As part of our business, we process personal data about you. Your privacy is important to us and we are keen to be transparent with what information about you we process and why. This privacy policy describes our processing of your data.

Interspiro AB, organization number 556569-3792 , BOX 2853, 187 28 Täby is the personal data controller for the processing of your personal data according to this privacy policy.

1. Personal data related to our marketing and offers as well as events, newsletters or other mailings

1.1 Interspiro AB is the personal data controller for the processing of your personal data.

1.2 We process information about you in the form of name, e-mail address, workplace and other contact information. We have collected this information from you in connection with (i) you or your employer becoming a customer with us, (ii) you otherwise came into contact with us, or (iii) your wish to receive invitations/newsletters from us.

1.3 We process your data to communicate with you and send you marketing information. This communication includes sending newsletters, information about Interspiro and our products and invitations to events.

We process the information based on a balance of interests and Interspiro's legitimate interest in maintaining a business relationship with you and communicating with you in your professional role regarding information that we believe may be of interest to you. If you want to know more about how we made this balancing of interests, you can contact us at privacy@interspiro.com.

1.4 Your data may be processed by other companies within the Interspiro Group. The data will be shared with IT providers who process data on our behalf, so-called personal data processors. For example, cloud service providers may gain access to your personal data.

1.5 You always have the option to unsubscribe from further mailings from us at any time. If you unregister, we will immediately stop processing your personal data for marketing purposes.

2. Personal data that is processed within the framework of our customer relations

2.1 Interspiro AB is the personal data controller for the processing of your personal data in connection with the assignment.

2.2 The personal data that we process has been provided to us by (i) you, (ii) your employer, or (iii) other parties connected to the customer relationship.

2.3 We process data linked to employees or contractors of legal entities and about customers who are physical persons. This information consists of name, title, employer, contact information, job description, financial information, invoicing information and payment information.

2.4 We process your data in order to be able to fulfill our obligations according to applicable customer agreements and to administer and develop the customer relationship.

For the following purposes, we process your personal data based on our legitimate interest:

• To be able to distribute important information about our products and their service and maintenance.
• In order to be able to distribute important safety information in connection with stop of usage / recalls / necessary service actions.
• To offer and implement relevant product and service training with personal certification
• To be able to administer and carry out invoicing and accounting.
• To be able to communicate via email, mail and telephone.
• To be able to administer and book meetings.
• To provide efficient and accurate documentation, administration and management of our customer relationships.
• To safeguard our rights in the event of legal claims against us.

We also process your personal data to fulfill applicable legal requirements according to the Accounting Act.

The provision of your personal data is not a statutory requirement, but is a requirement that is necessary when entering into an agreement with us. If you do not provide us with your personal data, we will not be able to fulfill our agreement or fulfill our obligations in relation to you or your employer.

2.5 Your data will be processed by other companies within the Interspiro Group. The data will be shared with IT providers who process data on our behalf, so-called personal data processors. For example, cloud service providers may gain access to your personal data.

2.6 Information that we process for the purpose of fulfilling our agreement with you or your employer is processed, as a starting point for the time necessary for us to be able to administer the contractual relationship, exercise our rights and fulfill our obligations in relation to you/your employer. In order to fulfill legal requirements or because we have the right to do so according to a balance of interests, we may, however, save your personal data for a longer period of time, e.g. to be able to reach out with important safety information related to products that may still be in use even after a customer relationship has ended.

Any information relating to payment and where processing is required according to the Accounting Act is processed for the limit according to the Accounting Act.

3. Transfer of personal data to third countries

As a general rule, we and our suppliers and partners only process your personal data within the EU/EEA. In cases where personal data is processed outside the EU/EEA, there is either a decision from the Commission that the third country in question ensures an adequate level of protection or suitable protective measures that ensure that your rights are protected.

4. Your rights

Below follows a description of the rights you have regarding our processing of your personal data. To exercise your rights, please contact us at privacy@interspiro.com.

4.1 Right to withdraw your consent and to object to processing

You can revoke all or part of the consent you have given at any time, with effect from the date of revocation.

You can object to your data being processed for marketing purposes. Then we will stop processing your data. You also have the right to object to your data being processed based on a balancing of interests.

4.2 Right of access

You have the right to request information about which personal data we process about you and how the data is processed. You also have the right to request a copy of the personal data processed by us.

4.3 Right to rectification

You have the right to have incorrect information corrected without undue delay and to ask us to supplement incomplete information by providing us with correct information.

4.4 Right to deletion (the right to be forgotten) and limitation

You have the right to request deletion of your personal data at any time, e.g. if the processing is no longer relevant in relation to the purpose for which the data was collected or if you object to processing based on a balancing of interests (marketing).

You can also request that certain processing of your data be restricted, e.g. if you object to the accuracy of the data.

4.5 Right to data portability

If you have given your consent or if we base the processing on an agreement with you, you have the right to obtain the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format and transfer these to another personal data controller or have our assistance in transferring the data to another personal data controller when this is technically possible.

4.6 Right to file a complaint

If you have any complaints regarding our processing of your personal data, you have the right to submit a complaint to the Swedish Data Protection Authority (www.imy.se).