Hogia as the controller of personal data
Hogia’s head office is located in Sweden and the Hogia Group complies with Swedish and European Union data protection legislation, including the General Data Protection Regulation (GDPR).
Hogia AB, company reg. no. 556108-8039, is the controller of the personal data processed by and on behalf of the Hogia Group.
If you have any questions about why and how we process your personal data, the easiest way to get an answer is to email us at firstname.lastname@example.org.
Purpose of processing personal data
We process personal data concerning you when you or the company you work for:
- is one of our suppliers
- downloads one of our apps;
- enters into a partnership agreement with us
- registers for one of our training courses
- subscribes to one of our newsletters
- contacts us
- is contacted by one of our salespeople
- applies for a job with us
- visits one of our premises; or
- visits our website and accepts cookies
We only collect personal data for specific, expressly stated and legitimate purposes and we only collect the necessary data for the purpose in question. What personal data we collect depends on the purpose of processing.
Retention period of data
We work actively to limit the amount of personal data we store by weeding out data in accordance with our established Weeding Policy. We also ensure that the personal data we process and store is accurate and up to date.
Transfer and disclosure of personal data
In order to fulfil the aforementioned purposes of Hogia’s personal data processing, Hogia engages providers of IT services and systems to process personal data on Hogia’s behalf. These service and system providers are “processors” pursuant to GDPR, meaning that they only process the personal data on documented instructions from Hogia as the controller, and are not permitted to use the data for their own purposes. They also have a legal and contractual obligation to implement appropriate technical and organisational measures to protect the personal data. Hogia may also disclose personal data to recipients other than those specified above in order to comply with applicable legislation, regulation and requests from the courts or a public authority and to assert Hogia’s legitimate interest in pursuing or defending a legal claim.
Unless otherwise agreed, Hogia does not store, transfer or process personal data concerning employees, customers or other partners, or other data worthy of protection, outside the EU/EEA.
The rights of the data subject
As the data subject, you can assert your rights at any time.
Processing of personal data for communication purposes
When you contact us via a marketing channel, we will sometimes store your personal data in order to communicate with you. We also store personal data concerning you if you subscribe to one of our newsletters. These personal data are stored in our customer relationship management (CRM) system and you may contact us at anytime to find out what personal data concerning you we are processing, to have inaccurate data rectified and request the erasure of your personal data.
Hogia as a processor of personal data
Hogia’s Personal Data Processor Agreement describes the Hogia Group’s processing of personal data in the role of processor on behalf of our customers (controllers). Please click on the link below to read Hogia’s Personal Data Processor Agreement.
Security and storage of personal data
Your privacy is our prime concern and we take appropriate technical and organisational measures on an ongoing basis to protect your personal data and prevent its dissemination and any unauthorised processing. Only persons who need access to the personal data to perform their duties have access to them. You can learn more about our security precautions here: