Personal data are all types of information that can be directly or indirectly attributed to a natural person, such as name and address, but also pictures and sound recordings. Encrypted data and various types of electronic identities, such as IP numbers, are personal data if they can be linked to natural persons. When visiting our website, the automatic registration of IP addresses is performed for measuring visitor frequency, but the data is not used to identify individual visitors.
Processing of personal data is any operation performed upon personal data, whether it is carried out automated or manually. Examples of common data processing are collection, registration, storage, transfer and deletion.
The Swedish Postcode Foundation is personally responsible for the processing of the collected personal data and we ensure the security and integrity of our personal data processing.
Types of processing of personal data
The Foundation uses personal data submitted from the following activities:
- When subscribing to our newsletter.
- When submitting an application for project support or asking questions related to the application process.
- When a project agreement is signed and anytime during the course of the project period when volunteered.
- When submitting questions or applications regarding employment
Purpose of processing personal data
The Foundation uses personal data for the following purposes:
- to administer the subscription to our newsletter.
- to process applications and inform with decisions regarding the applications.
- to receive and sign agreements on project support and to facilitate contact and exchange during the project process regarding project support, project visits, interim reports, final reports, audits and other issues related to the use of project funds. In addition to enable the provision of relevant updates and information about future announcements, upcoming events or other project support related activities.
- To respond to applications and queries regarding potential employments
Legal basis for processing personal data
The Foundation processes personal data in accordance with the following legal bases:
- Personal data processing is based on the applicants and ours legitimate interest in handling the application.
- The processing of personal data is necessary for us and the applicants in order to be able to fulfill our commitments under Project Agreement that are written upon granting the project.
- The processing of personal data is based on active consent or legitimate interest in receiving information.
A cookie is a small file that is placed on your computer when you visit a website. Cookies and similar technologies are used on this site to improve user experience, analyze traffic, and optimize the site. No personal information (such as email address or name) is saved.
Information that may be disclosed
We never sell your personal information to third parties for marketing purposes or similar but we can share information with other companies and organizations that process the information and data on our behalf and according to our instructions. This is in order for us to offer our services and fulfil our commitments. When your personal information is shared with these organisations, it only occurs in a manner that is consistent with the purposes for which we have gathered the information, such as to be able to handle applications and distribute our newsletter. We also ensure to have personal disclosure agreements where required by which they guarantee the security of the personal data being processed.
We want to remind you that Mailchimp, through which we distribute our newsletter, uses so-called beacons, which is information about, for example, IP address and browser that you share when you open your email. We do not use personal data but only general statistics to analyze the scope of the newsletter.
Time limits for processing personal data
The Foundation does not retain personal data longer than is necessary to fulfill the above-described services, unless we are required to retain personal data longer to comply with legal requirements. This is governed by the Foundation’s internal GDPR policy.
You are entitled to receive, upon request, information about your personal data which we collect and process. Send a signed request by mail to us. You also have the right to have your personal information corrected if wrong, deleted, and moved. You can also request to have your personal information restricted under specific circumstances. Contact us here.
Version 2.0 created June 2018