SSG Standard Solutions Group safeguards your personal privacy, and our data protection policy explains how SSG collect and uses your personal data.

It also describes your rights in respect of us and how you can exercise your rights. You can always contact us if you have any questions on privacy and data protection by sending an email to us at dataskydd@ssg.se.

By using SSG’s services, you accept our data protection policy and our processing of your personal data. You also accept SSG’s use of electronic communication channels to send information to you. It is important for you to read and understand our data protection policy before you use our services.

To be able to offer you our services such as SSG Entre or our courses, we need to process your personal data as outlined below. This is done with the greatest possible consideration for your privacy.

What do we do with your information? 

Provide, supply and improve our services
All data is used to provide, supply and improve SSG’s services. SSG processes personal data for the following purposes on the basis of the following legal ground:

Purpose of processing

  1. To confirm your identity and verify your personal details and contact details
  2. To improve our services and for general business development, with a view to developing new services and functions and new business opportunities.
  3. To comply with applicable legislation, such as the law requiring personnel registers to be kept and compliance with accounting laws.

Legal basis for processing (“why is processing necessary?”)

  1. To perform our contractual obligations in respect of you
  2. Other legitimate interests
  3. To comply with applicable legislation.

To communicate with you

SSG may also use your data to communicate relevant information concerning agreed or related services and to perform customer satisfaction surveys in respect of our services (e.g. when you have contacted SSG service support). This contact may take place via electronic communication channels, over the phone or by post. If you do not wish to receive such communication, you are welcome to send an email to dataskydd@ssg.se.

We will not communicate to contractors (end-users) for marketing purposes unless they have stated an interest in this beforehand. Administrators of organisations may receive messages that are considered to be of relevance.

What information does SSG collect? 

Information that you provide to us
You may directly or indirectly give us information about yourself in a number of different ways, such as when you register on our website or are registered in our systems as a user by an administrator. This information may include:

  • Personal details and contact information – name, photo, date of birth, personal ID number, invoice and delivery address, email address, mobile phone number, language

Information that we collect about you
When you use our services, we simply collect information required in order to maintain our agreements (such as when you enter a plant via an access gate). The following are examples of the kind of information that we store:

  • Information on courses, how long they are valid for and valid plants – details regarding the courses and validity periods of training courses that you have completed.
  • Financial information – what you have bought at our online shop, what documents you have the right to download, or what services you have the right to use.
  • Geographical information – your geographical location when entering and exiting plants.

Information that you provide to us, such as information about the services and your use of them, is generally considered necessary in order to conclude a contractual relationship with us.

Who may view your personal data? 

For customers that have Access cards
If you are an SSG Entre customer or a customer for one of our other training courses, we will submit your data to Areff AB. This is a subcontractor that produces Access cards, i.e. the passcards issued to allow workers to access various plants.

For some plants, we have agreements where we share data with these in order to guarantee accessibility. In these cases, we share data about contractors who are approved to access the plant in question. In these cases, we have undertaken all reasonable legal, technical and organisational measures to ensure that your data is handled securely and with an adequate level of protection.

Our service provider
All IT operations are provided by GDM AB, and we have undertaken all reasonable legal, technical and organisational measures to ensure that your data is handled securely and with an adequate level of protection.

Authorities
SSG may submit necessary information to authorities such as the police, the Swedish Tax Agency or other authorities if we are obliged to do so by law, or if you have granted your approval for us to do this. Submission of the personnel register so that the Swedish Tax Agency can check personnel at plants is one example of a legal obligation to submit information.

Contact us at dataskydd@ssg.se for a complete overview of our processing operations in relation to the services that you use.

What we will NOT do with your data
We will not sell your personal data to third parties unless we have your permission to do so.

Where do we process your personal data? 

All handling of your data by SSG takes place within the borders of Sweden. If personal data is transferred to any country outside the EU/EEA, SSG will undertake action to ensure that this personal data continues to be protected, as well as taking the measures required to legally transfer personal data to countries outside the EU/EEA.

For how long will we retain your personal data? 

Your personal data will only be retained for as long as we need to retain it in order to fulfil the purposes for which the data was collected in accordance with this data protection policy. SSG may store the data for longer if so required in order to comply with legal requirements or protect SSG’s legal interests, e.g. if legal proceedings are in progress.

SSG will retain data relating to customers for a maximum of 12 months after the customer no longer has a valid relationship with SSG. In 2018, there may be some data that has not been screened due to limitations in our underlying systems. However, this situation will be rectified in 2018.

Personal data responsibility and relationships with assistants 

If you change your employer, email address, telephone number or similar, it is important to update this information in SSG’s systems.

Contact the responsible person at your company, or get in touch directly with SSG’s service support team as stated below. You have the opportunity to decline to submit personal data to SSG. However, this may result in difficulties, primarily with regard to access checks among SSG’s plant customers.

Some SSG services have designated contacts and/or administrators. These persons are responsible for obtaining consent from you, registering, updating and possibly deregistering data about you as a person. They are also responsible for ensuring that your personal data is handled in accordance with the provisions of the General Data Protection Regulation.

Rights in accordance with the GDPR 

The right of access
You have the right to request a response on whether SSG processes personal data relating to you, and to view a free copy of the personal data that is processed. If you wish to request extracts on repeated occasions, SSG will make a charge in order to cover the resulting administrative costs. When such a request is submitted, SSG will also submit further information about the processing operation, such as its purpose, personal data categories that are processed, anticipated storage time, etc.

The right to rectification
If your personal data held by SSG is incorrect, you have the right to request that this data is corrected. SSG is obliged to correct your personal data without unnecessary delay. 

The right to erasure
You have the right to have your personal data deleted from SSG’s systems if the personal data is no longer needed to fulfil the purpose for which it was collected. However, in many cases SSG is the assistant for the data. By that, we mean that you should ensure in the first instance that the party responsible for the input of the data (often via a contracting company) ensures that the data is deleted from SSG’s systems.

If your personal data has been submitted to a third party, SSG will take all reasonable action to notify these parties of your request for data deletion.

If SSG is unable to delete your data for legal reasons, we will restrict the processing of your data to only include whatever is required to fulfil SSG’s obligations.

The right to restrict processing of your personal data
You have the right to request restriction of the processing of your personal data, which means that we will ensure that we only process your personal data for certain specific purposes. SSG will restrict processing in the following cases:

  • If you claim that your personal data is incorrect and SSG needs time to check the correctness of the data.
  • If SSG no longer needs the data but you request that we continue to retain it because you need it in order to deal with legal claims.
  • If you object to the processing performed by SSG. In such cases, processing will be restricted until your reasons for the objection and SSG’s compelling legitimate reasons have been weighed against one another.
  • If you are of the opinion that we should delete the personal data, but we are unable to do for some reason.

The right to object to processing
You have the right to object to SSG’s processing of your personal data in certain cases, e.g. in respect of research or training activities. In this case, SSG will stop processing the data unless we have compelling reasons to continue doing so, or if processing is required in order to deal with SSG’s legal claims.

What is the situation with cookies and similar technologies? 

We use cookies when you visit our website. More information on how we process cookies can be found in our cookie policy.

Contact details 

SSG has appointed a data protection representative to deal with all queries relating to data protection and personal data. SSG’s data protection representative can be contacted by phoning +46 60 14 15 10 or sending an email to dataskydd@ssg.se.