Controller of personal data
What is personal data and processing of personal data?
Personal data is information that can be directly or indirectly linked to a natural person. Examples of personal information are name, social security number, telephone number and e-mail address. Processing of personal data means all types of measures taken with personal data, such as registration, transfer, collection, storage and deletion.
Which personal data do we process?
Mondido processes different types of personal data depending on the nature of business for which you have registered with us. Below is a list of our different types of users.
If you have registered for a User account with Mondido, i.e. registered you or your company, as a User of our website; www.mondido.com, but does not submit any other information, we register your name and e-mail address. We need this information to run our business and to give you access to our services, which includes customer support; marketing so as to send out newsletters about updates (and other information about our business) and for you to be able to log in and manage your account with Mondido.
Owner or authorized representative
If, in addition to having registered a User account with us as above, also is an owner or authorized representative in a limited company, own company or an association, you have sent in a copy of ID, social security number, address, telephone number, professional title and ownership in the company, we will store these information as long as you are a customer with us. We store these to conduct our business, to fulfill our agreement with you and due to other legal obligations.
How and from where do we collect data?
In addition to the information that you provide to us or that we collect through your use of our services or through your correspondence with us, we may also collect information from a so-called third party. Information that we collect from third parties is, for example, credit information from credit information companies and address information from public registers. We also collect information about you by using cookies on our website.
What do we use the data for?
How long do we store your personal information?
We store your personal information for as long as is necessary to fulfill the purposes for which the information was collected. The information we collect from you and in connection with when you use our services is stored for different lengths of time depending on what purpose they are to be used for and what our legal obligations look like. It can e.g. be as long as required for us to be able to fulfill our responsibility towards you, to be able to handle complaint matters or as long as it takes to fulfill certain statutory storage periods regarding, for example accounting, investigation of money laundering, financing of terrorism, etc.
How do we protect your personal information?
We protect your information in accordance with the organizational and technical security measures and procedures that have been developed to ensure that your information is protected in such a way that unauthorized persons do not gain access. The processing of your data takes place according to internal control documents and only the administrators who have the right authorization have access to your personal data and can handle these.
Your rights as data subject
You as a data subject have by law several rights regarding the processing of your personal data. We list these below.
Right of access – by contacting us you get access to what information we have about you (we need to verify that you are the right recipient).
Right to correction – by contacting us you can request that incorrect information about you be corrected or deleted.
Right to be forgotten – if there is no longer a legal basis for storing your personal data, you have the right to have it deleted. It is important to remember that e.g. money laundering laws can prevent this (see section 9).
Right of limitation – you can ask us to limit our processing of your personal data if it is incorrect or illegal, but if you want us to keep certain data due to legal claims.
Right to object – you have the right to object to the processing of personal data that we do with the support of balancing of interests. In these cases, we may only continue the processing if we can show that there are compelling justifiable reasons for the processing or due to possible legal claims.
Right to object to direct marketing – if you have received direct marketing from us, you have the right to object to this and no longer receive marketing from us.
The right to data portability – personal data that you have registered with us for the fulfillment of an agreement or consent (see above), you can under certain conditions get out to use with another personal data controller.
Complaints – If you believe that your personal data is being processed in violation of applicable law, you have the right to submit a complaint to Mondido or to the Swedish Data Protection Authority.
Personal data manager: firstname.lastname@example.org
The Data Protection Authotity, see their website here.