Your individual rights and integrity are important to us. This integrity policy describes how we collect, use, store and share personal data. The policy is a supplement to our general terms and conditions, service-specific terms and SLA as well as our personal data processor agreement. This policy applies from the 25th of May 2018.
The integrity policy applies when PAAM Systems provides services and products related to purchase, service issues and other contact with PAAM Systems, such as website visits.
What information do we gather?
We collect information about you directly or indirectly when you contact our customer service or use our web services/forms where you provide personal information. Contact information and delivery address are essential when ordering a physical product. In order to offer you support, send invoice or otherwise contact you in important matters some data must be collected. This information is name, company addresses, billing information, email, title and phone and position number if you haven’t agreed to something else.
User data from our webpage is collected to ensure operation and to detect or prevent threats that may compromise security. We therefore save your IP-address with timestamps and navigation information for a limited time.
How do we protect your personal data?
We have taken technical and organizational measures to process and protect your data from loss, manipulation and unauthorized access. We adapt our security routines according to developments in the technical field. We choose our suppliers carefully to ensure that they maintain the same high standard of data management as we do. By limitation and role-based access to our systems containing personal data, we minimize access to your personal information. Encryption, multi-factor authentication and password policy are used as far as possible for each system.
For how long do we store the data?
We store personal data if it is necessary to fulfill our obligation to you as a customer or if we’re required to save it by applicable law. When the agreement expires, the data will be deleted or anonymized.
Who is responsible for the personal data?
PAAM Systems are the data controller when you as a customer or stakeholder is registered in our systems. When you use our products, you are the data controller and PAAM Systems is the personal data processor when you use our support or a hosting solution.
Who have access to your personal data?
We do not provide personal data to third parties unless you, the customer, are informed about it. We must disclose certain information to third parties if, for example, a delivery of a product is to be completed or if we’re required by law to provide information to authorities.
What rights do you have?
As a customer you have the right to extract the information we have gathered about you and receive instructions on how you can be able to access them.
Changes in personal data are made through communication with us
If you object to the accuracy of the data we have registered, you may request that we limit the processing of these data to storage only. We can then stop any other processing (which also means we must stop delivery of our services) until a correction has been made or until it is possible to determine what is correct or not.
For personal data that has been processed and collected automatically (supported by consent) you have the right to obtain the data in machine-readable format.
Under some circumstances you have the right to request deletion of your personal data. For example:
- If there is no legal basis for the processing, or the processing is illegal
- There is no legitimate reason for continued processing
- You oppose the processing or direct marketing
We need satisfactory basis for identity verification to be able to perform such act as above. Your request to exercise your rights is assessed on a case-by-case basis based in current circumstances. We may also have to keep your personal data to fulfill legal obligations, legal claims or enforce our active agreements.
Changes in the policy
This policy can be edited from time to time to comply with the current laws and security updates. If major changes are made it will be communicated with the registered via e-mail. To keep up to date with minor updates we recommend that you read this periodically at our webpage.
If you have comments or questions you are welcome to contact us through our customer service by email, phone or via our webpage.