Privacy policy and Cookie information

How we use cookies and handle personal data

About this privacy policy

A core value for Greencarrier AB is respect and responsibility for the individual. Greencarrier AB is responsible to ensure that all personal data is processed in a correct manner and in accordance with applicable data protection legislation.

What personal data do we collect?

Personal data means all types of information which can, directly or indirectly, be associated with a living physical person. Within Greencarrier ABs, activities there may occur personal data relating to, e.g. given names and surnames, telephone numbers, addresses, postal codes, e-mail addresses, personal ID numbers, etc. (hereinafter collectively referred to as “Personal Data”).

When do we collect your personal data?

You visit the Greencarrier AB,s website;
You as a customer or customer representative, are provided with the service and give information about our products & services as well as upcoming events;
You as a potential customer or representative of a potential customer receive information from the Greencarrier AB;
During your employment at Greencarrier AB;
You applied for a position at Greencarrier AB;
You engaging with us on social media
You or we are in contact to take part in surveys, competitions or promotions;
Fulfill and follow up contractual obligations, ours as well as yours;
Fulfill legal obligations.

How do we use your personal data and what are our legal justifications for doing so?

Why do we process your data?	What categories of personal data do we process?	Legal ground
To deliver the content of our website correctly. To optimize the content of our website as well as its advertisement.	Browser type and IP-address version Operating system Date and time for you visit URL of the referring site The sub-websites The internet service provider of the accessing system Any other similar data and information that may be used in the event of attacks on our information technology systems.	Legitimate interest
To fulfill and follow up contractual obligations, ours as well as yours	Organizational data, such as company name, country, company address & phone number Contact information such as name, email address If you are a sole trader we also process financial data such as credit ratings, bank accounts and payments as well as contractual related data such as contract number, order number, invoices	Contractual obligation
To provide services and support	Contact information (such as name, email, phone number, address) Organizational data, such as company name, country, company address & phone number	Contractual obligation
Ensure the long-term viability of our information technology systems and website technology. To provide access to our IT-systems, (cargo tracking and boking)	Contact information (such as name, email, phone number, address) User-id Language settings in systems Logs of your usage of our systems	Legitimate interest
For security and legal reasons. Provide law enforcement authorities with the information necessary for criminal prosecution in case of a cyber-attack.	Contact information (such as name, email, phone number, address) User-id Logs of your usage of our systems	Legal obligation and in other cases (such as the detection of fraud) we will rely on our legitimate interests as a business to use your personal data in this way.
The Company informs its customers and business partners regularly by means of a newsletter about enterprise offers.	Contact information (such as name, email, phone number, address) Contact preferences	Legitimate interest with opt-out
Enable a contact possibility via the Company’s website.	Contact information (such as name, email, phone number, address)	Consent
Publish comments from customers on the websites blog and to enable subscription of such comments.	Contact information (such as name, email, phone number, address)	Consent
The Company does surveys, competitions or promotions	Contact information (such as name, email, phone number, address)	Consent
Staff administration	Contact information (such as name, email, phone number, address) Employment data (Employment number, User-ID, Photos) Financial information (salary, taxes, expenses, time reports, bank account number etc)	Contractual obligation
Safety in case of emergency	Contact information (such as name, email, phone number, address) Next of kin	Protection of your vital interest
To protect our employees and our company assets	Access logs from IT-systems and entry systems, IT-logs from applications and network services, Camera surveillance Security incident reports	Legitimate interest
Manage applications from job applicants.	Contact information (such as name, email, phone number, address, precious work experience, education) The process to review the application and communicate with the applicant.	Until the position has been appointed: fulfillment of agreement. After the position has been appointed: legitimate interest. Upon finalization of recruitment, the Personal Data is filed in order to be used for a possible appeal of recruitment, such as, for example, based on breaches of discrimination legislation. When it is no longer possible to appeal the recruitment, the information will be destroyed if the candidate has not consented to any further processing.

How long do we store data?

We keep your data only as long as necessary to:

fulfil our contractual obligations towards you
fulfil the purpose for which the data was collected
fulfill our legal obligations

Who do we share your personal data with?

As controller of your Personal Data, we may assign the processing listed above to a partner or supplier as set out in section Third party components. Such processing will not be made for other purposes than as described above. Some partners and suppliers may have parts of their businesses in countries outside of the EU/EEA (so-called Third Countries). Transfer of Personal Data will only be made to such countries which offer an adequate level of data protection, as decided by the EU Commission, or if the supplier has a legally binding and enforceable instrument which guarantees the safety of the Personal Data.

Your rights as a data subject

You have the right to:

Request information about which of your Personal Data we process and you can request a copy of these;
Have incorrect Personal Data rectified and you can under certain circumstances have your Personal Data erased;
Object against the processing of certain Personal Data and request that the processing of your Personal Data is limited;
Have your Personal Data transferred to another controller (right to data portability); and
Withdrawal your consent to Personal Data processing.

If you are unsatisfied with our processing of your Personal Data, report our processing to the Swedish Data Protection Authority, who is the supervising authority.

You may at any time via the contact information below, dpo@greencarrier.com obtain, erase or limit the processing of your Personal Data. However, please note that such limitation or deletion of your Personal Data may result in the Company not being able to provide the Service.

Protection of personal data

Greencarrier has undertaken appropriate technical and organizational measures in order to protect Personal Data against loss, abuse, unauthorized access, revealing, alteration and destruction. In order to ensure that the Personal Data is processed in a secure and confidential manner, Greencarrier AB ensures the obligations under Articles 32-36 of the GDPR are fulfilled. A detailed description of security measures is available on request.Greencarrier AB,s employees and suppliers are bound by confidentiality agreements and are obligated to follow Greencarrier AB,s rules for information and IT security, this Privacy policy and other internal rules and policies which regulate the processing of personal data.

Cookies

Greencarrier AB’s websites use cookies. Through the use of cookies, the Greencarrier AB can provide the users of our websites with more user-friendly services that would not be possible without the cookies.

If you deactivates the setting of cookies in the Internet browser used, not all functions of our website may be entirely usable.

Third party components

Google Analytics

On this website, the Company has integrated the component of Google Analytics (with the anonymizer function). Google Analytics is a web analytics service. For the web analytics through Google Analytics the controller uses the application “_gat. _anonymizeIp”. By means of this application the IP address of your Internet connection is abridged by Google and anonymised when accessing our websites from a Member State of the European Union or another Contracting State to the Agreement on the European Economic Area. Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.com/intl/en/policies/privacy/ and under http://www.google.com/analytics/terms/us.html.

You have the possibility to object the collection of data generated by Google Analytics, which is related to the use of our websites, as well as the processing of data by Google and have the possibility to prevent such use. To do this, you must download a browser add-on under the link https://tools.google.com/dlpage/gaoptout and install it.

Instagram

On this website, the Company has integrated components of the service Instagram. Instagram receives information via the Instagram component that you have visited our website provided that you are logged in at Instagram at the time of the call to our website. This occurs regardless of whether the person clicks on the Instagram button or not. Further information and the applicable data protection provisions of Instagram may be retrieved under https://help.instagram.com/155833707900388 and https://www.instagram.com/about/legal/privacy/.

LinkedIn

The Company has integrated components of the LinkedIn Corporation on this website. LinkedIn receives information via the LinkedIn component that you have visited our website, provided that you are logged in at LinkedIn at the time of the call-up to our website. This occurs regardless of whether you click on the LinkedIn button or not. The applicable privacy policy for LinkedIn is available under https://www.linkedin.com/legal/privacy-policy. The LinkedIn Cookie Policy is available under https://www.linkedin.com/legal/cookie-policy.

X (former Twitter)

On this website, the Company has integrated components of X. Twitter receives information via the X component that you have visited our website, provided that are logged in on X at the time of the call-up to our website. This occurs regardless of whether you click on the Twitter component or not. The applicable data protection provisions of Twitter may be accessed under https://x.com/privacy?lang=en.

YouTube

On this website, the Company has integrated components of YouTube. YouTube and Google will receive information through the YouTube component that you have visited our website, if you at the time of the call to our website is logged in on YouTube; this occurs regardless of whether the person clicks on a YouTube video or not. YouTube’s data protection provisions, available at https://www.google.com/intl/en/policies/privacy/, provide information about the collection, processing and use of personal data by YouTube and Google.

Amendments to the Privacy Policy

The Company retains the right to amend this Privacy Policy as the Company sees fit. The date for the latest amendment is indicated at the end of this Privacy Policy. You are therefore recommended to read this Privacy Policy regularly in order to be updated on any amendments.

If this Privacy Policy is substantially amended compared to when the Company obtained your consent, the Company will notify you of these amendments and, if necessary, obtain new consent to the Company’s processing of your Personal Data.

How do I contact you if I have questions?

If you have any questions regarding the Privacy Policy or any other questions regarding our processing, please feel free to contact us:

Greencarrier 556595-3469 AB
Torgny Segerstedtsgatan 80
42677 Västra Frölunda
Sweden
Phone: +4631853200
Email: dpo@greencarrier.com
Website: greencarrier.com

The Privacy Policy was adopted on 2018-09-07

GDPR Glossar

Data Controller – the entity that determines the purposes, conditions and means of the processing of personal data

Data Processor – the entity that processes data on behalf of the Data Controller

Data Protection Officer – an expert on data privacy who works independently to ensure that an entity is adhering to the policies and procedures set forth in the GDPR (more info here)

Data Subject – a natural person whose personal data is processed by a controller or processor

Personal Data – any information related to a natural person or ‘Data Subject’, that can be used to directly or indirectly identify the person

Processing – any operation performed on personal data, whether or not by automated means, including collection, use, recording, etc.

Right to be Forgotten – also known as Data Erasure, it entitles the data subject to have the data controller erase his/her personal data, cease further dissemination of the data, and potentially have third parties cease processing of the data

Right to Access – also known as Subject Access Right, it entitles the data subject to have access to and information about the personal data that a controller has concerning them

Subject Access Right – also known as the Right to Access, it entitles the data subject to have access to and information about the personal data that a controller has concerning them