Storskogen is the data controller for the processing carried out by us or others on our behalf. This means that we decide why and in what way your personal data will be processed. If you have any questions about how your personal data is processed please contact us via the contact details provided at the end of this document.
Euroclear Sweden AB (“Euroclear”) is responsible for keeping the shareholder’s register for Storskogen Group AB (public limited company) and is the data controller for the processing of personal data that takes place in connection with this task. Please contact Euroclear if you want to know more about how Euroclear processes your personal data.
On occasion, our website may embed content via RSS feeds, such as press releases. As a visitor to our website you may be redirected via a RSS feed to a website for which Storskogen is not the data controller and which Storskogen does not have access to and has no control over, including cookies or the information they collect. You should check the relevant websites for further information when you leave Storskogen’s website.
WHAT PERSONAL DATA DO WE PROCESS AND FOR WHICH PURPOSES?
Depending on when, and in which the role, we encounter you, we will process different categories of personal data.
Website visitors and contact via e-mail or contact form
The following personal data is processed when you visit our website or contact us via e-mail or contact form:
- Name, e-mail address, telephone number and possibly other information you give us in the form or by e-mail.
The data is processed to communicate with you regarding your matter, for marketing purposes and to facilitate new business for Storskogen. Information from cookies is used to improve our website (find out more about the processing that takes place in connection with cookies below).
The following personal data is processed when you are an external stakeholder to us:
- Name, e-mail address, telephone number and possibly other information you give us in connection with your communication with us.
The following personal data is processed when you are a shareholder:
- Name and contact details
- Personal identification number
- Holdings of shares or other financial instruments, voting rights and information about rights linked to the shareholding
- Photography, video and audio recordings (insofar as such photography and recordings are taken or made at an Annual General Meeting)
- The following data are also processed in connection with Annual General Meetings: (i) information on advisers (if notified) and representatives (when using a proxy), (ii) information on voting to the extent that it can be linked to certain shareholders based on the number of votes, and (iii) notes in the minutes of the meeting (e.g. in case of dissenting opinions, statements etc.)
- Information about any trustee, pledge and pledgee or other notes in the CSD register
- E-mail correspondence to the extent that it occurs in your capacity as a shareholder
- Account details for administering payments and dividends
The data is processed to be able to hold the Annual General Meeting and provide services in connection with it as well as to comply with legal obligations in accordance with applicable laws and regulations.
Personal data within the scope of the acquisition process
When acquiring companies, we often gain access to personal data concerning the company’s employees or its suppliers and/or customers. What data we gain access to is largely determined by the company being acquired, as it is the company that provides the material that we examine prior to a potential acquisition.
In both cases, the data are limited to what is necessary to evaluate the company being acquired. Furthermore, data is, as far as possible, provided in an anonymized form (i.e. such that the data cannot be linked to a specific person).
LEGAL BASIS FOR THE PROCESSING OF YOUR PERSONAL DATA
Storskogen processes your personal data when it is in our legitimate interest to do so. This applies, for example, to the processing that takes place in connection with you visiting our website or contacting us via e-mail or contact form (including the subsequent handling of the matter and marketing). This is also the case with certain processing that takes place in connection with annual general meetings (e.g. maintaining adequate security and order during meetings). After the acquisition process, we may process your personal data to the extent necessary for us to be able to meet contractual obligations.
All other processing that takes place regarding shareholders is necessary for us to be able to comply with our legal obligations.
DISCLOSURE OF YOUR PERSONAL DATA
Data may be disclosed to external companies that we engage or collaborate with in connection with the processing described above. For example, there are companies that help us with the operation, testing and development of IT systems, data backup and financial administration. We have agreements in place with these companies to ensure that they take appropriate security measures. We take special security measures when dealing with companies that process data outside the EU/EEA area, e.g. agreements containing the European Commission's standard contractual clauses for data transfer available on the European Commission's website.
Within the scope of an acquisition process, we may disclose information to external advisers and to wholly or partly owned subsidiaries in order to comply with agreements. We also disclose information to, for example, public authorities if we see that there is a legitimate interest in such disclosure or if we are otherwise obliged to disclose information by law or public authority decision.
Your personal data is only stored for as long as it is necessary to fulfil the purposes of the processing, or for as long as we are required to store the data by law (e.g. for accounting purposes in accordance with the Accounting Act). We also store personal data in order to comply with agreements or if we deem that we have a legitimate interest in processing the personal data. You can unsubscribe from subscriptions to press releases, newsletters and the like at any time, and your personal data will then no longer be stored for this purpose.
YOUR RIGHTS UNDER DATA PROTECTION LEGISLATION
Under certain conditions, you have certain rights under data protection legislation in connection with our processing of your personal data. These are:
- Right of access (register transcript) – a right to obtain a copy of the data we process about you and information about the data being processed
- Right to rectification – a right to have erroneous data rectified
- Right to erasure – a right to have data erased
- Right to restriction of processing – a right to request restrictions on our processing (e.g. during the period in which you have requested that data be corrected, and we investigate whether the data are correct)
- Right to data portability – a right to request that your data is transferred from us to another data controller
- Right to object to our processing
- Right to lodge a complaint with the supervisory authority (the Swedish Data Protection Authority) if you believe that we are not processing your personal data in accordance with data protection legislation
CONTACT DETAILS FOR DATA CONTROLLER
If you would like further information about how your personal data is processed, or wish to exercise any of the rights listed above, please contact us at the contact details below:
Storskogen Group AB
SE-111 48 Stockholm, Sweden
Find out more about cookies on the Swedish Post and Telecom Authority’s website.
The information collected through cookies is only used for Storskogen’s purposes, i.e. not for third parties’ purposes.
There are three types of cookies on the website:
Session cookies, i.e. cookies that are temporarily stored in the browser's memory while you visit the website. They may, for example, be used to identify the language you have selected. Session cookies are deleted when the web browser is closed.
Persistent cookies, i.e. cookies stored on your device for a longer time. They are used, for example, for features telling you what's new since you last visited the website. How long the cookie stays on your device depends on the lifetime of the specific cookie and your browser settings.
Third-party cookies, i.e. cookies that belong to domains other than those displayed in the address bar. Third-party cookies open opportunities to track user web history.
The cookies used on our website are described in the following table.
|Name||Purpose of the cookie and the data collected||Storage period|
|_ga||Creates an anonymous ID for statistical purposes and collects statistics about the user's session.Used by Google Analytics.||26 months|
|_gat||Improves user experience. Used by Google Analytics.||1 minute|
|_gid||Creates an anonymous ID for statistical purposes and collects statistics about the user's session.Used by Google Analytics.||24 hours|
|_gat_Waas||Improves user experience.Used by Google Analytics.||1 minute|
Most browsers accept cookies automatically, although the settings in your browser can be adjusted to block and erase cookies. The specific procedure for doing this varies between different browsers, and further information can be found either in the respective browser’s instructions or in the help function which accompanies most browsers. Further information about how to manage and erase cookies can be found on the following website: www.aboutcookies.org.
Please note that blocking cookies can result in a degraded user experience.