Forento AB (“Forento” or “we”/”us”) process personal data in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, General Data Protection Regulation (“GDPR”), and any other Swedish laws and regulations applicable in the field of data protection.
FORENTO’S PURPOSES AND LEGAL GROUNDS FOR PROCESSING YOUR PERSONAL DATA
The types of processing that may occur is dependent on what legal obligations that we have from time to time. For example, we may use the information to share your data with authorities to the extent they require us to do so;We may need to process certain personal data in order to safeguard our or someone else’s rights and/or interests in the event of a legal claim against us or someone else. The type of processing is depending on each situation. Normally, we may need to use the data in connection with court proceedings or when having a dialogue with a counterparty or counterparty counsel;To be able to reconstruct, such as divide into several businesses, or if someone wishes to invest in us, acquire us or a part of us, or any of our assets, we might have to disclose your personal data to such potential investor or purchaser (who is bound by a confidentiality obligation), for instance as part of a due diligence investigation, and take other measures within the scope of the above-mentioned purpose (such as discussing with a counterparty about their findings).
For the avoidance of doubt, the processing of your personal data will continually be in accordance with this policy, unless you are informed otherwise; andIf you on your own initiative provide us with other personal data than as requested, we may process them by, for instance, compiling them in our systems and communicate with you about them by email, phone (by talking, texting or otherwise) and / or in another way.Forento will only process personal data if we have a lawful basis for doing so. Lawful bases for processing include, inter alia, consent, contractual necessity and our “legitimate interests” or the legitimate interest of others. Forento may process personal data based on the following legal grounds in GDPR: In the event Forento foresees the need to process personal data for a purpose which, pursuant to applicable laws and regulations, should be based on consent (on grounds of Art. 6(1)(a) GDPR), Forento will contact you in advance, to inform you about the processing for which your consent is required before the consent is collected and ask for your consent.
To fulfil an agreement with you or to respond to your request for customer service. The legal ground for this is that the processing is necessary for the performance of an agreement or contract to which the data subject is party or to take steps at the request of the data subject prior to entering into an agreement or contract (Art. 6(1)(b) GDPR).To comply with legal obligations to report to authorities and third parties. The legal ground is that processing is necessary for compliance with a legal obligation to which the data controller is subject (Art. 6(1)(c) GDPR).To satisfy a legitimate and justified interest of Forento in processing your personal data, such as marketing our products and services by contacting potential and existing customers via e-mail, newsletters, or letters, in order to inform them about Forento’s services, offers, events and products. The legal ground for this is that the processing is necessary and that Forento has a legitimate interest (Art. 6(1)(f) GDPR) that is not overridden by the fundamental interests and freedoms of the data subjects.
DIFFERENT CATEGORIES OF THE DATA SUBJECT’S PERSONAL DATA
When you visit one of our digital channels (for example our website, social media and video sharing sites, our mobile applications, online events, digital meetings, webinars, online training etc.), as well as when you contact us via e-mail or our website’s chat function, we may collect information about you, such as your name, address, postal address, e-mail address, phone number, identification data and information regarding your use of Forento’s products and services. In some cases, we may process your personal identity number. Forento may also collect your personal data from other public sources and external partners from other countries. Personal data that may be collected and processed by Forento could include:your name, e-mail address, postal address, name and contact details of your employer, telephone number, banking information and payment details, IP address, picture, personal settings; cookie files stored on your computer or your telephone (or other digital device which you may use to visit our digital channels) for the purpose of identifying your browser and to recognize your settings and preferences.
THIRD-PARTY SERVICE PROVIDERS
PROCESSING AND TRANSFER OF YOUR PERSONAL DATA
Forento and third parties may be based anywhere in the world, which could include countries that may not offer the same legal protections for personal data as the EU/EEA. Forento will comply with local data protection requirements and its internal global privacy standards and Forento will apply the necessary safeguards under the applicable law of the country transferring the data for such transfers. The personal data will be, dependent on the purpose for which it is collected, archived, confidentially erased, or anonymized in accordance with applicable rules, which, in short terms, will be when it is no longer necessary. Personal data will be stored during the time it is necessary for Forento to fulfil its obligations and for the purposes set out above. Forento will bring necessary measures to provide the personal data with protection against unauthorized access and loss thereof.
THE DATA SUBJECT’S LEGAL RIGHTS
Forento’s contact details are as follows:
Forento AB, with address Grengatan 10, 811 52 Sandviken, Sweden.
Forento can also be reached by e-mail, firstname.lastname@example.org
The contact details of the competent supervisory authority in Sweden are as follows: The Swedish Authority for Privacy Protection (Sw. ‘Integritetsskyddsmyndigheten’), org.no. 202100-0050, with address Box 8114, SE-104 20 Stockholm, Sweden.
The Swedish Authority for Privacy Protection can also be contacted by telephone, +46 (0)8-657 61 00, or by e-mail, email@example.com
For more information about the Swedish Authority for Privacy Protection, please visit: www.imy.se