服务条款

最后更新 - 30th of October
  1. 简介
    1. 本网站由公司注册号为559378-2914的Riedia AB(以下简称为"Riedia"、"我们 "和 "我们的")拥有、管理和发布。
    2. 本隐私政策包含关于我们如何处理您访问我们网站、移动应用程序和阅读我们的电子邮件时获得的个人数据的信息。本隐私政策还包含关于您在GDPR下的权利的信息。
    3. We handle all Personal Data in accordance with the GDPR and any subordinate legislation and regulation implementing the GDPR and/or SCC which may apply (the “Data Protection Requirements”) (in accordance with the principle of accountability).
    4. We review this Privacy Policy annually and will update it as needed, for example, if we introduce new services, functions or similar. The latest version is always publicly available at riedia.com/gdpr.
    5. If you have any questions regarding this Privacy Policy or our Processing of Personal Data, you are always welcome to contact us. Please send your message to info@riedia.com. We will try our best to answer your message and resolve your concerns without undue delay.
  2. Definitions
    1. All references to “Personal Data“, “Processing“, “Data Subject“, “Personal Data Breach“, “Sub-processor“, “Supervisory Authority” and any other capitalized terms not defined herein shall have the same meaning in this Privacy Policy as stated in article 4 of the GDPR.
    2. GDPR: Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation).
    3. SCC: Commission implementing decision (EU) 2021/914 of 4 June 2021 on standard contractual clauses for the transfer of personal data to third countries pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council.
    4. Website: riedia.com.
    5. Mobile Application: Riedia application in Google Play and Apple Store.
  3. Collection of personal data
    1. The most common ways we receive Personal Data are when you: visit our Website; read our emails, use our Mobile Application, contact us, make a payment, or when we enter into an agreement with you (purchase-, cooperation-, employment agreement etc.).
  4. Why we collect personal data
    1. Main purposes of the Processing of Personal Data: According to the principle of purpose limitation, we may only Process Personal Data for special, explicitly stated and justified purposes. The main purposes of our Processing of Personal Data are to:
      1. 维持我们的服务,包括网站和移动应用程序的正常运行。
      2. 改善和推广我们的服务,包括网站和移动应用程序。
      3. 履行我们在协议中的义务。
      4. 履行我们在法律上的义务。
  5. 个人数据的处理
    1. 我们尽量只处理必要和相关的个人数据,遵循有关个人数据存储的目的限制和数据最小化原则。这意味着我们不会处理超出必要范围的个人数据。
    2. 我们对个人数据的所有处理都有法律依据(根据合法性、正确性和透明度原则)。下面您可以了解到我们对个人数据的处理以及这种处理的法律依据。
    3. 当你访问我们的网站和/或移动应用程序时。
      1. Our Website and Mobile Application use Google Analytics, which is a third-party application that analyses the user’s activity. We get access to unidentified usage information from Google Analytics about how users use the Website and/or the application and all information that is sent to Google Analytics is anonymized. We use Google Analytics to improve our services.
      2. Categories of Personal Data: Access data and device information: Device identification, operating system, operating version, device ID, access time, configuration settings, time zone, and country. Legal basis: Legitimate interest.
    4. When you register to our Website and/or the Mobile Application:
      1. You provide your name and email which is linked to your preferences, articles you visit, time spent on the platform, articles saved, opened newsletters, links clicked, and language.
      2. Categories of Personal Data: Main data: We get access to your name, e-mail, the content of the comment and other metadata, such as the date and time of publication, including your browser user agent string to help spam detection. Only our team members who have a user account for the Website as an “administrator”, may see the IP address associated with the comment. Administrators can also view user IDs. Any other user roles can only see their own information. We need this information about you in order to publish the comment on the Website and to fulfil the service in accordance with the agreement entered into between us (Terms of use). Legal basis: Contract.
    5. When you make a payment on our Website and/or the Mobile Application:
      1. When you purchase a subscription, we get access to your Personal Data. Payment is made through the payment solutions that are integrated on the Website and Mobile Application.
      2. Categories of Personal Data:
        1. Order information: Order ID, invoices, order history, delivery address (e-mail), cancelled orders, completed orders. This information is processed by us every time you place an order. We also Process the data to improve our services. Legal basis: Legitimate interest.
        2. Payment information: Payment method, pseudonymised credit/debit card information. We need to Process this information in order to be able to track the payments you have made and link them with the orders you have made in order to enable the delivery of the order. Legal basis: Contract.
        3. Payment information: We process and store invoices, receipts and other materials that are subject to accounting, according to the applicable accounting laws, such as Swedish Bookkeeping Act (1999:1078) (sw: Bokföringslagen) for at least seven years or as long as the law requires. Legal basis: Legal obligation.
    6. When you register for any newsletter from us
      1. You may consent to receive any newsletters from us, through voluntary active approval to the Processing. You can cancel your subscription at any time by clicking on the unsubscribe link in the newsletter or emailing us at info@riedia.com. Those who revoke their consent are removed from the mailing list and their information removed.
      2. Categories of Personal Data: Identification information: e-mail, personal preferences: categories of interest and language. Legal basis: Consent.
    7. When you contact us
      1. We Process your Personal Data when you contact us so that we can know who we are talking to and to be able to help you in the matter. This also applies if you contact us via social media.
      2. Categories of Personal Data: Identification information: name, e-mail, ID from social media (if applicable), message content.
      3. Legal basis: Legitimate interest.
    8. Other reasons for the Processing of Personal Data
      1. Legal obligation: We have the right to Process Personal Data if we have a legal obligation to do so, for example, according to the Swedish Bookkeeping Act (1999:1078). In such cases, only necessary Personal Data will be processed. Personal Data that is part of any necessary accounting documentation is stored for as long as the law requires.
      2. Fulfilment of contract: We have the right to Process Personal Data on the legal basis of “Contract”, to fulfil our obligations under a contract with the Data Subject.
      3. Legitimate interests: We have the right to Process Personal Data, based on the legal basis of “Legitimate interests”, to for example market our services, provide good support, and improve our services, the Website or the Mobile Application. However, we never process sensitive Personal Data on this legal basis. The Data Subjects always have the right to object in writing if the Data Subject does not want us to use their Personal Data for direct marketing. We have the right to Process Personal Data on this legal basis to comply with applicable law, demand payment for a past due claim, report a debt or protect our rights/property and to prevent crimes.
  6. Storage of personal data
    1. Storage location: We strive to store and Process all Personal Data within the EU/EEA and follow the principle of integrity and confidentiality. If we store Personal Data in a country outside of the EU/EEA, the storage location must comply with the provisions of the GDPR. We shall in such cases also enter into a data processing agreement that is compliant with the regulations stated in the GDPR and/or SCC.
    2. Storage duration: We store Personal Data as long as it’s needed and necessary to fulfil the purposes for which the Personal Data was collected. If it is necessary for us to comply with applicable legislation, we may store Personal Data for a longer period for that purpose.
    3. Deletion of Personal Data: Personal Data that is no longer needed, will be erased (deleted) (according to the principle of storage limitation). Personal Data connected to a user account on either the Website or the Mobile Application, will be stored as long as the user account is active. Any deleted content / Personal Data may be stored in the system's backup files for up to three (3) months.
  7. Transfer of personal data
    1. Authorities: We may share Personal Data with relevant authorities to prevent crime, protect and safeguard our interests and rights. We may also share Personal Data if we are obliged by law or authority to disclose the Personal Data that we Process.
  8. Your rights according to the GDPR
    1. You have the right to:
      1. information about what Personal Data we process and to whom it is shared.
      2. access Personal Data that is being processed.
      3. rectification and to ask for modifications of your Personal Data.
      4. object to the processing of Personal Data.
      5. object to automated processing of the Personal Data and to a decision based on automated processing.
      6. withdraw a given consent for the processing of Personal Data for a specific purpose.
      7. be forgotten and to ask for the deletion of Personal Data.
      8. transfer or obtain your Personal Data.
    2. 如果您要求行使上述有关您的个人数据的任何权利,我们随时欢迎您与我们联系。但是,有些权利只适用于某些情况,而且只有在我们依法可以实施您的要求时才适用。
  9. 安全措施
    1. 数据保护原则:我们按照数据保护原则(GDPR第5条)工作,并确保我们的团队成员了解这些原则。我们所有的活动和安全措施都是以确保符合GDPR关于充分保护个人数据处理的规定和要求的方式进行的(根据完整性和保密性的原则)。
    2. 其他安全措施:我们只允许为了执行任务而直接需要访问个人数据的经授权的团队成员访问这些数据。我们所有包含个人数据的内部登记册和系统都有密码保护。我们还为我们的团队成员制定了访问个人数据的内部程序,以保护个人数据免遭未经授权的使用。
  10. 个人数据泄露
    1. 所有个人数据泄露事件都将在内部记录,并在发现后72小时内向瑞典隐私保护局报告,除非该个人数据泄露事件不太可能导致对自然人的权利和自由的风险。当个人数据泄露可能导致对自然人的权利和自由的高风险时,我们应将个人数据泄露告知数据当事人,不得无故拖延。