We collect personal data about our customers, in particular, designated contact persons, in order to deliver our services. The personal data includes contact information such as name, phone number, and email address.

We also collect personal data when you request information about Younium's services, when you participate in events or sign up to receive newsletters, white papers, and other materials. We collect personal data such as name, phone number, email address, company name, title, country, and type of industry.

You may visit our website without registering or actively submitting personal data to us. If you do not register, we only collect information that your computer or other devices send to us in connection with access requests and via cookies and other technologies that we use to analyze and enhance your use of our site.

The type of personal data we collect by means of cookies and other technologies is described in the Cookies Policy. 

In item 3 you can see how we use the personal data.

Below are the purposes for which we process personal data. 

Fulfillment of service delivery

If you are a contact person for one of our customers, we process personal data to identify you and to handle and deliver the service according to our agreement. For example, we process personal data to ensure a secure operation of the service and to be able to provide adequate support and incident management. Also, we process personal data in order to handle invoicing and payments.

Lawful basis for processing:

• Legitimate interest, i.e. we process personal data since we assess that our interest in fulfilling our obligations in accordance with the agreement that we have entered into with our customers overrides your interest of protection of your privacy. 

Communication about our service

We process personal data in order to send our customers information about disturbances in our service. We also process personal data when sending information about, for example, new releases, changes in functionality in our service or when releasing new functionality.

Lawful basis for processing:

• Legitimate interest, i.e. we process personal data since we assess that our interest in fulfilling our obligations in accordance with the agreement that we have entered into with our customers and communicating with our customers about our service and any information that pertains to our customers overrides your interest of protection of your privacy, and/or

• Consent, i.e. we process personal data as you have given and not withdrawn your consent or not chosen to opt-out of our processing.

Development of our service

We process personal data in order to further develop our service and operations. For this purpose, we might aggregate statistics for analytic needs. All personal data is anonymized.

Lawful basis for processing:

• Legitimate interest, i.e. we process personal data since we assess that our interest in fulfilling our obligations in accordance with the agreements we have entered into with our customers and developing our service and operations overrides your interest of protection of your privacy.

Marketing

Younium process personal data for marketing purposes. This might include processing of personal data for direct marketing purposes. This might entail that we have flagged your company as a potential customer that matches the target group of Younium. If you have a specific job role and can be considered a contact person for your company, we might store your contact information for a limited period of time that is further detailed below in item 5. Please note that you always have the right to opt-out of any marketing by way of email. If you have consented to such processing, for example at an event that is arranged by Younium or any third party with which we cooperate, we will not process your personal data if you have withdrawn your consent or chosen to opt-out.

Lawful basis for processing:

• Consent, i.e. we process personal data as you have given and not withdrawn your consent or not chosen to opt-out to our processing, and

• Legitimate interest, i.e. we process personal data since we assess that our interest in marketing our products and services to you overrides your interest of protection of your privacy.

Information security

We process data for the purpose of providing security for our service and systems. To detect or prevent different types of unlawful usage that violates our agreements. The data is also used to prevent abuse of the service and systems and to detect fraud, virus attacks etc.

Lawful basis for processing:

• Legitimate interest, i.e. we process personal data since we assess that our interest of fulfilling our obligations in accordance with the agreements we have entered into with our customers and providing security for our service and systems overrides your interest of protection of your privacy.

Compliance with the law

We process personal data in order to comply with the law. We process your personal data to comply with our legal obligations under applicable law, e.g. when invoicing according to Swedish law, (Bokföringslagen).

Lawful basis for processing:

• Fulfillment of legal obligation, i.e. we process personal data in order to comply with our legal obligations.

Cookies and other technologies

For more information please see our Cookies and other technologies Policy.

Safeguard our legal interests

We process your personal data in order to defend, establish or exercise any claims in case of a dispute regarding e.g. payment.

Lawful basis for processing:

• Legitimate interest, i.e. we process personal data since we assess that our interest in safeguarding our legal interests overrides your interest in protection of your privacy.

Fulfilment of service delivery

If you are a contact person for one of our customers, we will retain your personal data during the entire contract period between us and your employer.

Communication about our service

If you are a contact person for one of our customers, we will retain your personal data during the entire contract period between us and your employer.

Development of our service

If you are a contact person for one of our customers, we will retain your personal data during the entire contract period between us and your employer and 12 months thereafter. We only use anonymized and aggregated data for service development.

Marketing

If you are a contact person for one of our customers, we will retain your personal data during the entire contract period between us and your employer. This is on the condition that you have not previously objected to direct marketing.

If you are a contact person for a company that has been flagged as a prospective customer and you have not given consent, we will retain your personal data for no longer than 24 months. This is on the condition that you have not previously objected and opted-out of direct marketing.

If you have consented to us processing your personal data for marketing purposes when e.g. attending one of our events, we will retain your personal data for as long as you have not withdrawn your consent or objected to direct marketing.

Compliance with the law

We retain your personal data for as long as we are required in accordance with applicable law. In regards of e.g. invoicing, we are required to retain personal data for seven years.

Cookies and other technologies

For more information please refer to Cookies and other technologies Policy.

Safeguard our legal interest

In case of a dispute regarding e.g. payment, we retain your personal data as long as necessary for us to defend, establish or exercise any claims.

Some data will be anonymized and used for service development. When you choose to opt out from any type of communication from us, your personal data will be erased.

You have the right to request a confirmation from Younium as to whether or not personal data concerning you are being processed and, where that is the case, obtain access to your personal data. You also have the right to request that Younium corrects any inaccuracies in your personal data and that Younium shall erase your personal data or restrict the processing of your personal data. You further have the right, at any time, to object to Youniums processing of your personal data if you believe that Younium has no legitimate interest in processing the personal data or to the use of your personal data for the purposes of direct marketing. You are finally entitled to lodge a complaint regarding Younium's processing of your personal data with a supervisory authority. You can contact Younium for more information about these rights.

We may share your personal data with: companies supplying technique, storage services, administrative tools, crm tools, financial services, authorities that request personal data, any third party with which we arrange an event or conference (provided that you have given consent to such sharing).

All recipients with whom we share personal data within the EU are companies which we cooperate with and have signed Data Processing Agreements (DPA) with. All recipients with whom we share personal data with outside of the EU are companies which we cooperate with and signed Data Processing Agreements with, and comply with the Privacy Shield Framework or any other such framework approved by the EU.

The personal data will be used in order to fulfill service delivery. We may process personal data and share it with recipients globally that help us deliver our service and run our business, subject to Data Processing Agreements (DPA). We may also share aggregated usage statistics.

In a reorganization or sale of our company or assets, your data may be transferred, subject to the acquirer accepting the commitments made in this Statement and compliance with applicable law.

We take appropriate technical and organizational security measures, consistent with GDPR and industry standards to ensure that all personal data we treat is protected from unauthorized access. Access to personal data is provided only to those who need it to perform their duties.

We are constantly working to protect our customers’ integrity. Our security measures include protection of personal data, information, IT infrastructure, internal and public networks, as well as office buildings and technical facilities. Processing of data is logged and checked systematically. Encryption of equipment and data is done with generally recognized and secure methods.

This policy was last updated on 22 May 2018. We may change this policy from time to time and if we do we will post any changes on this page. If you continue to interact with us after those changes are in effect, you are agreeing to the revised policy.