Privacy Statement

Last Updated: 2024-09-26

Redeploy ("we", "our", or "us") is committed to protecting the privacy and security of your personal data. This privacy statement explains how we collect, use, share, and protect your personal information, and describes your rights concerning this data under the General Data Protection Regulation (GDPR).

1. Identity and Contact Details of the Data Controller

If you have any questions, concerns, or requests regarding your personal information, please feel free to contact us using the details below:

Data Controller

For general inquiries about how we collect, use, or disclose your personal data, please contact our Data Controller:

Company Name: Redeploy

Address: Torsgatan 4, 111 23 Stockholm, Sweden

Email: privacy@redeploy.com

Data Protection Officer (DPO)

For specific questions related to data protection compliance, your rights under data protection laws, or to lodge a complaint, please reach out to our Data Protection Officer:

Email: dpo@redeploy.com

2. Purposes and Legal Basis for Data Processing

We process personal data in the context of our B2B activities for the following purposes:

To establish and manage business relationships

Legal Basis: Performance of a contract or legitimate interest (e.g., maintaining effective communication with clients and suppliers to facilitate business operations).

To communicate and provide information about our products services, updates, or marketing materials

Legal Basis: Legitimate interest (e.g., promoting our services and keeping clients informed) or consent (where required).

To provide services and fulfill our contractual obligations

Legal Basis: Performance of a contract.

To organize and manage events, webinars, and conferences

Legal Basis: Legitimate interest or consent (where required).
We may use your data to register you for events, manage participation, provide updates, and follow up with relevant information after the event.

To process usage data collected during interactions with website and/or services

Legal Basis: Legitimate interest (e.g., ensuring the security and functionality of our website and services) or consent (especially if cookies are involved).

To improve our services, business processes, customer relationships, and ensure security

Legal Basis: Legitimate interest (e.g., enhancing service quality, protecting against fraud, and ensuring network security).

To comply with legal and regulatory obligations

Legal Basis: Legal obligation.

3. Categories of Personal Data Collected

We may collect the following categories of personal data:

Contact information (e.g., name, email address, phone number)

Payment information (e.g., credit card details, billing address)

Communication data (e.g., correspondence, meeting notes, records of interactions)

Technical data (e.g., IP address, browser type, operating system)

Usage Data (e.g., details of your interactions with our website or services)

Event Participation Data (e.g., information provided when registering for events)

4. Recipients or Categories of Recipients of Personal Data

We may share your personal data with:

Service providers (e.g., payment processors, IT support, event organizers)

Affiliates or subsidiaries within our corporate group

Legal and regulatory authorities, if required by law

5. Data Transfers to Third Countries or International Organizations

We aim to ensure that all personal data we process is stored and transferred within the European Union (EU) or the European Economic Area (EEA). However, there may be circumstances where the services we utilize require transferring personal data to countries outside the EEA.

In such situations, we first endeavour to select services that store and process data within the EEA. If transferring data outside the EEA becomes necessary, we take appropriate measures to ensure that your personal information receives an adequate level of protection. This includes entering into Standard Contractual Clauses (SCCs) approved by the European Commission, which legally oblige the recipient to protect your data according to EU standards.

6. Retention Periods

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations. Below are the specific retention periods for different categories of personal data:

Contact Information (e.g., name, email address, phone number):

Retention Period: For the duration of our business relationship and up to 3 years after the last interaction for any follow-up issues.

Payment Information (e.g., credit card details, billing address):

Retention Period: In accordance with the Swedish Accounting Act (Bokföringslagen), we retain payment information for a minimum of 7 years after the end of the calendar year in which the financial year was closed.

Communication Data (e.g., correspondence, meeting notes, records of interactions):

Retention Period: 5 years from the date of the last communication to address any follow-up issues or legal claims.

Technical Data (e.g., IP address, browser type, operating system):

Retention Period: 12 months from the date of collection for security monitoring and system optimization.

Usage Data (e.g., details of your interactions with our website or services):

Retention Period: 3 years from the date of interaction to improve user experience and service offerings.

Event Participation Data:

Retention Period: 3 years after the event for follow-up communications and future event invitations, unless you opt out.

Legal and Compliance Data:

Retention Period: As long as required by applicable laws and regulations, which may be up to 10 years or more depending on the specific legal requirement.

After the applicable retention period has ended, we will securely delete or anonymize your personal data, unless we are required to retain it longer due to legal obligations (e.g., ongoing litigation or regulatory investigations).

Please note that if you withdraw your consent or exercise your right to erasure, we will delete your personal data earlier, unless we are legally required to retain it.

7. Provision of Personal Data: Mandatory or Voluntary

Providing personal data to us can be either a contractual requirement, a legal obligation, or voluntary, depending on the context. Below we outline when you are required to provide personal data and the consequences of failing to do so:

Mandatory Data for Contractual Obligations:

What We Collect: To enter into and perform contracts with you (or the organization you represent), we require certain personal data such as your name, contact information, and payment details.

Why It's Necessary: This information is essential for us to provide our products and services, process transactions, and communicate with you regarding your account or any issues that may arise.

Consequences of Not Providing: If you do not provide this mandatory information, we will be unable to enter into or fulfill the contract, and you will not be able to receive our services.

Legal Obligations:

What We Collect: We may be required by law to collect certain personal data for compliance purposes, such as tax identification numbers for invoicing or records for anti-money laundering regulations.

Why It's Necessary: Compliance with legal obligations is mandatory, and we must collect this data to adhere to laws and regulations applicable to our business operations.

Consequences of Not Providing: Failure to provide this information may result in our inability to provide services to you, as we cannot operate in violation of legal requirements.

Voluntary Data:

What We Collect: Additional information such as your preferences, feedback, or details provided when subscribing to newsletters, participating in surveys, or registering for events.

Why It's Necessary: While not essential for contractual purposes, this data helps us improve our services, tailor communications, and offer a more personalized experience.

Consequences of Not Providing: If you choose not to provide this voluntary information, you may not benefit from enhanced services, receive updates, or participate in certain activities. However, this will not affect your ability to use our core services.

Technical Data and Usage Data:

What We Collect: Data collected automatically when you use our website or services, such as IP address, browser type, and usage patterns.

Why It's Necessary: This information is crucial for the functionality of our website, security purposes, and to improve user experience.

Consequences of Not Providing: While you can adjust your browser settings to limit the collection of certain data (e.g., by disabling cookies), this may affect the performance of our website and limit your access to some features.

If you have any questions about why certain data is collected or whether providing specific information is mandatory, please contact us at privacy@redeploy.com. We are committed to being transparent and helping you make informed decisions about your personal data.

8. Your Rights as a Data Subject

You have the following rights concerning your personal data:

Right to access: You can request a copy of your personal data held by us.

Right to rectification: You can request corrections to any inaccurate or incomplete data.

Right to erasure: You can request the deletion of your personal data in certain circumstances.

Right to restrict processing: You can request restrictions on the processing of your data in specific situations.

Right to data portability: You can request to receive your data in a structured, commonly used format.

Right to object: You can object to the processing of your data based on legitimate interests or for direct marketing purposes.

Right not to be subject to automated decision-making: You have the right not to be subject to decisions based solely on automated processing, including profiling.

To exercise any of these rights, please contact us at privacy@redeploy.com. We will respond to your request within one month, as required by GDPR.

9. Right to Withdraw Consent

If we process your personal data based on your consent, you have the right to withdraw that consent at any time. Withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.

10. Right to Lodge a Complaint

If you believe that your personal data has been processed unlawfully, you have the right to lodge a complaint with a supervisory authority in your country of residence or where the alleged infringement took place. Contact details of the relevant supervisory authority in Sweden:

Swedish Data Protection Authority (Integritetsskyddsmyndigheten)

Address: Box 8114, 104 20 Stockholm, Sweden

Phone: +46 8 657 61 00

Webpage: https://www.imy.se/

11. Source of Personal Data

If we collect personal data about you from sources other than yourself, we will inform you of the source and whether it was publicly accessible.

12. Automated Decision-Making and Profiling

We do not use automated decision-making processes, including profiling, that produce legal or similarly significant effects on you in the context of B2B collaborations. If this changes, we will notify you and provide relevant information about the logic, significance, and consequences of such processing.

13. Cookies and Similar Technologies

We use cookies and similar tracking technologies to enhance your experience on our website, analyze website traffic, and understand where our visitors are coming from. Cookies are small text files stored on your device when you visit our website.

For detailed information about the cookies we use, the purposes for which we use them, and how you can manage your cookie preferences, please refer to our Cookie Policy.

By using our website, you consent to our use of cookies as described in our Cookie Policy. You can withdraw your consent at any time by adjusting your browser settings or changing your preferences through our cookie consent tool.

14. Security Measures

We are committed to safeguarding your personal data and have implemented a comprehensive range of technical and organizational security measures to protect it against unauthorized access, alteration, disclosure, or destruction. Our security practices include, but are not limited to:

Organizational Measures:

Confidentiality Agreements: Employees, contractors, and third-party service providers are required to sign confidentiality agreements to protect personal data and adhere to our security standards.

Incident Response Plan: We maintain a detailed incident response plan to address any data breaches or security incidents swiftly and effectively, including notification procedures to inform affected individuals and authorities as required by law.

Third-Party Assessments: We carefully assess and select third-party service providers based on their data security measures and certifications, such as ISO 27001 or SOC 2 compliance.

Physical Security:

Equipment Security: All company devices are protected with encryption, antivirus software, and are regularly updated to protect against malware and other security threats.

Ongoing Compliance and Improvement:

Monitoring and Logging: We continuously monitor our systems for suspicious activities and maintain logs for audit purposes.

Policy Reviews: Our security policies and procedures are reviewed and updated regularly to reflect changes in technology, regulatory requirements, and organizational processes.

Please be aware that while we strive to implement the highest standards of data security, no method of transmission over the internet or electronic storage is entirely secure. Therefore, we cannot guarantee absolute security. If you have any questions about the security of your personal data, please contact us at privacy@redeploy.com.

15. Children’s Privacy

Our services are not directed toward individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected personal data from a child under 16, we will take steps to delete such information promptly. If you believe that we might have any information from or about a child under 16, please contact us at privacy@redeploy.com.

16. Changes to the Privacy Statement

We may update this Privacy Statement from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. When we make significant changes, we will notify you by displaying a prominent banner on our website at www.redeploy.com. This banner will inform you of the updates and provide a link to the revised Privacy Statement. The date of the last update will always be visible at the top of this statement.

Cookie Consent

By clicking “Accept,” you agree to store cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. Please view our Cookie Policy for more information.

AcceptDeny

Ready to Power Up your Business?

Whether you are looking to begin your cloud journey, modernize existing applications, or leverage data and AI platforms, we can help you every step of the way.

Contact us
AboutServicesCase StudiesBlogCareers
info@redeploy.com
Torsgatan 4, 111 23 StockholmSödra Strandgatan 5, 553 20 JönköpingStampgatan 14, 411 01 Göteborg
Close menu

Let’s Connect!

I’m interested in…
Thank you!
Your submission has been sent
Oops! Something went wrong while submitting the form. Try mailing us at info@redeploy.com instead!

Cookie Consent

By clicking “Accept,” you agree to store cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. Please view our Cookie Policy for more information.

AcceptDeny