Processing of Personal Data – IRA Consulting AB – GDPR

Introduction

On 25 May 2018, the EU’s General Data Protection Regulation (GDPR) took effect, replacing Sweden’s Personal Data Act (PUL). IRA Consulting AB is committed to ensuring that you feel confident in how we handle your personal data. We prioritize your privacy and adhere to both national and international data protection laws, processing your data per GDPR’s specified rules.

Personal Data Responsibility

IRA Consulting AB is the data controller responsible for storing and processing personal data at our agency. We base our data processing on GDPR’s fundamental principles: legality, correctness, transparency, purpose limitation, accuracy, storage minimization, integrity, and confidentiality. The designated personal data officer ensures all processing complies with applicable legislation and that processing purposes remain relevant and appropriate.

Processing of Personal Data

You can visit IRA Consulting AB’s website without registering personal data. When you contact us through email, phone, chat, or similar channels, necessary data is collected for handling assignments or inquiries. We also gather data during advisory meetings, incoming assignments, and while handling active cases.

Personal Data Processed and Stored

When you reach out to IRA Consulting AB, we collect your contact details to facilitate communication and provide advisory services. If no assignment follows or continued service is unnecessary, we delete this data unless it is essential for future communication. In this case, your name, phone number, and email remain on record to streamline future interactions. Upon request, these details are deleted if no ongoing assignment exists.

For clients with ongoing, upcoming, or completed assignments, more extensive data may be processed. We may also supplement necessary information by obtaining data from public authorities or third parties relevant to the assignment.

Purpose of Data Processing and Storage

IRA Consulting AB processes personal data to fulfill our contractual obligations with you, which you consent to when engaging our services. Consent is obtained during advisory registration and assignment initiation. You can object to data processing purposes at any time, prompting us to review and determine the necessity of continued processing.

Access to Personal Data

Only IRA Consulting AB employees can access your personal data for client assignments. Exceptions occur when sharing data with authorities or third parties is essential to fulfilling assignments. Before sharing, we notify you, allowing you to object if desired. However, if data-sharing objections prevent assignment completion, IRA Consulting AB reserves the right to retain the fee and terminate the assignment.

Your Rights

IRA Consulting AB (Org. no. 559151-8575, based in Malmö) is the data controller responsible for your personal data’s compliance with GDPR. You have the right to access your registered data, request corrections, or delete data no longer required. You can object to data processing, request processing limitations, or request data portability. Our staff is bound by confidentiality, and no personal data will be shared with third parties without your consent.

For questions or complaints about IRA Consulting AB’s data processing, feel free to contact us via email.