Privacy policy
Magnus Thor AB
1. Principles
Magnus Thor AB safeguards your personal privacy and aims to ensure you feel secure when you entrust us with your personal data.
We want you to be informed about how and why we process your personal data, who may access it and under what conditions, and how you can exercise your rights.
This policy is based on current data protection legislation and clarifies how we work to protect your rights and privacy.
2. Personal Data Responsibility
The company is the data controller, meaning we are responsible for how your personal data is processed and for ensuring that your rights are upheld.
We hire, or may hire, subcontractors to process personal data on our behalf, known as data processors. We are obligated to ensure that our data processors handle personal data in compliance with data protection legislation and this policy. This is ensured through data processing agreements or similar arrangements.
In some cases, we process your personal data for purposes determined by the company, while our suppliers of marketing and statistics may process the same personal data for other purposes they have defined independently. This means that the company and each respective supplier are separately responsible for the personal data. The following contracted suppliers process your personal data based on their own purposes:
- Google LLC and its subsidiaries. See Google’s privacy policy for information on their processing of personal data.
- Linkedin Corporation and its subsidiaries. See Linkedin’s privacy policy for information on their processing of personal data.
- Meta Platforms Ireland Limited (formerly Facebook Ireland Limited). See Meta’s privacy policy for information on their processing of personal data.
3. Processing of personal data
3.1 How we obtain access to your personal data
We obtain access to your personal data when you provide it directly to us, for instance, when you [contact us as a customer or representative of a customer, supplier, or similar, when you use our service, or when you visit our website]. Additionally, we may obtain access to your personal data through [public records].
3.2 Purpose and legal basis for our processing of your personal data
We may process the following categories of personal data about you for the purposes and on the legal bases outlined below:
| Category of personal data | Purpose | Legal basis |
|---|---|---|
| Name, contact details, employer/contractor | To fulfill our agreement with you concerning the use or purchase of a service or goods, to communicate with you regarding the agreed service or goods, to administer our obligations in relation to the agreed service or goods, or to safeguard our rights. | Contract. Legitimate interest. |
| Name, contact details, employer/contractor, and other personal data you provide to us | To manage interactions when you contact customer service or provide us with personal data. | Legitimate interest. |
| IP address (in pseudonymised state) | To process the information created by the cookies that are set when you visit our website. See our cookie policy for more information | Legitimate interest. Consent. |
| Name, contact details, employer/contractor, and special dietary requirements | To communicate, manage, and follow up on your participation in events that we organize. | Legitimate interest. |
| Name, contact details, employer/contractor, | To communicate with you and to send you marketing materials. | Legitimate interest. Consent. |
| Name, contact details, CV | To collect, review, and assess your application for employment, administer interviews, and evaluate various candidates. To safeguard our rights and to retain your information for potential future employment. | Legitimate interest. Legal obligation. Consent. |
3.3 Who can access your personal data
[For example, In cases where we have explicit agreement with you or where you have given us your consent, we may disclose your personal data to an external third party.
We may also disclose your personal data when necessary to protect our legal interests, such as if our service has been misused, or if a disclosure is required by law or regulation, for instance, for accounting purposes).
Furthermore, we may disclose your personal data to companies and suppliers we have contracted to provide IT systems or manage our marketing. We are responsible for the processing of your personal data carried out by our data processors, as outlined in section 2.
Please contact us if you would like to know which data processors handle your personal data, or which other recipients may have access to your personal data.]
3.4 Transfer of personal data to third countries
Your personal data is primarily processed within the EU/EEA area. If we engage data processors that may transfer your personal data to countries outside the EU/EEA, we will implement security measures in accordance with applicable legal requirements to ensure that the protection of your personal privacy is maintained in the highest possible standard. If you would like to know more about the security measures we have taken, please feel free to contact us.
3.5 How we protect your personal data
Within the Company, there are clear procedures and protocols in place to ensure that your personal data is handled securely. Our security systems are designed with your privacy in mind, and we have data processing agreements with our IT security and marketing providers to ensure the secure processing of your personal data.
3.6 How long we retain your personal data
Your personal data is processed as long as necessary in relation to the purposes that underline our processing of personal data. Different types of personal data will therefore be retained for varying lengths of time. Please feel free to contact us if you would like to know how and when your personal data is disposed of, deleted, or de-identified.
4. Your rights
When we collect personal data about you, we will inform you about how we obtained it, what we will use it for, what rights you have under data protection legislation, and how you can exercise these rights. You will also be informed about who is responsible for the processing of personal data and how you can contact us if you have any questions or wish to submit a request regarding our processing of your personal data and/or your rights.
4.1 Correction, deletion, limitation, or objection to our processing of your personal data
You have the right to request that we correct or delete the personal data we process about you. You also have the right to request that the processing of your personal data be restricted or to object to such processing. If you submit such a request, we will assess how we can best accommodate your request.
You have the right to revoke all or part of any consent given for the processing of personal data at any time, effective from the moment the revocation is made.
Additionally, you have the right to object at any time to the processing of your personal data for direct marketing purposes.
4.2 Request for access to personal data
You have the right to request an extract from our records regarding whether we process personal data about you. In such an extract, you will be informed about which personal data about you and how we process it.
4.3 Data Portability
You also have the right to request the transfer of your personal data from us and to receive a copy in a structured, machine-readable format of the personal data that we process about you. You can exercise this right for the personal data that you have provided to us.
4.4 Profiling
You have the right to object to any analysis of your personal data (so-called profiling) that we may conduct for the purpose of targeting marketing directly to you.
4.5 Regulatory Authority
The Swedish Authority for Privacy Agency is the supervisory authority for the processing of personal data and data protection in Sweden. You have the right to submit a complaint regarding our processing of personal data to the Swedish Authority for Privacy Protection. Contact details for the Swedish Authority for Privacy Protection can be found at www.imy.se.
5. Contact us
If you wish to exercise your rights as stated above, or if you would like to contact us regarding our processing of your personal data, you can do so by reaching out to us as follows:
Magnus Thor AB, 556307-7352
Lena-Ängeby 87,
743 91 Storvreta
This privacy policy was last updated on September 14, 2023.