PRIVACY POLICY

Authway is a CIAM solution created, managed and sold by IRM AB.

With this privacy policy, IRM AB wants to convey how we ensure that your personal data is processed in accordance with current personal data legislation.

Why does IRM keep personal data?

In order to carry out successful and value-creating projects, it is necessary that we work in close collaboration with a variety of people. In order to do this effectively, we need to keep some personal data. This data protection policy explains when and why we hold personal data.

If you have any questions about our approach to manage privacy and data protection, please send us an e-mail at [email protected].

General

You should always be able to feel safe when you provide us with your personal data. IRM has therefore taken the necessary technical and organizational security measures to protect your personal data against improper access, use, alteration and deletion.

The IRM Group’s parent company is IRM AB, with organization number 556424-2773. The group conducts its business in the IT area. The companies included in the group are:
IRM Consult AB, with organization number 556219-6690
IRM Design AB, with organization number 556295-4494
IRM Information Architecture AB, with organization number 559085-2793
IRM Solution AB, with organization number 556579-1133.
Below in this text, the collective name IRM is used for the group and its subsidiaries.

IRM, the Personal Data Controller for your personal data, undertakes to respect and protect your personal data and your personal privacy in accordance with current legislation, industry rules and other relevant standards. In order for you to better understand how we process information about you, we present below our basic principles for processing personal data.

IRM offers you the opportunity via our website, phone and email to order services and make inquiries. On our website, phone and email, we receive information about your name and information about how you can be contacted.

What data and what information do we keep?

The information IRM has in its customer register is the contact information you yourself have provided when you have been in contact with IRM. The data is categorized by reason of contact; purchase/service/conference/workshop/competence meeting/supplier for IRM.

Our customer register, in general, contains personal data such as name, company, postal address, telephone number, electronic addresses, delivery and payment and purchase information. Note that we do not use social security numbers in our handling of personal data.

The data is used by IRM for invoicing, information and delivery of products, as well as marketing and as a basis for statistics and product development. The data can form the basis for IRM, and where applicable our partners, to be able to adapt content, offers and advertisements.

Our purposes

Product/Service delivery

Legal basis: Carry out our contractual obligations and other legitimate interests.

During the delivery: In order to efficiently carry out our delivery, we save contact details of the people we need to communicate with during the ongoing delivery.

After the delivery: In order to have an understanding of which operational personnel participated and from which sources models and analyzes originate in the event of a later delivery. It also gives us a shorter start-up time in the event of a later delivery that may cover the same area and thus the same personnel.

Networking

Legal basis: Consent

Our ambition is to, together with customers and other partners, contribute to the discussion and further development of ideas and methods around customer identity access management solutions. In order to do this, we need contact with others who are interested in these areas. For this purpose, we keep personal data on people who have registered an interest in these subjects and chosen to be part of our network.

We use the information to be able to offer relevant meetings and articles to these people and also to bring people together who we believe can benefit from each other’s thoughts and expertise.

Marketing via e-mail and SMS is regulated in the Marketing Act.

How long is the data saved?

We save the data for as long as is necessary with regard to the purposes of the processing. We may save the data longer if we have to by law or to protect our legal interests, for example if there is a legal process.

Who do we share the information with?

We do not share our personal data with any other party.
Personal data is disclosed to authorities only where required by law or authority decision.

Right to request information and corrections

You have the right to receive free information once per calendar year about which personal data IRM processes about you and for what purpose (so-called register extract). If you want to request register extracts or have any questions about how IRM processes your personal data, please contact us in writing.

Your letter must be signed and contain your social security number. The answer is sent to the address where you are registered. Within 3 months of the request, you must have received a register extract.

You have the right to have incorrect, misleading or incomplete data corrected, blocked, anonymised or deleted.

Personal data is saved until the user himself terminates the consent agreement unless we have to persist it by law or to protect our legal interests, for example if there is a legal process.

About cookies

Cookies are used on irm.se. By using this website, you consent to our use of necessary cookies. With your consent, we also use “Preference”, Statistics” and “Marketing” cookies. This information is completely anonymous. The information IRM collects is data related to website usage and demographic data. This information is used to customize the user experience.

Cookies consist of small text files and are a very common aid on the internet. The cookie files are read and stored by the browser in the device used to visit the websites. IRM’s customers and registered users consent to the use of cookies.

Opt out of cookies

If you do not accept the use of cookies, you can turn off cookies in your browser’s security settings and you can also delete already stored cookies. In some cases, this may impair the functionality and experience of the website. Here is some information on how you can manage cookies for different browsers . You can also set your browser to prompt you every time the website tries to persist a cookie on your computer.
The Swedish Post and Telecommunications Agency is the supervisory authority in the area, please read more about cookies on their website.

Analysis tool for web statistics

authway.co uses Piwik Pro as a tool to get an understanding of how visitors use the website. The analysis tool uses cookies and the information generated by these through your use of the website (including your IP address) will be forwarded to and stored by Piwik Pro on servers in the European Union. This information is used for the purpose of collecting information about the visitors, such as demographic data, and evaluating visitor statistics, for example to improve content, navigation and structure. Piwik Pro may also transfer this information to third parties if required by law or in cases where a third party processes the information on Piwik Pro’s behalf. Piwik Pro will not connect IP addresses with other data held by Piwik Pro.

Changes to the privacy policy

This privacy policy may be adjusted from time to time. If IRM makes any material changes to the Privacy Policy, IRM will notify you by email before the changes become effective. The current privacy policy is published on IRM’s website.

Contact

The way we process personal data may evolve over time. Even if IRM informs about major changes, regular visits to www.irm.se are recommended for the current version.

IRM’s personal data representative can be reached via e-mail or letter.

By e-mail: [email protected]

By letter: IRM AB, Personuppgiftsombud, Garvargatan 9c, 112 21 Stockholm