Integritetspolicy
1. INTRODUCTION
Your privacy is important to us and regardless of whether we process your data as a corporate customer, supplier or individual, we want to protect your privacy. In this privacy policy you can read about how we process your personal data.
We may change this privacy policy in the future. You can always find the latest version of our privacy policy on our website: www.anecta.se.
We will always be open about how we process your personal data, and you are always welcome to contact us if you have questions about our processing:
2. WHO IS RESPONSIBLE FOR YOUR PERSONAL DATA?
Anecta AB, company reg no. 556929-0692, is the controller for the processing of your personal data.
3. HOW DO WE PROCESS YOUR PERSONAL DATA?
Our processing of your personal data can vary depending on what kind of contact we have with you. We have made a list of our personal data processing below.
- OUR TASK
Anecta is an advisor in corporate transactions. Our clients hire us to find potential buyers and create a competitive sales process. Our clients may also hire us for search and purchase orders and valuation assignments. When carrying out our tasks, we may process personal data related to our clients’ contacts or other people we need to contact in connection with a task, for example our client’s counterparty or counterparty representative.
Processing carried out for this purpose
Communication with the client about our services and conclusion of service contracts in connection with the client hiring us as advisors.
Administration regarding invoicing and payment related to our services.
Communication with our client’s counterparty, counterparty representative and other relevant actors in order to be able to carry out the task, for example when we put buyers and sellers in touch.
Setting out contract documents, carrying out risk assessments and other checks required for performing the task.
Legal basis
Our client’s and our legitimate interest in being able to document, analyse and process the necessary information in order to fulfil our commitments in accordance with the service agreement in an efficient and correct manner.
Storage period
We save personal data until (1) the expiry of our agreement or (2) the expiry of the company’s right to complain according to our agreement (or law if applicable), whichever comes last.
3.2 MARKETING
You can subscribe to our newsletter if you want to receive information about our services and other exciting news. We may also register you to receive emails from us if you have expressed interest in our business, e.g. used our services, participated in one of our seminars, been in contact with us or if we think that our services may be of interest to you. In order to be able to send you marketing, we need to process your personal data.
Remember that you always have the right to object to our marketing. You can do this directly from our emails by clicking the link to unsubscribe or by contacting us (you can find our contact information at the top of the document).
Processing carried out for this purpose
Direct marketing via email or other digital channels (e.g. social media).
Marketing from our partners via email.
Legal basis
Our legitimate interest in being able to market our company and our products and services.
Storage period
Until (1) you object to our marketing or (2) 2 years after your latest activity, whichever comes first. ‘Activity’ means that your company has hired our services, that you participated in any of our seminars, contacted us or otherwise expressed an interest in our services.
3.3 SEMINARS AND EVENTS
It is important for us to always stay updated on the latest news related to corporate transactions. We naturally want to share this knowledge and we therefore organise seminars that our clients have the opportunity to participate in. We may also organise events and networking events where you will have the opportunity to meet other interesting companies and people from the business world. In order to be able to run the seminar or event, we need to process participants’ personal data.
Processing carried out for this purpose
Registering and managing participants at the seminar/event.
Communication with participants before and during training regarding issues relating to this.
Following up completed seminars or events to evaluate them for development purposes before upcoming seminars or events.
Recipients of personal data
We may send out lists of participants to external speakers or other companies that we organise seminars or events with.
Legal basis
Your and our legitimate interest in being able to manage and run a seminar or event.
Legal basis for specific categories
During a seminar or event, we may offer food or other snacks. In order to ensure that we can accommodate our participants’ needs we need to obtain information on any special dietary requirements. We process this information based on your prior consent.
You have the right to withdraw your consent at any point. If you do not give us consent to process data on special dietary requirements, we will not be able to offer you food or snacks during the seminar or event.
Storage period
No more than 60 days after the end of the seminar or event.
3.4 CONTACTS WITH SUPPLIERS
When we purchase services or products from our suppliers, we will process personal data on our suppliers’ contacts. We do this to enable us to maintain a good business relationship and to fulfil the commitments in relevant supplier agreements.
Processing carried out for this purpose
Communication with company representatives regarding orders and commitments in accordance with the agreement that we concluded with the company.
Other communication regarding our business relationship.
Legal basis
Our legitimate interest in being able to use personal data to maintain a good business relationship and fulfil our commitments in relevant supplier agreements.
Storage period
Until (1) the expiry of our agreement or (2) the expiry of our right to complain according to the agreement (or law if applicable), whichever comes last.
3.5 DEVELOPING AND IMPROVING OUR ACTIVITIES
In order to ensure that we are at the forefront regarding our offers, we may use personal data in order to produce statistics and similar data for the purposes of developing and improving our activities.
Processing carried out for this purpose
Producing reports and statistics for follow-ups, managing, planning and assessing our activities.
In order to be able to conduct customer surveys.
Legal basis
Our legitimate interest in being able to use personal data in order to develop, improve and streamline our activities.
Storage period
For this purpose, it is difficult for us to state in advance how long your personal data will be saved. We have instead introduced procedures for continuously checking whether your personal data is still required for this purpose. Personal data that we have not used in the past 3 years will be deleted as we then no longer judge your personal data to be necessary.
3.6 LEGAL OBLIGATIONS AND ENFORCEMENT CASES
We need to process some personal data in order to fulfil our legal obligations. This may relate to requirements in the Accounting Act, tax legislation or the Money Laundering Act or requirements on disclosing information in the case of an enforcement case.
Processing carried out for this purpose
- Necessary processing in order to fulfil our legal obligations in accordance with legal requirements, rulings or authority decisions (e.g. the Accounting Act, tax regulations or the Money Laundering Act or processing that is necessary in connection with an enforcement case).
Recipients of personal data
We may disclose your personal data to concerned counterparties, representatives, authorities or courts.
Legal basis
Legal obligation.
Storage period
The time that is necessary in order to fulfil the relevant legal obligations or in accordance with applicable legal requirements. For example, there are requirements in the Accounting Act that state that we must store certain information on the relevant transaction for 7 years.
3.7 SAFETY MANAGEMENT AND PREVENTING ABUSE OR AVOIDING, PREVENTING AND INVESTIGATING OFFENCES
We work actively with security at our company – both in order to ensure that we can protect your personal data and in order to be able to ensure that we have the necessary information to be able to prevent abuse or avoid, prevent and investigate offences.
Processing carried out for this purpose.
In order to be able to prevent and investigate any fraud or other breaches.
To prevent spamming, phishing, harassment or other measures that are prohibited in accordance with the law or agreements concluded with our (missing text in source)
In order to be able to protect and improve our IT environment against attacks and intrusions.
Legal basis
Our legitimate interest in being able to carry out systematic safety management and to prevent abuse or avoid, prevent and investigate offences.
Storage period
From the collection and for a period of 36 months thereafter. If we suspect abuse of a service or if we notice that an offence has been committed, we will save the data for the time that is necessary to determine, assess or defend our (or a third party’s) legal claims. Read more under section 3.8 (Disputes).
3.8 DISPUTES
On the off chance that disputes arise related to our services, we may need to process the personal data required in order to deal with the relevant dispute.
Processing carried out for this purpose
We process the personal data required for us to be able to deal with a dispute, e.g. a legal claim related to our service contract.
Recipients of personal data
We may disclose your personal data to concerned counterparties, representatives, authorities or courts.
Legal basis
Our legitimate interest in being able to determine, assess or defend legal claims or legal obligations if we are obliged in accordance with applicable legislation to disclose your personal data, e.g. in the case of inquiries or injunctions from courts.
Storage period
From the collection and for a period of 36 months thereafter. If we suspect abuse of a service or if we notice that an offence has been committed, we will save the data for the time that is necessary to determine, assess or defend our (or a third party’s) legal claims.
4. HOW LONG IS PERSONAL DATA SAVED?
Your personal data is saved by us for the time necessary to fulfil the purposes of our processing. After that, we will, in a secure manner, erase or anonymise your data so that it is no longer possible to connect it to you.
See specific storage periods above in relation to respective purposes.
5. HOW WE SHARE YOUR DATA
In order to fulfil our purposes, we may use other companies to help us with our processing. These may be processors and companies that are independent controllers. See also specific recipients of personal data as specified under section 3 above.
Processors
Service providers
We may disclose your personal data to service providers that provide different services such as analytical marketing tools, tools for evaluating seminars or events or IT consultants for the servicing and development of our systems. These companies may only process your personal data according to our instructions and may not use your data for their own purposes. In these cases, we conclude processing agreements which ensure this and also regulate confidentiality and security for your personal data.
Independent controllers
Potential buyers and sellers
We may share your information with potential buyers and sellers if we were to sell the whole or part of the business or in the case of a merger. Our legal basis for this processing is our legitimate interest in being able carry out the sale or merger.
6. TRANSFER OF PERSONAL DATA TO A COUNTRY OUTSIDE THE EU/EEA
Sometimes we may be obliged to transfer your personal data to a country outside the EU/EEA. This may be when we disclose your information to other companies, e.g. a service provider included in an international business group. We will only disclose your personal data to a country outside the EU/EEA if there is sufficient guarantee that your personal data will be handled correctly.
In order to protect your personal data when we transfer it, we will either conclude an agreement with the recipient that covers the EU Commission’s standard contractual clauses or check that the EU Commission has made a decision for the receiving country to comply with an adequate protection level. You can receive a copy of the security measures by contacting us.
7. YOUR RIGHTS
When we process your personal data, you have certain rights. Here is an overview of what these rights are, what they mean and how you can exercise them. Please note that all rights apply to personal data that is linked to you as an individual and not to the company that you represent. For example, data on a company is not personal data and is therefore not covered by your rights.
Your right of access
We strive to be open about how we process your data. If you would like insight into the personal data processing that we carry out in relation to you, you have the right to request access to your data. If we receive a request for access, we may ask for further data in order to ensure that we are disclosing the data to the right person.
Your right to rectification
Do we not have your latest data or are we processing inaccurate data on you? Then you can request for your personal data to be rectified.
Your right to erasure and restriction
You have the right to request that your personal data be erased or limited, e.g. if you think that your personal data is being processed contrary to applicable legislation.
Your right to object to our processing (including the right to object to direct marketing)
You have the right to object to our processing (e.g. the processing that is based on our legitimate interests). Your personal data may not be processed for direct marketing if you object to such processing. If you object to our direct marketing, we will stop all forms of mail to you.
Your right to be able to lodge a complaint with the supervisory authority
If you are not satisfied with the reply you received when you contacted us or think that we are processing your personal data incorrectly, you have the right to lodge a complaint with the Swedish Data Protection Authority/ the Swedish Authority for Privacy Protection.
How do I exercise my rights?
If you want to exercise any of your rights, you are welcome to contact us at info@anecta.se