Privacy Policy

Effective date: 1-December-2021

Introduction

Why do we have a privacy policy?

Apidio AB (“Apidio” or “we”) care about your privacy. Therefore, we always strive to protect your personal data in the best possible way and to comply with all applicable laws and regulations for the protection of personal data. In this policy, we want to inform you about how we collect and process your personal data in accordance with the EU regulation 2016/679 (“GDPR”) to guarantee an open and transparent processing of your personal data.


Who is responsible for your personal data?

Apidio AB, reg. no. 556982-7537, is responsible for the processing of your personal data. The following is Apidio’s contact information:


Telephone number: +46 702 30 72 25

Address: Slagrutevägen 12A, SE-182 34 Danderyd, Sweden


What personal data do we process?

Apidio processes information about you as a representative of a business customer, supplier or another business partner. The personal data that we process about you are your name, company name, telephone number, position/title, company address and your e-mail address.


Concerning in-house consultants, we will also process login details, i.e. username and password.


You are not obliged to state your personal data to Apidio. Apidio processes your personal data to facilitate and to render more effective communication with business partners. If you do not provide your personal data, Apidio will abstain from processing your personal data alternatively inquire another contact person at your company.


We usually collect your personal data directly from you, e.g. via e-mail, website or business card, but sometimes we do collect your personal data from other employees at your company.


For what purpose do we process your personal data?

We process your personal data to be able to communicate with you as a contact person at a company that we co-operate with and/or has an agreement with Apidio, as a business customer, supplier or other business partner, as well as for you to be able to order our application products or services on behalf of the company you represent.


Apidio provides information to its business partners concerning Apidio’s business and provides newsletters to you as a contact person at the business partner.


Apidio further processes in-house consultants’ login details to be able to enable login and to manage authority to the IT systems that are necessary for you to carry out your tasks as a consultant at Apidio.


Who has access to your personal data

As a starting point, your personal data will only be processed by Apidio. Our IT suppliers might get access to the personal data and other information when developing and supporting our IT system and environment. These IT suppliers only process personal data on our behalf and never on their own behalf.


On what legal ground do we process your personal data?

Legitimate interest

The legal ground for Apidio’s processing of your personal data as a contact person at Apidio’s business partner is Apidio’s legitimate interest, under article 6.1 (f) GDPR, to process your personal data in order to facilitate an effective and appropriate communication between Apidio and you as a contact person/representative of a business partner or company. Concerning consultants, our legitimate interest also includes to enable for the consultant to work in the IT systems of Apidio, which is necessary for the consultant to carry out the tasks as a consultant at Apidio.


For how long will we process and store your personal data?

Your personal data will be sorted out/erased according to the following:

  1. When you leave the position as a contact person/representative of the business company of Apidio (and we are informed hereof) your personal data will be sorted out/erased.

  2. When the co-operation with the business partner that you represent ends, your personal data will be sorted out/erased.


Invoices and other accounting records containing your personal data will be stored, according to applicable accounting legislation, for seven years from the calendar year when the verification was entered into the books.


Inactive agreements containing your personal data will be stored for ten years due to the period of limitation according to the Swedish statute of limitation.


Transfer of personal data to third countries

Apidio could process your personal data outside of the EU/EEA. If your personal data will be processed outside the EU/EEA, then we will make sure that such processing is either based on a decision from the Commission establishing that the country in question ensures an adequate level of protection or appropriate safeguards that ensure that your rights are protected or based on another ground for such transfer in accordance with GDPR.


Your rights

Right to access to your personal data

You are entitled to request information about which personal data we process about you and how the personal data is being processed. You also have the right to request a copy of the personal data we process about you.


Right to rectification

If you consider your personal data that Apidio processes to be inaccurate, e.g. information concerning your name or address, you have the right to get the inaccurate information corrected and to get the incomplete information completed by providing us with the correct information.


Right to erasure

You have the right to request that your personal data is erased, e.g. if the processing is no longer relevant in relation to the purpose the information was collected for or if you recall your consent to the processing and there are no other legal grounds for the process.


Right to limitation of processing

You have the right to request limitation of the processing of your personal data, with the exception for storage. Limitation of processing can be requested for example if you object to the accuracy of the personal data or if you consider the processing of your personal data to be unlawful.


Right to objection

You have the right to object at any time concerning the processing of your personal data in accordance with article 6.1 (e) or (f) (legitimate interest) of GDPR, including profiling based on those provisions.

Where personal data are processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning such marketing, which includes profiling to the extent that it is related to such direct marketing.


Right to data portability

You have the right to obtain the personal data you have provided us with in a structured, commonly used and machine-readable format and have these transmitted to another controller, provided that the process is automatized and that the process is based on a consent or an agreement.


Changes in this policy

Apidio is entitled to amend this policy at any time if it is necessary to fulfill the requirements according to applicable laws and regulations or if it is necessary due to changes in Apidio’s operations.

In such a situation, Apidio will provide information concerning the changes according to applicable law. Applicable information will be available in this privacy policy, on the website of Apidio and/or provided in other appropriate ways.


Observance of GDPR

Do not hesitate to contact Apidio if you, for any reason, feel unhappy about our processing of your personal data. If you would still be of the opinion that your rights, under the GDPR, have not been satisfied you have the right to send a complaint to the regulatory authority. You will find more information concerning this on www.datainspektionen.se.


Our contact details

If you would like to contact us with regards to our processing of your personal data or if you have questions concerning this privacy policy, you are welcome to contact us on tommy@apidio.se