Last Updated: 2024-09-26
Redeploy ("we", "our", or "us") is committed to protecting the privacy and security of your personal data. This privacy statement explains how we collect, use, share, and protect your personal information, and describes your rights concerning this data under the General Data Protection Regulation (GDPR).
If you have any questions, concerns, or requests regarding your personal information, please feel free to contact us using the details below:
For general inquiries about how we collect, use, or disclose your personal data, please contact our Data Controller:
Company Name: Redeploy
Address: Torsgatan 4, 111 23 Stockholm, Sweden
Email: privacy@redeploy.com
For specific questions related to data protection compliance, your rights under data protection laws, or to lodge a complaint, please reach out to our Data Protection Officer:
Email: dpo@redeploy.com
We process personal data in the context of our B2B activities for the following purposes:
Legal Basis: Legitimate interest (e.g., promoting our services and keeping clients informed) or consent (where required).
To provide services and fulfill our contractual obligations
Legal Basis: Performance of a contract.
To organize and manage events, webinars, and conferences
Legal Basis: Legitimate interest or consent (where required).
We may use your data to register you for events, manage participation, provide updates, and follow up with relevant information after the event.
To process usage data collected during interactions with website and/or services
Legal Basis: Legitimate interest (e.g., ensuring the security and functionality of our website and services) or consent (especially if cookies are involved).
To improve our services, business processes, customer relationships, and ensure security
Legal Basis: Legitimate interest (e.g., enhancing service quality, protecting against fraud, and ensuring network security).
To comply with legal and regulatory obligations
Legal Basis: Legal obligation.
We may collect the following categories of personal data:
Contact information (e.g., name, email address, phone number)
Payment information (e.g., credit card details, billing address)
Communication data (e.g., correspondence, meeting notes, records of interactions)
Technical data (e.g., IP address, browser type, operating system)
Usage Data (e.g., details of your interactions with our website or services)
Event Participation Data (e.g., information provided when registering for events)
We may share your personal data with:
Service providers (e.g., payment processors, IT support, event organizers)
Affiliates or subsidiaries within our corporate group
Legal and regulatory authorities, if required by law
We aim to ensure that all personal data we process is stored and transferred within the European Union (EU) or the European Economic Area (EEA). However, there may be circumstances where the services we utilize require transferring personal data to countries outside the EEA.
In such situations, we first endeavour to select services that store and process data within the EEA. If transferring data outside the EEA becomes necessary, we take appropriate measures to ensure that your personal information receives an adequate level of protection. This includes entering into Standard Contractual Clauses (SCCs) approved by the European Commission, which legally oblige the recipient to protect your data according to EU standards.
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations. Below are the specific retention periods for different categories of personal data:
Contact Information (e.g., name, email address, phone number):
Retention Period: For the duration of our business relationship and up to 3 years after the last interaction for any follow-up issues.
Payment Information (e.g., credit card details, billing address):
Retention Period: In accordance with the Swedish Accounting Act (Bokföringslagen), we retain payment information for a minimum of 7 years after the end of the calendar year in which the financial year was closed.
Communication Data (e.g., correspondence, meeting notes, records of interactions):
Retention Period: 5 years from the date of the last communication to address any follow-up issues or legal claims.
Technical Data (e.g., IP address, browser type, operating system):
Retention Period: 12 months from the date of collection for security monitoring and system optimization.
Usage Data (e.g., details of your interactions with our website or services):
Retention Period: 3 years from the date of interaction to improve user experience and service offerings.
Event Participation Data:
Retention Period: 3 years after the event for follow-up communications and future event invitations, unless you opt out.
Legal and Compliance Data:
Retention Period: As long as required by applicable laws and regulations, which may be up to 10 years or more depending on the specific legal requirement.
After the applicable retention period has ended, we will securely delete or anonymize your personal data, unless we are required to retain it longer due to legal obligations (e.g., ongoing litigation or regulatory investigations).
Please note that if you withdraw your consent or exercise your right to erasure, we will delete your personal data earlier, unless we are legally required to retain it.
Providing personal data to us can be either a contractual requirement, a legal obligation, or voluntary, depending on the context. Below we outline when you are required to provide personal data and the consequences of failing to do so:
What We Collect: To enter into and perform contracts with you (or the organization you represent), we require certain personal data such as your name, contact information, and payment details.
Why It's Necessary: This information is essential for us to provide our products and services, process transactions, and communicate with you regarding your account or any issues that may arise.
Consequences of Not Providing: If you do not provide this mandatory information, we will be unable to enter into or fulfill the contract, and you will not be able to receive our services.
What We Collect: We may be required by law to collect certain personal data for compliance purposes, such as tax identification numbers for invoicing or records for anti-money laundering regulations.
Why It's Necessary: Compliance with legal obligations is mandatory, and we must collect this data to adhere to laws and regulations applicable to our business operations.
Consequences of Not Providing: Failure to provide this information may result in our inability to provide services to you, as we cannot operate in violation of legal requirements.
What We Collect: Additional information such as your preferences, feedback, or details provided when subscribing to newsletters, participating in surveys, or registering for events.
Why It's Necessary: While not essential for contractual purposes, this data helps us improve our services, tailor communications, and offer a more personalized experience.
Consequences of Not Providing: If you choose not to provide this voluntary information, you may not benefit from enhanced services, receive updates, or participate in certain activities. However, this will not affect your ability to use our core services.
What We Collect: Data collected automatically when you use our website or services, such as IP address, browser type, and usage patterns.
Why It's Necessary: This information is crucial for the functionality of our website, security purposes, and to improve user experience.
Consequences of Not Providing: While you can adjust your browser settings to limit the collection of certain data (e.g., by disabling cookies), this may affect the performance of our website and limit your access to some features.
If you have any questions about why certain data is collected or whether providing specific information is mandatory, please contact us at privacy@redeploy.com. We are committed to being transparent and helping you make informed decisions about your personal data.
You have the following rights concerning your personal data:
Right to access: You can request a copy of your personal data held by us.
Right to rectification: You can request corrections to any inaccurate or incomplete data.
Right to erasure: You can request the deletion of your personal data in certain circumstances.
Right to restrict processing: You can request restrictions on the processing of your data in specific situations.
Right to data portability: You can request to receive your data in a structured, commonly used format.
Right to object: You can object to the processing of your data based on legitimate interests or for direct marketing purposes.
Right not to be subject to automated decision-making: You have the right not to be subject to decisions based solely on automated processing, including profiling.
To exercise any of these rights, please contact us at privacy@redeploy.com. We will respond to your request within one month, as required by GDPR.
If we process your personal data based on your consent, you have the right to withdraw that consent at any time. Withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.
If you believe that your personal data has been processed unlawfully, you have the right to lodge a complaint with a supervisory authority in your country of residence or where the alleged infringement took place. Contact details of the relevant supervisory authority in Sweden:
Swedish Data Protection Authority (Integritetsskyddsmyndigheten)
Address: Box 8114, 104 20 Stockholm, Sweden
Phone: +46 8 657 61 00
Webpage: https://www.imy.se/
If we collect personal data about you from sources other than yourself, we will inform you of the source and whether it was publicly accessible.
We do not use automated decision-making processes, including profiling, that produce legal or similarly significant effects on you in the context of B2B collaborations. If this changes, we will notify you and provide relevant information about the logic, significance, and consequences of such processing.
We use cookies and similar tracking technologies to enhance your experience on our website, analyze website traffic, and understand where our visitors are coming from. Cookies are small text files stored on your device when you visit our website.
For detailed information about the cookies we use, the purposes for which we use them, and how you can manage your cookie preferences, please refer to our Cookie Policy.
By using our website, you consent to our use of cookies as described in our Cookie Policy. You can withdraw your consent at any time by adjusting your browser settings or changing your preferences through our cookie consent tool.
We are committed to safeguarding your personal data and have implemented a comprehensive range of technical and organizational security measures to protect it against unauthorized access, alteration, disclosure, or destruction. Our security practices include, but are not limited to:
Confidentiality Agreements: Employees, contractors, and third-party service providers are required to sign confidentiality agreements to protect personal data and adhere to our security standards.
Incident Response Plan: We maintain a detailed incident response plan to address any data breaches or security incidents swiftly and effectively, including notification procedures to inform affected individuals and authorities as required by law.
Third-Party Assessments: We carefully assess and select third-party service providers based on their data security measures and certifications, such as ISO 27001 or SOC 2 compliance.
Equipment Security: All company devices are protected with encryption, antivirus software, and are regularly updated to protect against malware and other security threats.
Monitoring and Logging: We continuously monitor our systems for suspicious activities and maintain logs for audit purposes.
Policy Reviews: Our security policies and procedures are reviewed and updated regularly to reflect changes in technology, regulatory requirements, and organizational processes.
Please be aware that while we strive to implement the highest standards of data security, no method of transmission over the internet or electronic storage is entirely secure. Therefore, we cannot guarantee absolute security. If you have any questions about the security of your personal data, please contact us at privacy@redeploy.com.
Our services are not directed toward individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected personal data from a child under 16, we will take steps to delete such information promptly. If you believe that we might have any information from or about a child under 16, please contact us at privacy@redeploy.com.
We may update this Privacy Statement from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. When we make significant changes, we will notify you by displaying a prominent banner on our website at www.redeploy.com. This banner will inform you of the updates and provide a link to the revised Privacy Statement. The date of the last update will always be visible at the top of this statement.