Dynamo values personal integrity and the protection of personal data. This means that Dynamo strives to only process personal data when necessary for specifically set goals. With the new General Data Protection Regulation (GDPR), the protection of individual’s personal data will strengthen further. For Dynamo, this means that we have reviewed and reworked our routines to ensure that individual's rights are protected. In the text below, you will find an overview of how Dynamo processes personal data, what rights you have if we process personal data about you as well as information about where to turn if you have additional questions.
Dyn4m0 Consulting AB, org. nr. 556787-2790, is the responsible data controller for the company’s processing of personal data.
In some cases, data processors may be used, i.e. companies that processes personal data on Dynamos behalf. When a data processor is being used, Dynamo will always before processing ensure that there is a set agreement between the parties that regulates how the data is to be processed.
Where is data being processed?
Dynamo strives to process all personal data within the EU/EEA and that all Dynamos own IT systems are located in Sweden.
In cases where personal data is processed outside the EU/EEA, Dynamo will take necessary steps to ensure the level of protection meets the requirements set in GDPR and relevant national legislation. This means that actions such as using the EU Standard contractual clauses ("SCCs") and working through recognized organizations such as "Privacy Shield”.
Dynamo protects personal data in multiple ways such as, antivirus protection, firewalls, minimizing data access and through employee guidelines. In addition, encryption is used to protect sensitive data. Dynamo is constantly working to maintain and improve the security of our IT environment.
How long do we save personal data?
Dynamo never saves your personal data longer than what is necessary for each purpose. See the specified purposes for information how long personal data is stored in regards to that purpose.
Data subject rights
Right of access
Dynamo strive to always be transparent with how we process personal data. If you want a deeper understanding of what personal data Dynamo is processing regarding you, please contact us for a copy sheet of your personal data as well as other supplementary information.
Right to rectification
In case any of your personal data that is being processed at Dynamo is inaccurate or incomplete, you always have the right to request that we correct or supplement the data.
Right to be forgotten
You have the right to request that we stop processing personal data concerning you in the following situations:
- the personal data is no longer necessary in relation to the purpose for which they were collected or processed;
- the process was based on consent and you withdraw your previously given consent;
- the data is being processed based on legitimate interests pursued by the controller and you object to those interests; or
- the data is being unlawfully processed.
Dynamo has the right to deny your request if there are legal obligations that prevent us from immediately deleting your personal data. These obligations may be such as, mandatory legislation. It may also be that the treatment is necessary for us to determine, enforce or defend legal claims. Should we be prevented from deleting the personal data, we will instead block it from being used for purposes other than those preventing the requested removal.
Right to restriction of processing
You are entitled to request that we limit our processing of your personal data. If you have an objection to the accuracy of the personal data we provide, you may request that the process is limited until Dynamo confirms the accuracy of the data. If we no longer need your personal information for the specified purposes, but you need them to determine, enforce or defend legal claims, you may request limited processing from Dynamo, meaning you can request that we do not delete your information during that period.
If you have objected to a process based on legitimate interest, you may request that treatment be limited during the time need to check if Dynamos legitimate interests outweigh your interest of getting the data deleted. If a process has been limited in accordance with any of the above situations, we may only process the data to determine, enforce or defend legal claims, to protect someone else's rights or if you have given your consent.
Right to data portability
If Dynamos right to process your personal data is based on consent or performance of a contract with you, you are entitled to request the information related to you, which you have provided to us, is transferred to another data controller (so-called data portability). A prerequisite for data portability is that the transfer is technically possible and can be done automatically.
If you have any questions regarding Dynamos processing of personal data, please contact us at firstname.lastname@example.org