a customer for one of our other training courses, we will submit your data to Areff AB. This is a subcontractor that produces Access cards, i.e. the passcards issued to allow workers to access various plants.
For some plants, we have agreements where we share data with these in order to guarantee accessibility. In these cases, we share data about contractors who are approved to access the plant in question. In these cases, we have undertaken all reasonable legal, technical and organisational measures to ensure that your data is handled securely and with an adequate level of protection.
Our service provider
All IT operations are provided by GDM AB, and we have undertaken all reasonable legal, technical and organisational measures to ensure that your data is handled securely and with an adequate level of protection.
SSG may submit necessary information to authorities such as the police, the Swedish Tax Agency or other authorities if we are obliged to do so by law, or if you have granted your approval for us to do this. Submission of the personnel register so that the Swedish Tax Agency can check personnel at plants is one example of a legal obligation to submit information.
Contact us at email@example.com for a complete overview of our processing operations in relation to the services that you use.
What we will NOT do with your data
We will not sell your personal data to third parties unless we have your permission to do so.
All handling of your data by SSG takes place within the borders of Sweden. If personal data is transferred to any country outside the EU/EEA, SSG will undertake action to ensure that this personal data continues to be protected, as well as taking the measures required to legally transfer personal data to countries outside the EU/EEA.
Your personal data will only be retained for as long as we need to retain it in order to fulfil the purposes for which the data was collected in accordance with this data protection policy. SSG may store the data for longer if so required in order to comply with legal requirements or protect SSG’s legal interests, e.g. if legal proceedings are in progress.
SSG will retain data relating to customers for a maximum of 12 months after the customer no longer has a valid relationship with SSG. In 2018, there may be some data that has not been screened due to limitations in our underlying systems. However, this situation will be rectified in 2018.
If you change your employer, email address, telephone number or similar, it is important to update this information in SSG’s systems.
Contact the responsible person at your company, or get in touch directly with SSG’s service support team as stated below. You have the opportunity to decline to submit personal data to SSG. However, this may result in difficulties, primarily with regard to access checks among SSG’s plant customers.
Some SSG services have designated contacts and/or administrators. These persons are responsible for obtaining consent from you, registering, updating and possibly deregistering data about you as a person. They are also responsible for ensuring that your personal data is handled in accordance with the provisions of the General Data Protection Regulation.
The right of access
You have the right to request a response on whether SSG processes personal data relating to you, and to view a free copy of the personal data that is processed. If you wish to request extracts on repeated occasions, SSG will make a charge in order to cover the resulting administrative costs. When such a request is submitted, SSG will also submit further information about the processing operation, such as its purpose, personal data categories that are processed, anticipated storage time, etc.
The right to rectification
If your personal data held by SSG is incorrect, you have the right to request that this data is corrected. SSG is obliged to correct your personal data without unnecessary delay.
The right to erasure
You have the right to have your personal data deleted from SSG’s systems if the personal data is no longer needed to fulfil the purpose for which it was collected. However, in many cases SSG is the assistant for the data. By that, we mean that you should ensure in the first instance that the party responsible for the input of the data (often via a contracting company) ensures that the data is deleted from SSG’s systems.
If your personal data has been submitted to a third party, SSG will take all reasonable action to notify these parties of your request for data deletion.
If SSG is unable to delete your data for legal reasons, we will restrict the processing of your data to only include whatever is required to fulfil SSG’s obligations.
The right to restrict processing of your personal data
You have the right to request restriction of the processing of your personal data, which means that we will ensure that we only process your personal data for certain specific purposes. SSG will restrict processing in the following cases:
The right to object to processing
You have the right to object to SSG’s processing of your personal data in certain cases, e.g. in respect of research or training activities. In this case, SSG will stop processing the data unless we have compelling reasons to continue doing so, or if processing is required in order to deal with SSG’s legal claims.
SSG has appointed a data protection representative to deal with all queries relating to data protection and personal data. SSG’s data protection representative can be contacted by phoning +46 60 14 15 10 or sending an email to firstname.lastname@example.org.