"

ROUTINE FOR HANDLING PERSONAL DATA

ROUTINE FOR HANDLING PERSONAL DATA IN ACCORDANCE WITH GDPR - DEMEX AB

On 25 May 2018, the new EU regulation GDPR (General Data Protection Regulation) will enter into force. This replaces the Swedish Personal Data Act. Much is the same, but the requirements for how we as a company may process personal data are tightened.

demex

Content

1. WHAT COUNTS AS A PERSONAL DATA?

Any information relating to an identified or identifiable natural person.

An identifiable natural person is a person who can be directly or indirectly identified in particular by reference to an identifier who:

Name
Identification number (social security number *)
Location information (address) Online identifiers Alternatively, one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of the natural person.

* When it comes to the customer’s social security number, this is usually not a necessary information that Demex needs in the business. However, it may be needed in some cases, for example when contacting the Enforcement Officer. Social security numbers are only allowed to be obtained and used when Demex needs them. Demex shall not store the information in a customer register but delete it when the contact with the Enforcement Officer is terminated.

1.1 What personal data does Demex handle and when?

1.1.1 When a customer contacts Demex for an order, quote, warranty issue, etc.

When Demex is contacted in connection with sales, the following information provided by the customer is handled:

Name and contact information Information about the order (which item, quantity and price)
Billing information
Demex handles the customer’s personal data to:

Identify the customer
Send the goods to the correct address
Prevent fraud
Notify customer about shipment
Keep statistics on purchases Invoice correctly

1.1.2 When a customer contacts Demex for questions about the range, suppliers, etc.

Demex handles the customer’s personal data in order to be able to provide feedback to stakeholders and offer Demex products.

1.1.3 When a customer participates in any of Demex’s market research

Demex handles the customer’s personal data in order to receive information on how Demex can best ensure that the product range is the right one for existing and potential customers.

2. HOW LONG DOES DEMEX SAVE PERSONAL DATA?

2.1 Customers / companies

The year in which the person was last in contact with Demex or until a request for deletion of the data is requested.

2.2 Private individuals

Demex handles information about private individuals when they buy, for example, dog farms. Demex saves the information if the customer needs to supplement their dog farm with more products. When private individuals trade with Demex, a credit report is made at UC.

3. TO WHOM DOES DEMEX PROVIDE PERSONAL INFORMATION? And

  • Shipping company for delivery of goods Suppliers for warranty matters
  • The invoicing service “Klarna” which Demex uses
  • Dropbox, Google Drive, mailing have their own agreements that ensure that the servers on which the data is stored are within the borders of the European Union. Otherwise, Demex may not use these services for the storage of personal data.
  • Demex has its own server for our e-mails
  • Demex has an agreement with an accounting firm or a company that takes care of customer registers to make mailings, which regulates how personal data is to be processed.
  • If there is an incident where personal data is disseminated in an unintended manner, this must be reported to the Data Inspectorate.
  • Demex makes an inventory of their registered personal data annually.
  • Regardless of the way you registered with Demex, you can always change your information or request to be removed from the Demex register by emailing info@demex.se or calling 010-555 44 47.

4. HOW DOES DEMEX PROTECT PERSONAL DATA?

  • Dropbox, Google Drive, mailing have their own agreements that ensure that the servers on which the data is stored are within the borders of the European Union. Otherwise, Demex may not use these services for the storage of personal data.
  • Demex has its own server for our e-mails
  • Demex has an agreement with an accounting firm or a company that takes care of customer registers to make mailings, which regulates how personal data is to be processed.
  • If there is an incident where personal data is disseminated in an unintended manner, this must be reported to the Data Inspectorate.
  • Demex makes an inventory of their registered personal data annually.
  • Regardless of the way you registered with Demex, you can always change your information or request to be removed from the Demex register by emailing info@demex.se or calling 010-555 44 47.

5. CUSTOMER'S RIGHTS

5.1 Access to their personal data

The customer has the right to receive a confirmation of whether Demex handles his personal data and to receive an extract on which data Demex processes.

5.2 Request correction

The customer may demand that incorrect information be corrected.

5.3 Deletion of personal data

The customer can request the removal of all or part of his personal data from Demex’s system and Demex undertakes to complete the request. Demex cleans its registers of personal data that is no longer needed in connection with inventory, e.g. information about people who are no longer customers.

5.4 Inquiry about saving personal data

For existing customers’ information that requires consent, Demex may either delete it or obtain consent from the customer with the following message: “You are in our register, because you are or have been a customer to us and so that we can provide you with relevant information when ordering or quotes. If you no longer wish to be in our register, I ask you to come back for action. ” For new customers, Demex must request consent to store their personal data with the following writing: “In order for us to be able to handle orders for you, we will need consent from you to store your personal data, which is subject to the GDPR. With your consent, you have given us the right to store your information. If at any time you do not want to remain in our databases, you can contact us for deletion of collected data. “

5.5 Penalty fee

If Demex has stored or disseminated personal data incorrectly, there may be a risk that Demex will be required to pay a penalty fee.

Offertförfrågan

Fyll i dina uppgifter här så kontaktar vi dig inom kort.

GDPR Policy

Tack för ditt meddelande