GDPR - Personal Data Policy
1. Purpose of the Personal Data Policy
2.1 Personal data means information of any kind that can be used to identify a natural person, including, but not limited to, name, social security number, address and contact information, as well as information about inquiries with CAIDEMA in connection with sales and customer dialogue.
3. What personal data does CAIDEMA collect
3.1 CAIDEMA uses personal data to conduct consultancy and consultancy activities, including in order to carry out the actions and actions necessary to make tenders, enter into agreements and carry out general consultancy activities. Of personal data, CAIDEMA usually collects only name, address and telephone number. CAIDEMA does not collect special personal information, including health and social information.
3.2 CAIDEMA may only collect personal data to the necessary and justified extent.
4. How to collect and record CAIDEMA personal data
4.1 CAIDEMA collects personal data when registering with CAIDEMA, including when the company website is used by contact.
4.2 CAIDEMA may also collect relevant personal data from partners.
4.3 When personal data is registered, the data subject will receive information on:
the identity of the data controller
the purpose that justifies the processing of personal data
the legal basis for collecting personal data
information on any recipients of the information
the criteria for how long personal data is maintained
other rights under the Personal Data Regulation, including 1) the right to access 2) the right to correct factual information 3) the right to "be forgotten" 4) the right to require data processing 5) the right to object to direct marketing 6 ) ban on profiling 7) the right to data portability.
5. Disclosure of personal data
5.1 CAIDEMA may not disclose or sell personal data to third parties. However, CAIDEMA may disclose personal data in the following cases:
5.2 CAIDEMA has obtained the necessary written consent for this;
5.3 CAIDEMA needs to disclose personal data in order to provide the product or service requested by the data subject;
5.4 If CAIDEMA is to respond to subpoenas etc. or take other legal action;
5.6 CAIDEMA is required to disclose personal data under the law, e.g. to authority.
7. Editing and deleting personal data
7.1 Upon request, the data subject has the right to have incorrect personal data edited and deleted if the conditions for deletion are met, including that the personal data in question is no longer necessary to fulfil the purpose for which they were collected.
7.2 CAIDEMA may not delete personal data until CAIDEMA is entitled to do so under applicable law, including the Accounting Act, which requires that accounting information be kept for 5 years.
8.1 CAIDEMA shall at all times, at the request of the data subject, disclose what information CAIDEMA has registered about the person, for what purpose and to whom personal data can be disclosed and when they are deleted.