Privacy Policy

Version 3.0. Last updated 2020-11-05.

1. GENERAL INFORMATION

This document describes how Connectel AB, company registration number 556755-6559, having its registered address at Kungsängsgatan 14, 743 22 Uppsala (“Connectel” “we” or “us”) collects, uses and processes personal data (“Privacy Notice”) as a controller.

This Privacy Notice is applicable when you interact with us as a customer or potential customer, use our website (www.connectel.co), when we reach out to you with news and marketing, and when we perform our services.

We help our customers with providing service and support to their end-customers. When our customers provide customer services to their end-customers, our systems are used to keep track of the matters discussed between our customers and their end-customers.

This means that we process personal data on behalf of our customers, as processors. For more information about the personal data we process in this capacity, please see the privacy notice provided to you by the company you have interacted with.

Some of the personal data used within the service is processed by us as controllers, for instance to protect the services and to fulfil our obligations with regards to applicable laws. This is described in further detail below

All terms used in this Privacy Notice shall be interpreted in accordance with applicable data protection laws, which means the General Data Protection Regulation (Regulation no. 2016/679), as well as the national implementations and related national legislation. References to “Articles” means articles in the General Data Protection Regulation.

2. Personal data that we process

2.1 Administrating and developing our business and services

Personal data processed Purposes for the processing Legal ground
–    Your telephone number;–    name;–    email address;–    employer or company;–    the contents of emails sent; and–    recordings of phone calls to our helpdesk. When you are contacting us, we process this data to identify you as a customer in your communication with us and to deliver services in line with the agreement signed with your employer or company. Our legitimate interest to perform our obligations in the contract with your employer or company.Article 6.1(f)
We also process this data to invoice the services we are providing, to aid in case of service disruptions or other technical tasks requiring assistance.
Calls to our helpdesk are stored for 90 days, and emails to our helpdesk are stored for the duration of the customer relationship. The purpose for this is to keep track of and troubleshoot issues for our customers.
We process the data to provide technical support, where recordings of your call may be made if you consent to it. Your consent.Article 6.1(a)
We process the data for quality assurance purposes – we use aggregated or anonymous statistics to improve our helpdesk. After we have helped you, we send out links to surveys where you can rate our performance. Our legitimate interest to continually improve our services and operations.Article 6.1(f)
Personal data in invoices and similar accounting materials will be stored in accordance with applicable laws. Our legal obligations pursuant to inter alia the Swedish Bookkeeping Act (1999:1078).Article 6.1(c)
–    Information required to convey electronic messages (e.g. via IP-telephony). We process this data to correctly invoice the services we are providing. Our legitimate interest to measure how much our customers use our services, to bill them accordingly.Article 6.1(f)
For the users of our customers, we will process:–        names; and–        email addresses We process this data to send out information such as news and updates about the service, notifications regarding upcoming seminars, and similar, as we consider this to be relevant for the users of our services and their employers. Our legitimate interest to help users and customers to get the most out of our services.Article 6.1(f)

 

2.2 Technical data

Personal data processed Purposes for the processing Legal ground
–    Your telephone number;–    IP address; and–    email address. For us to protect our services and our customers when using services provided by Connectel, we may collect traffic data for analysis. We also monitor services to discover and stop abuse in our services, such as for instance system hijacking, password leaks, virus attacks, frauds, etc. Our legitimate interest to safeguard data within our services, and to protect our business.Article 6.1(f)With regards to telecommunications, we have a legal obligation to ensure adequate protection for our systems, pursuant to the Swedish Electronic Communications Act (2003:389).Article 6.1(c)
–    participants of communication,–    time of communication; and–    length of the communication–    The source of the communication (including IP-address);–    The destination of the communication;–    The time of the communication;–    The duration of the communication;–    The type of the communication; and–    The equipment used for the communication. We obtain data from our customers that we call “traffic data”, which is used for transmitting electronic data when the services are used. We are obliged by local law regulations as a telecommunications operator to store information on electronic communication regarding participants of communication, time of communication and length of the communication. Legal obligation pursuant to the Electronic Communications Act (2003:389).Article 6.1(c)
–    Information about the use of our services. All personal data used within our services may come to be anonymised or aggregated into anonymous statistics for us to use when we develop current and new products and services. Our legitimate interest to carry out product and service monitoring and development.Article 6.1(f)

 

2.3 Marketing activities

Personal data processed Purposes for the processing Legal ground
–    Your name;–    role/position;–    employer or company;–    email address;–    telephone number; and optionally–    your country. If you register to attend, or have attended, an event organised by Connectel we will collect personal information for marketing purposes and follow-up enquiries on the content of the event. Our legitimate interest to manage our relations with existing and potential customers.Article 6.1(f)
If you book a demo to learn more about our products and services, we will process your personal data to carry out the demo. When you request a demo, we process the personal data at your request prior to entering into a contract (i.e. an agreement about the demo).Article 6.1(b)
–    Information received during surveys. We may perform surveys for the purpose of collecting customer satisfaction data and event satisfactory scores. Our legitimate interests to improve our business and our events.Article 6.1(f)
–    Information collected from cookies, pixels and such tracking technologies. We use technical data collected from our website and other digital communications to improve our marketing efforts, by using for instance retargeting services. Our legitimate interests to improve our marketing and outreach.Article 6.1(f)

 

If we contact you on a customer’s behalf when we are performing a survey for the customer, we will inform you of that customer’s identity. The customer is the controller for the processing of personal data in relation to that survey, and will provide you with more information in their respective privacy notice.

3. RESPONDING TO LEGAL REQUESTS AND PREVENTING HARM

We may access, preserve and share your personal data in response to a legal request (like a search warrant, court order or a subpoena or the like), or when necessary to detect, prevent and address fraud and other illegal activity, to protect ourselves, you and other users, including as part of investigations.

4. DISCLOSURE OF PERSONAL DATA

The personal data will be shared with our service providers, listed below. Some of the recipients below are located outside the EU/EEA and we are therefore applying specified safeguards for the data transfers as set forth in the table below. You can acquire further information regarding the transfer by contacting us at privacy@connectel.se.

Recipient Purpose Location Safeguard
GetAccept AB For managing electronic signatures of agreements and managing the agreements. Sweden GetAccept DPA
Freshworks, Inc. Helpdesk for customers contacting us. USA Standard contractual clauses.
SproutVideo, LLC. Video hosting platform used for providing demos and webinars. USA Customer approves SproutVideo, LLC’s & Connectel AB’s processing when participating.
Hubspot Sales, Marketing and Leads platform. Global Standard contractual clauses.
LinkedIn Ireland Unlimited Company We use LinkedIn Sales Navigator for making sales over their platform. Global For transfers to other LinkedIn entities: standard contractual clauses.
Amazon Web Services EMEA SARL Data hosting. EU/USA depending on Customer location Standard contractual clauses.
Eviexa AB Customer Satisfaction Surveys. Germany Standard contractual clauses.
Google LLC We use Google Analytics on our site. This information includes data related to the device/browser, IP address and website/app activities, and is transmitted to a Google server in USA, where it will be stored and analysed by Google. The respective results will then be made available to us in anonymised form. Google may use the transmitted data for any of its own purposes, such as profiling and personalised advertising, and may link them with other user data such as your IP address, search history, personal accounts, usage data of other devices and any other data that Google has about you as a user. This may also allow Google to identify links to an existing Google account. Global Google Data privacy and security

 

If our customers direct us to send personal data to other third parties, the customer in question will provide you with the relevant information in their own privacy notice.

We may disclose personal data to authorities, such as law enforcement or data protection authorities, as may be mandatory under applicable laws. Traffic data may be disclosed pursuant to the Electronic Communications Act (2003:389), the Swedish Procedural Code (1942:749), or the Act on Collection of Information about Electronic Communication in the Law Enforcing authorities Surveillance Operations (2012:278).

When visiting our website (www.connectel.co) you may be directed to other websites where the personal data collected is not in our control. The privacy notice of the other website will govern the personal data obtained from you on that website.

5. COOKIES, PIXELS AND OTHER SYSTEM TECHNOLOGIES

We collect information by using technology such as cookies, pixels and tags (on your browser or device). For information about how we use this type of technologies, please see our Cookie Notice (available here https://www.connectel.co/legal/cookie-notice/).

6. RETENTION

We store personal data in accordance with the principles set out below.

6.1 Administration and business development

    • Data that is submitted and recorded when you sign an agreement with us remains stored if the agreement is in use and then stored an additional 120 months, which is as long as we archive the agreements.
    • Contact data for managing customer relationships are stored for the duration of the customer relationship. If there is a change of contact persons, we will delete the contact details that are no longer relevant without any undue delay.
    • Traffic data is stored for invoicing. For unpaid invoices these are stored until the invoice has been payed. As a telecommunications operator, we are also obliged by law to store traffic information for a minimum of 6 months and a maximum of 24 months.
    • Bookkeeping data is stored in accordance with applicable law, i.e. the current calendar year and seven years thereafter.
    • Calls recorded by our helpdesk is not stored for longer than 30 days.
    • Email and chat conversations with our helpdesk is stored for the duration of the relevant customer relation relationship and thereafter deleted.6.2.

6.2 Technical data

    • To protect our services against hijacking and fraud attempts, logs may store authentication requests and other system related data such as traffic data. Authentication requests containing sensitive information such as passwords are never stored without encryption. This data is stored for up to 30 days on a system level and until anonymized on a service level. Anonymisation timeframe is defined by the customer of our services.
    • Our retention obligations under applicable laws means that we will store the data for at least six months and not longer than 24 months.

6.3 Marketing data

    • Contact data from potential customers is deleted after 13 months unless a customer relationship is formed.
    • Survey data is stored until anonymised, which we do after 90 days.
    • Tracking information is not stored for longer than 13 months before it is deleted.

7. CHILDREN

Our services are not intended for persons under the age of eighteen (18). If you are a parent or guardian of a person under the age of 18 and you become aware of that the child has provided personal data to us without your consent, please contact privacy@connectel.se to exercise your access, rectification, erasure, limiting of processing and objection rights.

 8. YOUR RIGHTS

You have an absolute right to object to the processing of your personal data for direct marketing purposes.

You also have the right to withdraw your prior given consent. The withdrawal of your consent does not affect the lawfulness of the processing based on the consent before its withdrawal, and we may continue processing your personal data based on other legal grounds, except for direct marketing.

You have the right to request access and further information concerning the processing of your personal data, or request that we correct, rectify, complete, erase or restrict the processing of your personal data. You have the right to obtain a copy of the personal data that we process relating to you free of charge once (1) every calendar year. For any additional copies requested by you, we may charge a reasonable fee based on administrative costs.

If the processing is based on the legal grounds consent or fulfilment of contract you have the right to data portability. Data portability means that you can receive the personal data that you have provided to us, in a structured, commonly used and machine-readable format, and have the right to transfer such data to another data controllers.

9. CONTACT INFORMATION

To exercise your rights, or if you have any questions regarding our processing of your personal data, please contact us at: privacy@connectel.se or by post using the address set out in the beginning of this Privacy Notice. In your letter or email, please state your full name, and what other data may be necessary to identify you (such as the email address or telephone number you used to communicate with us). Note that you should sign the request to receive information of the processing of your personal data yourself.

If you have any complaints regarding our processing of your personal data, you may file a complaint to the competent data protection authority. You can find out more about the local data protection authorities under the following link http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm.

10. CHANGE OF CONTROL

If there is a change of control in our business, we may transfer your information to the new owners for them to continue to provide the Services. The new owners shall continue to comply with the commitments we have made in this Privacy Notice.

11. NOTICE OF CHANGES TO THE PRIVACY NOTICE

If we make changes to this Privacy Notice, we will notify you by announcing it on our webpage, or if it is more suitable, in an email to you. If your consent is required due to the changes, we will provide you additional prominent notice as appropriate under the circumstances and, ask for your consent in accordance with applicable law.