1. What personal data and other customer data does Serious collect?
When processing personal data, Serious complies with all applicable data protection laws, in particular (but not limited to) Regulation (EU) 2016/679 of the European parliament and of the council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
2. How do we collect personal data and Customer Data?
You trust Serious with your personal data (“personal data”) and any data that you insert in connection with the Services that could be both personal data for your own use and other data (“Customer Data”) when you register to use the Services.
3. How does Serious process your personal data and Customer Data?
When Serious processes personal data and Customer Data, Serious complies with all applicable Data Protection Laws as well as any laws and regulations applicable to the Services provided to you.
4. Who has access to your personal data and Customer Data?
Serious processes your personal data and Customer Data confidentially. Serious does not sell your data or share it with third parties. In this regard “third parties” shall not entail Serious subcontractors who assist Serious in performing the Services to you. Serious has subcontractors such as cloud service providers, freight service providers and consultants including for IT-support and accounting. Serious ensures that its subcontractors are liable to keep your personal data and Customer Data confidential.
Serious may further reveal your personal data and Customer Data to third parties, including the competent supervisory authority, if it is required by applicable data protection laws or other applicable laws and regulations.
Serious ensures that access to your personal data and Customer Data is limited to the personnel who require such access to perform the Services and other processing activities which are compatible with providing the Services.
5. How long does Serious store personal data and Customer Data?
Personal data and Customer Data provided by you to Serious is retained for the duration of your subscription of the Services and for an additional period of three (3) months. Personal data and Customer Data will only be retained for a longer period if it is required by applicable laws, in example for accounting purposes.
6. Direct marketing and the right to opt-out
Serious may process your personal data to provide information regarding Serious Services to you as a customer. You have a right to object to Serious use of your personal data for direct marketing under applicable data protection laws. If you wish to object to direct marketing, please contact Serious by sending an e-mail to firstname.lastname@example.org.
7. Subject Access Requests
You are entitled to additional information regarding Serious processing of your personal data. In case you want to know what personal data Serious stores about you and how your personal data is processed, please contact Serious by sending an e-mail to email@example.com (“Subject Access Request”). If you make a Subject Access Request by electronic means, Serious will provide information regarding the processing of your personal data in a commonly used electronic form. The information provided by Serious shall include the following:
(1) the purposes of the processing;
(2) the categories of personal data concerned;
(3) the recipients or categories of recipients to whom your personal data has been or will be disclosed, in particular recipients in third countries or international organizations;
(4) where possible, the envisaged period for which your personal data will be stored;
(5) whether you are entitled to request rectification or erasure of personal data or restriction of processing of personal data or to object to the processing or to lodge a complaint with a supervisory authority;
(6) where personal data is not collected from you, available information as to the source of the personal data;
(7) the existence of automated decision-making, including profiling;
(8) where personal data is transferred to a third country or to an international organization, information regarding the appropriate safeguards relating to the transfer;
(9) a copy of the personal data undergoing processing.
8. Rights relating to the processing of personal data
You are entitled to request rectification or erasure of your personal data and to object to the processing of your personal data. You may also request restriction of processing of your personal data. Serious is required to update or rectify your personal data if the personal data Serious holds on you is inaccurate. Serious may also be required to delete your personal data, in example if you withdraw your consent to the processing or if the personal data Serious stores about you is incorrect or irrelevant.
Serious undertakes to respond to requests regarding rectification, erasure or restriction of personal data, as well as to objections to the processing of personal data, in a timely manner. When Serious receives a request, which is justified according to applicable data protection laws, Serious shall comply with the request and delete or rectify the personal data or restrict or cease the processing of such data.
Customer has the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and has the right to transmit such data to another controller without hindrance from the controller to which the personal data have been provided. Customer also have the right to lodge a complaint with a supervisory authority.
Requests under this paragraph shall be sent to Serious by e-mail to firstname.lastname@example.org.
9. Data security
Your privacy is important to Serious and Serious is committed to protecting your personal data and your Customer Data. Serious ensures that Serious will take all reasonable measures to protect your personal data and Customer Data and in particular to prevent unauthorized access to and loss of such data.
Serious wants to make you aware of the risks which are inherent in data transmissions over the Internet since such transmissions are never completely secure. When you provide your personal data and Customer data to Serious over the Internet you are responsible for the risks of unauthorized access and loss of data which the transmission entails.
Serious has implemented and maintains a number of technical and organizational security measures to keep your personal data and Customer Data safe when stored by Serious. Such security measures include firewalls and antivirus monitoring.
10. Customer responsibility
As a customer it is important that you are aware of your responsibility regarding the use of the Services. You are responsible for protecting and updating your account information to prevent unauthorized access to your account.
Last updated: 2019-05-08
Serious Holding AB, reg.nr. 556864–2739
802 67 Gävle