Privacy Policy

Processing of Your Personal Data

FM Mattsson AB, registration number 556051-0207, Östnorsvägen 95, 792 27 Mora, (“FM Mattsson Group,” “the Company,” or “we”) has a policy to take all necessary measures to ensure that personal data concerning visitors to our website as well as our customers, suppliers, and/or their contact persons are processed by us in a legal, correct, and open manner.

When you use our various services, we collect your personal data. The Company is thus the data controller for your personal data and processes them in accordance with this privacy policy. The privacy policy explains and clarifies your rights in relation to the Company regarding the processing of your personal data and how you can exercise your rights.

We are committed to protecting your personal data and are eager to ensure that your personal data are always processed securely. We comply with all applicable laws and regulations designed to protect the privacy of individuals, including legislation and regulations that implement or supplement the EU Data Protection Directive 95/46/EC, the EU Directive on Privacy and Electronic Communications 2002/58/EC, and the EU General Data Protection Regulation 2016/679 (GDPR), as well as any amendments, additions, or regulations that replace such laws, regulations, provisions, and rules.

FM Mattsson Group wants to assure you that we take appropriate and reasonable physical, technical, and organizational security measures in relation to the amount and type of personal data to protect your rights and freedoms with respect to data protection. Only authorized personnel within FM Mattsson Group and authorized external suppliers working on behalf of FM Mattsson Group have access to your personal data.

It is important that you read and understand this privacy policy before using FM Mattsson Group’s services. If you do not agree with the privacy policy, you should not use our services.

What Personal Data Do We Collect and Where From?

If you visit our website or make purchases of our products or services, you may provide information to us that is considered personal data under applicable data protection laws.

The types of personal data we collect may, depending on the context, include:

• Name and contact information, including address, mobile number, and email address.
• Personal identification number and payment information.
• Title, position, and/or other work-related information.
• User-generated information that you actively choose to share with us through our websites.

Collection of your personal data may occur from the following sources:

• Directly from you as a registered individual, for example, when you apply for a position within FM Mattsson Group, contact our customer service, or otherwise get in touch with us through our websites.
• From the company you represent, for example, when your company places orders or makes purchases of our products or services, and you are listed as the company’s contact person.
• From third parties, such as authorities, organizations, or companies that conduct credit checks.

Why Do We Process Your Personal Data?

If you have ordered a product or service, you have entered into an agreement with FM Mattsson Group, and we process your personal data in order to administer your purchase or order and to be able to deliver the service or product you have ordered.

In addition to processing your personal data to fulfill the purchase of goods and services, we may use your personal data for other purposes and with the support of other legal grounds, as specified below.

The Legal Basis for Our Processing

Performance of a Contract

In cases where you purchase a product or service from us, we retain your information in order to fulfill our contract with you. The same applies if you are listed as a contact person for one of our suppliers or customers, where your information may be needed for the execution of our contract with the customer or supplier.

Legitimate Interest

In the event you have been in contact with us regarding our products or services without entering into an agreement, or if you have registered as a member for our digital services, we retain your data to satisfy our legitimate interest in being able to contact you in the future with offers and information about our products or services, updates, available training, and more.

Compliance with Legal Obligations

In addition to the legal grounds mentioned above, your personal data may also be processed by us to fulfill our legal obligations, such as those related to accounting or labor law.

Storage of Personal Data

The Company takes all reasonable measures to ensure that your personal data are processed and stored securely. We aim to minimize the data we store, and your personal data are never stored longer than allowed by applicable law and to achieve the purposes stated above. Your personal data are processed by us for the following periods:

Member

If you have registered for any of the Company’s digital services, your personal data will be retained until you unregister.

Customer/Supplier/Contact Person

Personal data provided in connection with the ordering of goods and services (name, personal identification number, address, phone number, email, payment, and delivery information) are retained for as long as necessary for the Company to fulfill its contract with you (including meeting delivery or warranty commitments) and for a period of 36 months thereafter. The same applies if we retain your data because you are listed as a contact person for one of our customers or suppliers.

Legal Obligation

Data kept to fulfill a legal obligation will be stored in accordance with what is prescribed by law.

Who Processes – Transfer of Personal Data

We use various IT services and systems in our operations.

Internally, we handle personal data in our business systems. Some of these systems store information in hardware installed locally with us, and only our personnel have access to the data. Some data is stored with our suppliers or in cloud solutions, which means we transfer personal data to the supplier, in which case the supplier is our data processor who processes the data on our behalf and solely according to our instructions.

Information about our customers and suppliers is an essential part of the Company’s business, and we do not sell this information to anyone else. Information may be shared with our partners. We always exercise the utmost caution when transferring your personal data, and your personal data are never disclosed without the support of this privacy policy and appropriate security measures are taken.

Your personal data may also be disclosed to relevant authorities for the Company to fulfill its legal obligations.

Transfer of Personal Data to Third Countries

We always aim for your personal data to be processed primarily within the EU/EEA. In some cases, such as when we share data with a data processor, data may be stored in a country outside the EU/EEA. In these cases, the level of protection is guaranteed either through decisions by the EU Commission that the country in question ensures an adequate level of protection or through the use of appropriate safeguards, such as approved codes of conduct in the recipient country, EU model clauses, or Privacy Shield.

Your Rights

You have the right to request information about what personal data we have registered about you and how it is used, by submitting a written request to us at the contact information below. You also have the right to request that your personal data be corrected if it is incorrect, incomplete, or misleading by contacting the Company. To protect your privacy and personal data, we may require you to identify yourself in connection with our assistance.

In accordance with applicable data protection legislation, you also have the right to request the deletion of your personal data or that the processing of your personal data be restricted in certain cases. You also have the right to object to the processing of your personal data in some cases and to request the transfer of your personal data in electronic format.

You can file a complaint with the Swedish Data Protection Authority (Datainspektionen) if you believe that FM Mattsson Group’s processing of your personal data is not in compliance with applicable law.

Cookies

On the Company’s websites, we use cookies to provide visitors with access to various features and services and to monitor user behavior on the website. A cookie is a small text file stored on the visitor’s computer during their visit. We do this in order to improve the website and provide better service and more relevant content to you as a customer. Most web browsers automatically accept cookies. If you want to disable cookies, you can do so in your browser’s security settings. However, if you disable cookies, some features may stop working.

Changes to the Privacy Policy

Please note that the terms of the privacy policy may change. The new version will be published on the Company’s websites in such cases. Therefore, you should periodically review these terms to ensure that you are satisfied with the changes. In the case of significant changes, we will notify you via email if you have provided us with your email address.