Processing of personal data from customers and suppliers.
On this day, 21. May 2018, the following policy has been established for RFR Solutions AB
We value your integrity. Your personal data are secure when you entrust us with them. This policy is based on applicable integrity protection legislation and clarifies how we work to look after your rights and your integrity.
The purpose with this policy is to clarify how we process your personal data, what we use them for, who can access them and under which circumstances and how you can exercise your rights.
We primarily process your personal data to fulfil our duties towards you. We do not process more personal data than necessary, and we always strive to use the least sensitive data.
Your personal data are used in business transactions and can be found in customer or purchasing orders, or as contact person in contracts or manufacturing documents. Your data can also be saved in e-mail and telephone lists used for sending surveys, invitations, Christmas greetings or similar.
Which personal data do we process?
We only process personal data when we have a legal reason. We do not process personal data except when they are necessary for us to fulfil our obligations according to contracts and legislation. The following are examples of personal data that we process:
- Address, delivery address, billing address
- E-mail address
- Telephone number
- Fax number
- Payment data
How Do we access your personal data?
As far as possible, we try to get your approval before processing your personal data. We do this by letting you fill out specific approval clauses in cases where processing is based on approvals.
You have the right to withdraw your approval at any time. We will then no longer process your personal data, nor collect any new data, provided that this is not required in order for us to be able to fulfil our duties according to contracts or legislation. Note that the withdrawal of your approval can result in us not being able to fulfil our duties to you.
We also access your personal data in the following ways:
- Data that you provide us with directly
- Data from public registers
Are your personal data being treated in a reassuring way?
We develop routines and ways of working to ensure your personal data are being handled in a safe manner. Only staff in our organization that need the personal data in order to perform his or her work tasks will have access to them.
Regarding sensitive personal data, we have established special authority controls, resulting in higher safety for your personal data.
Our security systems have been developed with a focus on your integrity and protect to a high degree against breaches, destruction and other events that can put your integrity at risk.
We have a number of IT security policies to ensure that your personal data is processed safely.
We do not transfer personal data in any other cases than those explicitly expressed in this policy.
When do we transfer you personal data?
We do not transfer your personal data to third parties unless we have your approval, or if it is necessary in order for us to fulfil our obligations according to contracts or legislation. In cases where we transfer personal data to third parties we establish non-disclosure agreements and ensure all personal data are handled in a secure way.
RFR Solutions is data controller, which means we are responsible for how your personal data are being processed and that your rights are exercised.