Privacy policy

Our goal is for you to feel safe when we process your personal data. We therefore take all reasonable measures to ensure that your personal information is protected. The processing of personal data is carried out in accordance with the General Data Protection Regulation (GDPR).

In this Privacy Policy, we explain in more detail how we process the personal data that has been registered. R-Företagen AB, reg. no. 556093-1098, is the data controller for the personal data processed. In this policy, the terms "R-Företagen", "we", "us", and "our" refer to the company as a whole. Contact information can be found under the section "Contact Information" below.

When is personal data processed?

R-Företagen processes your personal data when you:

  • enter into an agreement,
  • initiate a business relationship,
  • use the contact form on our website,
  • register for seminars and conferences,
  • participate in surveys or periodic assessments,
  • or otherwise seek contact with us.

Information about your use of the website—such as IP address, visited URL, time of visit, user agent (browser, operating system), and referring URL—is saved when you visit our web pages.

Personal data we process

Examples of data collected:

  • Last name
  • First name
  • Email address
  • Telephone number (landline / mobile)
  • Company name
  • Company address
  • Username
  • Password
  • Information regarding bookings for seminars or conferences
  • Information regarding bookings for phone or video meetings
  • Website usage data (IP address, visited URL, time of visit, user agent, referring URL)
  • Communication preferences
  • Log history
  • Incoming and outgoing correspondence details

When a representative of a company enters into a license agreement, general company details, visiting address, billing address, mailing address, and the contact person's name, phone number, and email address are registered. Additional contacts may also be registered upon request. This data is processed with a legal basis to fulfill a contract and, where applicable, to meet legal obligations such as accounting requirements.

For event registrations, first name, last name, company affiliation, and email address are recorded. This data is processed based on legitimate interest.

For periodic assessments conducted with licensed companies, participants’ email addresses and mobile numbers are processed and deleted immediately after the assessment. This processing is based on contractual obligation.

In all other cases, only the information you choose to provide is registered.

Our policy is to avoid collecting national ID numbers or sensitive personal data (e.g., race or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, health, or sexual orientation). If you voluntarily submit such data—e.g., specifying dietary needs due to allergies before a seminar—we assume you consent to this information being registered. Unnecessary personal data will be deleted immediately; otherwise, it is deleted once its purpose has been fulfilled.

Purpose of processing personal data

We process your personal data for various purposes. Mainly, we process it to:

  • Fulfill our agreement with you (e.g., periodic assessments, invoicing, consultation services)
  • Communicate with you via mail, phone, and digital channels
  • Provide general customer service, such as answering questions and correcting data
  • Provide information and targeted marketing by post, email, SMS/MMS, and phone regarding R-Företagen’s services
  • Manage the customer relationship and deliver our services
  • Evaluate suitability for R-licensing (e.g., credit checks)
  • Improve our customer offering (e.g., product and service development)
  • Comply with applicable laws (e.g., accounting regulations)

How is information stored?

To fulfill our assignments and services, we store your data in our CRM system (used for managing license holders and contacts). Data may also be stored in emails.

How long do we retain data?

We retain your personal data as long as necessary to fulfill our obligations or the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law (e.g., for accounting purposes).

Contact information for license holders is deleted when the license agreement ends, except where legal retention is required.

Other data is routinely deleted once its purpose has been fulfilled.

You may also request that your data be deleted. However, R-Företagen may still be legally obligated to retain certain data. Deletion requests must be submitted in writing to R-Företagen. (See Contact Information)

Supplementation/Updating

To maintain accurate records and good customer service, R-Företagen may supplement or update your personal data using information from public and private sources. This includes name, address, phone number, and email.

Disclosure to third parties

We generally do not share personal data with third parties. However, R-Företagen may use subcontractors to deliver all or parts of our services. These subcontractors may process personal data on behalf of R-Företagen.

Suppliers/Subcontractors:
We may share your data with suppliers or subcontractors, e.g., for printing and distribution services.

Payment and Credit Providers:
Your data may be shared with financial entities to manage invoicing.

Authorities:
We may disclose data to authorities such as the Tax Agency or Police due to legal requirements or with your consent.

R-Företagen typically does not transfer personal data outside the EU/EEA. If a subcontractor is based outside the EU/EEA, data transfer may occur only if appropriate safeguards are in place, such as binding corporate rules or standard contractual clauses.

Your personal data will never be sold or transferred to third parties for advertising purposes.

Visitor identification – logs

R-Företagen may collect IP address, visited URL, timestamp, user agent, and referring URL for system administration and usage analysis. IP addresses are not usually linked to personally identifiable data. This means visits are logged anonymously. However, we may use IP addresses to identify users when necessary to enforce our terms or protect our service or other users.

Social Media

You can follow us on platforms like Facebook, LinkedIn, and Instagram. We are only responsible for personal data that we post or can control on these platforms.

Links

R-Företagen’s websites may contain links to external sites, such as R-licensed company websites. This policy does not apply to those external sites. R-Företagen is not responsible for the content on those websites.

Children

Our services are not intended for children. We do not knowingly collect or market to individuals under 13 years of age.

Security

R-Företagen will implement appropriate technical, physical, legal, and organizational measures in accordance with applicable privacy and data security laws. While no technology system is entirely secure, we work actively to prevent data breaches or misuse.

What rights do you have?

Under the GDPR, you have the following rights regarding your personal data:

Access to your data (data subject access request)

You have the right to request access to your personal data. To prevent unauthorized disclosure, we require your name, address, and email. This request must be submitted in writing and signed by you. (See Contact Information)

Rectification of data

If any data is incorrect, we will correct it as soon as we are made aware. You may contact R-Företagen to request corrections.

Erasure of data

You may request erasure of your personal data, unless we are legally required to retain it.

Restriction of processing

You may object to processing based on legitimate interest or for marketing purposes. If you object to marketing, your data will no longer be processed for that purpose.

Data portability

You may request your data in a transferable format for use elsewhere. This applies only to data you have provided to us.

Supervisory authority

If you believe R-Företagen has not complied with your rights, you may file a complaint with the Swedish Authority for Privacy Protection (IMY):
https://www.imy.se

Data Processor

When R-Företagen processes personal data as a data processor on behalf of a third party, we follow the instructions of the data controller. In such cases, we cannot guarantee processing will align with this policy, but we always ensure compliance with applicable laws and, where possible, this policy.

Changes to this policy

This Privacy Policy may be updated at any time. We recommend reviewing it regularly.

Last updated: 2022-03-23

Contact Information

R-Företagen
Box 4039
600 04 Norrköping

E-post: info@rforetagen.se
Org nr: 556093-1098