Privacy policy - Install

Install Nordic AB is the data controller for the personal data we process.
Organisationsnummer: 559114–9744

Address: Furunäsvägen 100, 944 71 Piteå

E-mail:
Telephone: 010-240 08 00
Website: www.install.se

Organisation and responsibilities

Our CEO is ultimately responsible for the content of this privacy policy and its compliance by all employees and contractors. This responsibility may be delegated to another appropriate person within Install. All employees and contractors are required to act in accordance with the policy.

What data we collect

We may collect contact details (e.g. name, telephone number, email address) and other information you provide in connection with a quote request, order, contract or recruitment.

Why we process personal data

We process personal data in order to:

    •  Delivering our services
    •  Communicate with customers and partners
    •  Managing contracts, invoices and payments
    •  Recruiting new employees
    •  Fulfilling legal requirements

Principles of personal data processing

We follow the basic principles of the GDPR:

    • Legality - data is processed on a legal basis
    • Purpose limitation - data is only used for the purpose for which it was collected
    • Task minimisation - we do not collect more data than necessary
    • Correctness - the data is kept up to date
    • Storage minimisation - we keep data for as short a time as possible
    • Privacy and confidentiality - we protect data against unauthorised access

Storage time

We only keep data for as long as is necessary for the purpose or as required by law, such as the Accounting Act.

Sharing of data

We only share data with:

    •  Suppliers and partners needed to deliver our services
    •  Authorities when we are required by law

Your rights

You have the right to:

    • Request access to and rectification of your data
    • Get your data deleted when possible
    • Object to processing or request restriction
    • Lodging a complaint with the Data Protection Authority (IMY)

Security and incident management

We take technical and organisational measures to protect personal data. Any personal data breaches are immediately reported to the Data Controller, who will notify IMY within 72 hours if necessary.

External suppliers

When working with external suppliers, it is always ensured that personal data is handled in accordance with the GDPR and that data processing agreements are signed where required.