Privacy policy

Idre Turistservice’s policy for personal data

General

Idre Turistservice AB operates the websites www.charliesidre.se, www.vildmarksnastet.se and www.idreturistservice.se. We respect your privacy and right to control your personal data and will protect your data as if it were sacred. Idre Turistservice’s personal data policy describes which data we collect, for what purpose it is collected, how you can have control over your own data and how you can contact us. This personal data policy applies when you visit a website administered by Idre Turistservice AB. Idre Turistservice AB is the data controller in accordance with these terms and conditions and is responsible for ensuring that processing takes place in accordance with applicable legislation.

Personal data that we collect

Examples of personal data we collect include your name, contact details such as mobile phone number, email address or postal address. In addition, in connection with your application for a vacant position with us, your cover letter and CV. We record personal data in connection with:

  1. When you fill in booking forms for bookings, orders and surveys.
  2. When you fill out an application form to apply for a job with us.
  3. If you contact us via email, our websites and social media.
  4. Your visit to our websites, including but not limited to traffic data, location data, weblogs and other communication data as well as e.g. the IP address, cookies, device type, operating system and browser type used for the visit.

Collection with consent

By checking the “Consent” box, you agree that the personal information you provide at various points on this website may be used for marketing purposes for the service exposed in connection with which you are asked to provide your personal information. We also collect your IP address and geographic location in order to be able to better adapt our marketing to you. When you click the “I agree” button, you also agree that we may place so-called third-party cookies on your computer. This cookie will track you and your browsing behavior in order to offer you marketing based on your behavior.

How we use collected information

Idre Turistservice AB processes personal data mainly for the purposes set out below and for any additional purposes specified at the time of collection:

  1. To fulfill orders and bookings of services offered by Idre Turistservice;
  2. Enable good customer service, such as handling your requests, correcting incorrect information or sending information that you have requested, e.g. newsletter;
  3. Order/booking data is stored and analysed, and forms the basis for offers and discounts as well as marketing of both a general and targeted nature;
  4. To be able to carry out analyzes and market research;
  5. For system administration and to produce statistical data about our users’ behavior and patterns but this does not identify an individual person but takes place on an aggregated level;
  6. To develop, deliver and improve our services through analysis of your traffic;
  7. To send important notices such as communications about changes to our terms and policies;
  8. To contact you about other offers, promotions or services that we think may be of interest to you, please note that you can opt out of this marketing at any time;

Information that may be disclosed

We may share information with other companies that process data on our behalf to enable us to provide our services, for example upon booking confirmation and reminder. A high level of security and confidentiality is always observed in all handling of personal data. Idre Turistservice AB only cooperates with partners who process personal data within the EU/EEA or with companies that maintain the same level of protection as within the EU/EEA by for example have joined it so-called Privacy Shield agreement between the EU and the US or equivalent. We occasionally use Mailchimp to send booking confirmations and reminders.

About cookies

When you use our website, a so-called cookie is set on your device. This is of a technical nature and saves information about your device and internet connection such as operating system, browser version, IP address and unique identifiers. Acceptance of cookies can be turned off in your browser, however some functions may no longer work. Read our Cookie policy

Legal basis, storage and thinning of personal data

By providing information to Idre Turistservice, you give your permission for Idre Turistservice to register and store information about which service you have ordered/booked and to process the specified personal data for specified purposes.

As a legal basis for processing, Idre Turistservice will refer to the fulfillment of an agreement, legal obligation, legitimate interest or consent. If Idre Turistservice uses legitimate interest as a basis, it will only be done for the purposes stated above. The legal basis for processing personal data is consent. Please note that you can withdraw your consent at any time by contacting us, for contact details see the heading “How to contact us”.

The processing takes place in accordance with current legislation and means that personal data is not preserved for a longer period of time than is necessary with regard to the purposes of the processing. Idre Turistservice stores your personal data as long as we have a customer relationship with you, but for a maximum of 12 months. We normally clear all personal data before the start of the season, i.e. before the end of October/November. Some information can be kept longer as it is required due to other legal requirements, such as the Accounting Act.

Backups are made once a day and stored for 90 days before being deleted.
High levels of security and confidentiality are always observed in all handling of personal data.

Your rights and choices

You have rights regarding your personal data and you have the opportunity to influence your information and what is saved. Idre Turistservice will, on its own or the customer’s initiative, correct information that is found to be incorrect. You can also at any time request that your data be deleted or that its use be restricted by contacting us (for contact methods see the heading How to contact us). If you believe that your rights are not being respected by us, please feel free to contact us or you can contact the Privacy Authority (imy@imy.se).

You can opt out of receiving marketing communications from us at any time by contacting us by email or by clicking “unsubscribe” in emails we send you. You can, once a year free of charge, obtain information about which personal data is registered, by requesting in writing a so-called register extract from Idre Turistservice.

The Data Protection Regulation states:

  • Any processing of personal data must have a legal basis.
    There must be a legal basis for the collection of data. A legal basis is the consent of the data subject.
  • Right of access.
    Data subjects have the right to access their personal data and to know how it will be used by the company. Upon request, companies shall, free of charge, provide a copy of the data to the individual.
  • The right to be forgotten.
    If the individual is no longer a customer or wishes to withdraw consent, the individual has the right (under certain conditions) to have their information deleted.
  • The right to data portability.
    Individuals have the right to transfer their data from one service provider to another.
  • The right to be informed.
    Individuals have the right to be informed of any collection of personal data that the company makes about them.
  • The right to have information corrected.
    This ensures that individuals can have their data updated if it is out of date or incorrect.
  • The right to restrict processing.
    The individual may, under certain conditions, request that their data not be processed. The data remains, but its use is restricted.
  • Right to object.
    The individual has the right to object to the processing of personal data for marketing purposes. There are no exceptions to this rule and any processing for marketing purposes must be discontinued.
  • The right to be informed.
    If information has been obtained by devious means, e.g. through a breach, the individual has the right to find out. Infringements must be reported to the supervisory authority within 72 hours.
  • Who is the supervisory authority?
    In Sweden, it is the Data Inspectorate. It is to them that you turn if you believe that we do not meet the requirements for the handling of your personal data.

Links to other websites

In the event that our website contains links to third party websites, websites, or material published by third parties, these links are for informational purposes only. As Idre Turistservice has no control over the content of these websites or their material, we are therefore not responsible for their content. Idre Turistservice is also not responsible for damages or losses that could occur when using these links.

 

How to contact us

For further information on personal data management or if you have any questions, please contact our representative:

REIN4S Consulting Sweden AB
Kaj Johnson
Östra Kasernvägen 3C
185 41 Vaxholm
Email address: kaj.johnson[at]rein4s.com
Telephone number: 070-593 78 94