PRIVACY POLICY

At TP E-commerce Nordic AB, organization number 559386-1841, we protect your privacy and process your personal data in accordance with all applicable laws and regulations. Below you can read about why we need to collect personal information about you, how to do to get the saved information deleted, and more. Teknikproffset.se will never sell your personal information to third parties, but we work with several different service providers who will gain access to basic personal information about you so that we can fulfill our commitment to you. Read more about this below under Personal Data Assistants. It is important that you read the entire policy and understand what it means. If you have any questions, you are welcome to email asiakaspalvelu@teknikproffset.fi.

WHAT IS A PERSONAL DATA AND WHAT IS A PROCESSING OF PERSONAL DATA?
Personal information is any kind of information that can be directly or indirectly attributed to a natural person who is alive. Examples of this that affect your relationship with Teknikproffset.se are name, social security number, address, e-mail address, IP address, and more. Processing of personal data is everything that happens with the personal data. Every action taken with personal data constitutes a processing, regardless of whether it is performed automatically or not. Examples of common treatments are collection, registration, organization, structuring, storage, processing, transfer and deletion.

1. PERSONAL INFORMATION WE SAVE ABOUT YOU AS A CUSTOMER / MEMBER AND WHY

ORDER / BUY
Purpose: To be able to handle order / purchase.

Processing performed:
- Delivery (including notification and contacts regarding delivery)
- Identification and age control
- Payment management (including analysis of possible payment solutions, which may include checking against payment history and obtaining credit information from Qliro)
- Address control through Qliro
- Handling of complaints and warranty matters
- Follow-up, via email in the first instance, to inform you about the status of the order, delivery time and more, and follow-up after delivery

Categories of personal data:
- Name
- Social security number
- Contact information (address, e-mail and telephone number)
- IT environment (eg language setting, IP address, browser settings, time zone, operating system, screen resolution and platform)
- Payment history
- Payment information
- Credit information from credit information companies
- Purchase information (eg ordered products, delivery address)

LEGAL GROUNDS
Fulfillment of the purchase agreement. This collection of your personal data is required for us to be able to fulfill our obligations under the purchase agreement. If the information is not provided, our commitments can not be fulfilled and we are therefore forced to deny you the purchase.

STORAGE PERIOD
Until the purchase has been completed (including delivery and payment) and for a period of 36 months thereafter in order to be able to handle any complaints and warranty matters.


2. LEGAL OBLIGATIONS

Purpose:
To be able to fulfill the company's legal obligations.

Processing performed:
Necessary handling to fulfill the company's legal obligations under legal requirements, judgments or government decisions (eg the Accounting Act, the Money Laundering Act or the rules on product liability and product safety, which may require the production of communication and information to the public and customers about product alarms and product recalls in the event of a defect or hazardous to health).

Categories of personal data:
- Name
- Social security number
- Contact information (address, e-mail and telephone number)
- IT environment (eg language setting, IP address, browser settings, time zone, operating system, screen resolution and platform)
- Payment history
- Payment information
- Correspondence
- Information about time of purchase, place of purchase, any errors / complaints.

LEGAL GROUNDS
Legal obligation. This collection of your personal information is required by law. If the information is not provided, our legal obligation can not be fulfilled and we are therefore forced to deny you the purchase

STORAGE PERIOD
Until the purchase has been completed (including delivery and payment) and for a period of 36 months thereafter unless the law requires a longer period.


3. SERVICE, SUPPORT AND WARRANTY


Purpose:
To be able to handle customer service matters.

Processing performed:
- Communication and answering any questions to customer service (by phone or in digital channels, including social media).
- Identification
- Investigation of any complaints and support matters (including technical support).

Categories of personal data:
- Name
- Social security number
- Contact information (address, e-mail and telephone number)
- IT environment (eg language setting, IP address, browser settings, time zone, operating system, screen resolution and platform)
- Payment history
- Payment information
- Correspondence - Information about the time of purchase, place of purchase, any errors / complaints

LEGAL GROUNDS
Legitimate interest. The processing is necessary to satisfy our and your legitimate interest in handling customer service matters.

STORAGE PERIOD
Until the customer service case has been closed, however, at least 30 days.


4. COMPETITIONS AND EVENTS


Purpose:
To be able to implement and manage participation in competitions and / or events.

Processing performed:
- Communication before and after participation in a competition or event (eg confirmation of entries, questions or evaluations)
- Identification and control of age
- Selection of winners and mediation of any winnings (eg payouts or travel bookings)

Categories of personal data:
- Name
- Social security number
- Contact information (address, e-mail and telephone number)
- IP address (to track down any fraud)
- Information provided in competition entries
- Information provided in evaluations of events

LEGAL GROUNDS
Legitimate interest. The treatment is necessary to satisfy our and your legitimate interest in managing your participation in competitions and / or events.

STORAGE PERIOD
During the time the competition / event (including any evaluation) takes place, however, at least 30 days.


5. FRAUD OR ABUSE OF SERVICE


Purpose:
To be able to prevent misuse of a service or to prevent, prevent and investigate crimes against the company.

Processing performed:
Prevention and investigation of possible fraud or other violations of the law (eg incident reporting in stores). Prevention of spam, phishing, harassment, attempts to log in to user accounts or other actions that are prohibited by law or our terms of purchase, membership or service. Protection and improvement of our IT environment against attacks and intrusions.

Categories of personal data:
- Social security number
- Purchase and user generated data (eg click and visit history)
- IT environment (eg language setting, IP address, browser settings, time zone, operating system, screen resolution and platform)

LEGAL GROUNDS
Fulfillment of legal obligation (if any) or legitimate interest. If there is no legal obligation, the processing is necessary to satisfy our legitimate interest in preventing the misuse of a service or to prevent, prevent and investigate crimes against the company.

STORAGE PERIOD
From the collection and for a period of 36 months thereafter.


6. PERSONAL INFORMATION WE SAVE ABOUT YOU THAT USES "MY PAGES"


CREATE MEMBERSHIP
Purpose:
To be able to administer and to be able to create My pages.

Processing performed:
The creation of a login function. Ensuring your identity and age. Maintaining accurate and up-to-date information. The opportunity for you to follow your purchase and payment history. The ability for you to save favorites and similar facilitators. Managing your customer choices (eg your profile and settings).

Categories of personal data:
- Name
- Social security number
- Contact information (address, e-mail and telephone number)
- IT environment (eg language setting, IP address, browser settings, time zone, operating system, screen resolution and platform)
- Payment history
- Payment information
- Purchase history
- Information about time of purchase, place of purchase, any errors / complaints
- Username and password
- Settings regarding your profile and your personal choices

LEGAL GROUNDS
Fulfillment of the membership agreement. This collection of your personal information is required for us to be able to fulfill our obligations under the membership agreement. If the information is not provided, our commitments can not be fulfilled and we are therefore forced to deny you membership.

STORAGE PERIOD
Until the membership ends.

7. PERSONAL INFORMATION WE SAVE ABOUT YOU WHO ARE LOOKING FOR JOBS AT TEKNIKPROFFSET VIA OUR WEBSITE

APPLICATION
Purpose:
To be able to administer your application.

Treatments performed:
Saving the information you provide in the application form.

Categories of personal data:
- Name
- Social security number
- Contact information (address, e-mail and telephone number)

LEGAL GROUNDS
Consent. Required for us to be able to complete the recruitment process. If not all information is provided, your application will not be processed by us.

STORAGE PERIOD
Until the recruitment process is completed, however, at least 6 months.


8. PERSONAL INFORMATION WE SAVE WHEN YOU EMAIL OR USE OUR CONTACT FORMS

PROCESSING OF EMAIL
Purpose: To be able to administer and answer your emails.

Treatments performed:
Saving the information you provide via email or the contact forms.

Categories of personal data:
- Name
- Contact information (address, e-mail and telephone number)

LEGAL GROUNDS
Consent. Required for us to be able to fulfill our commitment and respond to emails.

STORAGE PERIOD
Until the case is closed, however, at least 30 days for any further training of employees.


9. SOURCES FOR AND SHARING OF PERSONAL DATA

SOURCES OF PERSONAL DATA
In addition to the information you provide to us, or which we collect from you based on your purchases and how you use our services, we may also collect personal information from someone else (so-called third party). The information we collect from third parties is the following: - Address information from public registers to be sure that we have the right address for you- Information on creditworthiness from credit rating agencies, banks or information companies

SHARING OF PERSONAL DATA WITH PERSONAL DATA ASSISTANTS
In cases where it is necessary for us to be able to offer our services, we share your personal information with companies that are personal data assistants for us. A personal data assistant is a company that processes the information on our behalf and according to our instructions.

We have personal data assistants who help us with:
- Payment solutions (card acquirers, banks and other payment service providers)
- Transport / Shipping (logistics companies and freight forwarders)
- Marketing (newspapers, social media, media agencies or advertising agencies)
- IT services (the companies that handle our operation, technical support and maintenance of our IT systems)

When your personal data is shared with personal data assistants, this is only for us to be able to carry out the agreement you have approved with us (eg to be able to fulfill our obligations under the purchase agreement). We check all personal data assistants to ensure that they can provide adequate guarantees regarding the security and confidentiality of personal data. We also have written agreements with all personal data assistants, which means that they guarantee the security of the personal data that is processed and undertake to comply with our security requirements as well as restrictions and requirements regarding international transfer of personal data.

COMPANIES WHICH ARE INDEPENDENT PERSONAL DATA RESPONSIBILITIES
We also share your personal data with certain companies and authorities that are independently responsible for personal data. The fact that the company / authority is independently responsible for personal data means that it is not we who control how the information provided to the company is to be processed.

Independent personal data controllers with whom we share your personal data are:
- Government agencies (eg police, tax authorities and other agencies). This is only done if we are obliged to do so by law or in case of suspicion of crime.
- Companies handling transport (logistics companies and freight forwarders).
- Companies that offer payment solutions (card acquirers, banks and other payment service providers). When your personal data is shared with a company that is independently responsible for personal data, that company's privacy policy and personal data management apply.


10. PROTECTION OF YOUR PERSONAL DATA AND STORAGE TIME

YOUR PERSONAL INFORMATION IS PROCESSED HERE
Our goal is for your personal data to be processed within the EU. Our own IT system is physically located in Sweden. In some cases, such as support and maintenance, however, we may have to transfer the information to a country outside the EU, for example if we share your personal data with a personal data assistant who is established or stores information in a country outside the EU. In these cases, the personal data assistant may only access the information that is relevant for the purpose. Regardless of the country in which your personal data is processed, we take all reasonable legal, technical and organizational measures to ensure that the level of protection is the same as within the EU / EEA. In cases where personal data is processed outside the EU, the level of protection is guaranteed either through a decision by the European Commission that the country in question ensures an adequate level of protection or through the use of so-called appropriate protection measures.

PROTECTION OF YOUR PERSONAL DATA
We use IT systems to protect the confidentiality, integrity and access to personal data. We have taken security measures to protect your personal data against illegal or unauthorized processing. Only those people who actually need to process your personal data in order for us to fulfill our stated purposes have access to them.

STORAGE TIME FOR PERSONAL DATA
We never store your personal information for longer than is necessary for each purpose. See more about the specific storage periods under each purpose. Please note that there may be other laws, such as the Accounting Act, which require us to store purchase information, invoices, etc. for a longer period of time than stated above.


11. RIGHTS FOR THOSE WHO HAVE RECEIVED THEIR PERSONAL DATA

RIGHTS AS REGISTERED
Right of access (register extract). We are always open with how we process your personal data and if you want to get a deeper insight into which personal data we process about you, you can request access to the data (the information is provided in the form of a register extract with purpose, categories of personal data , categories of recipients, storage periods, information on where the information was collected and the existence of automated decision-making). As you can see above for the various purposes, it is mainly information you provided when we entered into an agreement.

Keep in mind that if you request access to the personal information we have stored about you, we may ask for additional information to ensure efficient handling of your request and that the information is provided to the right person.

RIGHT TO CORRECTION
You can request that your personal information be corrected if the information is incorrect. Within the framework of the stated purpose, you also have the right to supplement any incomplete personal data.

RIGHT TO DELETE
You can request deletion of personal data that we have saved about:

- The data are no longer necessary for the purposes for which they were collected
- You object to a balance of interests we have made based on legitimate interest and your reason for objection outweighs our legitimate interest
- You object to processing for direct marketing purposes- Personal data is processed illegally
- Personal data must be deleted in order to fulfill a legal obligation to which we are subject
- Personal information has been collected about a child (under 13 years of age) for whom you are the guardian and the collection has taken place in connection with an offer via eg social media

Please note that we may have the right to deny your request if there are legal obligations that prevent us from immediately deleting certain personal data. These obligations can come from Accounting and Tax legislation, Banking and Money Laundering legislation, but also from Consumer law legislation. It may also be that the processing is necessary for us to be able to establish, assert or defend legal claims. Should we be prevented from complying with a request for deletion, we will instead prevent the personal data from being used for purposes other than the purpose that prevents the requested deletion.

RIGHT TO LIMITATION
You have the right to request that our processing of your personal data be restricted. If you deny that the personal data we have is correct, you can request a limited processing for the time we need to ensure that the personal data is correct. If we no longer need the personal data for the stated purposes, but you do need them to be able to establish, assert or defend legal claims, you can request limited processing of the data from us. This means that you can request that we not delete your information.

If you have objected to a balance of interests of legitimate interest that we have made as a legal basis for a purpose, you can request limited processing for the time we need to check whether our legitimate interests outweigh your interests in having the data deleted.

If the processing has been restricted according to any of the above situations, we may only, in addition to the actual storage, process the data to establish, assert or defend legal claims, to protect someone else's rights or if you have given your consent.

RIGHT TO OBJECT TO CERTAIN TYPE OF TREATMENT
You always have the right to avoid direct marketing and to object to any processing of personal data based on a balance of interests.

JUSTIFIED INTEREST
In cases where we use a balance of interests as a legal basis for a purpose, you have the opportunity to object to the processing. In order to continue to process your personal data following such an objection, we need to be able to show a compelling justified reason for the processing in question that outweighs your interests, rights or freedoms. Otherwise, we may only process the data in order to establish, exercise or defend legal claims.

IMMEDIATE MARKETING (INCLUDING ANALYSIS PERFORMED FOR IMMEDIATE MARKETING PURPOSES)
You have the opportunity to object to your personal data being processed for direct marketing. The objection also includes the analyzes of personal data (so-called profiling) that are performed for direct marketing purposes. Direct marketing refers to all types of outreach marketing measures (eg via mail, e-mail and SMS). Marketing measures where you as a customer have actively chosen to use one of our services or otherwise contacted us to find out more about our services do not count as direct marketing (eg product recommendations or other functions and offers).

If you object to direct marketing, we will discontinue the processing of your personal data for that purpose as well as discontinue all types of direct marketing measures.

You have the opportunity to influence which channels we will use for mailings and personal offers. For example, you can choose to only receive offers from us via e-mail (newsletter), but not via SMS or vice versa. (E-mails and text messages in connection with confirmation of order and delivery shall not be considered marketing).

RIGHT TO DATA PORTABILITY
If our right to process your personal data is based either on your consent or fulfillment of an agreement with you, you have the right to request that the data concerning you and which you have provided to us be transferred to another personal data controller (so-called data portability). A prerequisite for data portability is that the transfer is technically possible and can take place automatically.

HANDLING OF PERSONAL NUMBERS
We will only process your social security number when it is clearly justified with regard to the purpose, necessary for secure identification or if there is some other notable reason. We always minimize the use of your social security number as much as possible.

DATA INSPECTION
The Data Inspectorate is responsible for monitoring the application of the legislation, and anyone who believes that a company handles personal data incorrectly can submit a complaint to the Data Inspectorate.

Read more about GDPR at the Swedish Data Inspectorate: GDPR- Data protection reform

CHANGES TO THIS INTEGRITY POLICY
We may make changes to our Privacy Policy. It is therefore important that you regularly check the latest version of this policy. When we make changes to the Privacy Policy, we publish the changes here. In the case of significant changes, we will also notify you in a clearer way, e.g. by sending you an email. If we change this Privacy Policy in a way that affects how we use your personal information, we will notify you of any action you may take as a result of these changes.

This privacy policy was last updated on 20/05/07