Last updated: 2020-08-03
What is personal information?
Personal data means any kind of information that can be linked directly or indirectly to a person. Examples of personal data are: name, address, e-mail, telephone number, social security number, ID number, pictures etc. Also encrypted data and different kinds of electronic identities (e.g. IP number) are personal data if they can be linked to a person.
MediaStugan CJ is the personal data controller for MediaStugan’s handling of your personal data and is responsible for ensuring that the handling is done in accordance with applicable legislation.
We collect information on our sites:
Contact information if you have any questions or want to exercise your rights
If you have questions about how we process your personal data or if you want to update, delete or otherwise change your personal information, you are welcome to contact MediaStugan CJ by e-mail: email@example.com or by regular mail: MediaStugan CJ, Fasanvägen 9, 242 72 Ludvigsborg, Sweden
Why and how the data is collected and how they are used?
When you buy something from us, as part of the buying and selling process, we collect the personal data you give us to enable you to enter into an agreement with MediaStugan CJ and to deliver what has been agreed upon in connection with your purchase. The personal information can also be used to enable us to offer support and to answer questions that you ask us. It may happen that we also collect information about you while you are a customer to be able to send relevant communication to you, such as your purchase history, and what offers you have been interested in by reading an email from us or clicking on a link in email from us. To investigate how satisfied you as a customer are with MediaStugan CJ and our products, questionnaires can also be conducted.
When visitors leave comments on the website, we collect the information shown in the comment form as well as the visitor’s ip address and user agent string as help for detection of junk messages.
When visitors / customers use contact forms on the website, we collect the information shown in the contact form such as name, e-mail address, telephone number, etc. This is done in order to be able to return to the visitor / customer with the information or the help the visitor / customer requests.
Embedded content and links to / from other websites
Where the personal data are collected from
The personal information is collected directly from you, e.g. through when you became a customer or when you contact us. For example, you can give us your personal information by filling out forms on our website or communicating with us via letter, phone, e-mail or when you start subscribing to one of our services (e.g. e-mail dispatch) or participating in a survey, campaign or contest.
When you visit our site, we may automatically collect technical information about the device you are using, your search history on our site, and user patterns. We collect these data by using cookies, server logs and similar technology. We can also collect information if you visit other sites that use our cookies.
We may obtain information about you through various third-party services and public sources such as: technical data from analysis tools such as Google based outside the EU, advertising tools such as Google and Facebook based outside the EU, contact, payment and transaction data from technical, payment and delivery service providers such as for example Paypal based outside the EU, contact and identity information from suppliers such as Hitta.se and Allabolag.se based in the EU, public contact and identity information from authorities such as the Swedish Companies Registration Office based in the EU.
With whom is the personal information shared?
Your personal information is shared with different partners such as suppliers of services on our website and with our accountant, ours and your bank and suppliers of our IT systems that we need for our business. In some cases, we also share information with our suppliers for delivery.
We strive to process your personal information within the EU / EEA and do not transfer your personal data to countries outside the EU / EEA beyond what is stated below.
MediaStugan CJ disclose personal data to third parties in situations where this is a statutory obligation or to fulfill our commitment to you as a customer. Your personal data will never be transferred or sold to any third party for promotional purposes.
MediaStugan CJ takes the help of a third party in, for example, conducting customer satisfaction surveys, e-mail sending or handling of insurance matters, which means that your personal data may be transferred to third parties who deliver such services.
The personal information we collect about you through your use of MediaStugan CJ’s website may be transferred to an IT provider in countries outside the EU / EEA hosting, developing and supporting our site, and to Google in the United States, through Google Analytics. MediaStugan CJ has ensured that your rights are guaranteed during the transfer to the United States through Google’s accession to the EU-US Privacy Shield. More information is available at www.privacyshield.gov.
Why we treat the information and for how long
Your safety is important to us
We have taken precautions to ensure that we do not lose, misuse, access, disclose, alter or destroy your personal information. Your personal data is only handled by employees, suppliers and third party services where there is a necessary need. If, in spite of our precautionary measures, any kind of infringement occurs that affects your personal data, we will notify you and the relevant authority when we have a legal obligation to do so.
Our site may contain links to third-party sites, plug-ins and applications. When you click on links or approve extensions, you may agree that third-party services collect and share your personal information. We do not control these third party services and are not responsible for the privacy policies that apply to other sites. Therefore, we encourage you to read privacy policies on other sites you visit.
Legal basis for handling personal data
We process your personal data when there is a legal basis for the treatment. This applies primarily to personal information that we need to fulfill our tax liability through, for example, bookkeeping. We may also process personal data in the event of a legal obligation.
Implementation of contracts with our customers
The most common reasons why we process your personal data are to be able to deliver what has been agreed upon in connection with your purchase.
Sales and marketing purposes
As a company, we want to acquire new customers and retain existing ones. We therefore use personal information to send e-mail and / or other text messages or make contact by phone. We do not provide personal information to third parties unless you give us unambiguous permission to do so. We may adapt our emails and / or other messages to make them more relevant.
How long do we save your personal data?
We save your personal data during the warranty or warranty period of the goods or services, so that you can contact us if something is wrong. As there is no warranty or warranty period, we will save your information for a maximum of one year after the customer relationship has ended.
We save your information needed for our accounting (e.g. all orders, invoices and payments) and tax base. This is to be able to comply with current legislation. According to current accounting law, we must maintain basic information about our customers (including contact details, identity, financial information and transaction information) for at least seven years after the accounting date.
We save your information for newsletters. If you have objections to how we use your information for newsletters, you can choose to unsubscribe from our newsletters via the link “Unsubscribe” or “End/cancel subscription” which is available in all the emails we send in the form of email marketing to you. You can also contact us at firstname.lastname@example.org to withdraw your consent.
In order not to process personal data unnecessarily and for no reason, we regularly delete the personal data that are no longer needed. The data is deleted according to the above criteria.
When your personal data is processed by MediaStugan CJ you have the following rights
You have the right to know what personal information we hold about you and to ask us for a copy of these.
You have the right to have incorrect personal data about you corrected. Please let us know if your personal information needs to be updated or changed by sending an email to: email@example.com.
You have the right to ask us to erase your personal data (e.g. if we do not have any reason to treat them or you no longer agree). Even if you ask us to delete your personal data, we may sometimes need to save some personal data, e.g. when the law requires us to do so or if the treatment is required to be able to defend or assert our legal interests.
You have the right to object to certain processing of your personal data and to request that the processing of your personal data may be limited, for example, when waiting for incorrect data to be checked and possibly corrected. Please note that a limitation or deletion of your personal data may mean that we are not able to fulfill our obligations to you.
You have the right to receive your personal data in a machine-readable format and transfer them to another person responsible for data, known as data portability. This only applies to personal information that you have given us, which is automatically processed by us and that we deal with in order to keep our promises in the contract with you or that you consented.
You have the right to cancel your consent to processing your personal data at any time. It is important to know that, if you regret a consent, it only applies forwards and not for treatment that has already been done.
You can read more about these rights on the Data Inspection’s website: https://www.datainspektionen.se/
If you wish to use any of these rights, you are welcome to contact us at firstname.lastname@example.org. We may request specific information from you to help us confirm your identity and safeguard your rights to access your personal data (or use any of your other rights). It is a security measure to ensure that personal data are not disclosed to anyone who does not have the right to access them. We may also contact you to get more information about your request in order to make the process faster.
Your personal data is processed according to the law and in a safe manner. Procedures exist to protect your personal data and safeguard your privacy. For example, we only treat such personal data that we really need and are careful to delete personal data when they are no longer needed. We use secure pages and have a so-called SSL certificate, which you can see that before the web address stands “https: //” where “s” stands for “secure”. SSL certificate means that the web page has an encrypted connection and is used to secure servers, which, for example, enables you to safely share payment details and other personal information with us. SSL encryption is a common form of encryption such as used by banks.