The personal privacy of the individual and the security of his/her personal data is important to IRO AB who is responsible for ensuring that all personal data is processed correctly and in accordance with General Data Protection Regulation (GDPR).
What is a personal data?
Any information relating to an identified or identifiable person, wherein an identifiable physical person is a person that can be identified directly or indirectly with reference to an identifier such as a name, an identification number, a location assignment, an online identifier or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of the physical person.
Who applies to this policy?
What about the policy?
The policy also governs the handling of personal data for individuals with whom we have a business relationship with such as suppliers and customers.
Processing of personal data
All processing of personal data is on a legal basis.
Purposes of processing personal data
IRO AB only processes personal data to the extent that such processing is necessary or for other purposes as set out below.
We processes personal data about applicants, customers and suppliers’ employees in order to:
(a) be able to take advantage of our offer;
(b) administer our relationship with you;
(c) handle our obligations towards you or the affected individual, handle cases of alleged discrimination, deal with disputes and complaints; and
(d) enable future business relations.
IRO AB may process personal data of applicants.
Such personal data includes name, address, e-mail address, qualifications, skills, experience, employment history, responsibilities and other information necessary for your application.
IRO AB may process contacts’ personal data.
Such personal data includes name, address, e-mail address, position, responsibilities and other information necessary for the provision and follow-up of our offer, as well as to enable future business relations.
Aros electronics AB may process personal data of contact persons and other employees.
Such personal data consists, inter alia, of the information provided in the Customers section and other information necessary for the provision and follow-up of our offer, in order to ensure a good delivery of our offer and to enable future business relations.
Storage of personal data
How long personal data will be stored depends on the personal data involved and the purpose of its processing.
IRO AB does not store personal data for a longer period of time than is necessary for the purposes for which they were collected, unless otherwise provided by law.
The data that we register in our business system, for example, will be stored in the ongoing contractual relationship.
As a rule, we will store personal data that occurs in:
(a) Application for employment including CV for two (2) years.
(b) Customer and Supplier Agreement, and Business Event Information, during the term of agreement and thereafter for seven (7) years.
Protection of personal data
IRO AB has taken appropriate technical and organizational measures to protect personal data against loss, abuse, unauthorized access, disclosure, alteration and destruction.
To ensure that personal data is processed in a secure and confidential manner, we use data networks that are infringed by firewall and password protection, such as industry standards.
Sharing of personal data
We may disclose personal data if we are required by law, by court order or if disclosure is otherwise necessary to participate in a legal investigation.
Personal data incidents, such as data breach, should under certain circumstances be reported to the Datainspektionen within 72 hours.
Affected persons will be informed without delay.
As an individual you are entitled, once a calendar year after a written application submitted to IRO AB, to be informed of the personal data that we process about you, as well as information about the extent and purpose.
As an individual you also have the right to request at any time to block, erase or correct your personal data.