This Data Privacy Policy (‘privacy policy’) explains how Getcims AB (‘´Getcims´, ‘we’ or ‘us’) collects and uses your personal data when you use Getcims’ services or otherwise interact with us. This privacy policy also describes what rights you have towards us and how you can exercise such rights. You can always contact us with questions about privacy and data protection by sending an e-mail to gdpr_contact@getcims.com.

Getcims is the controller of your personal data and we process your personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (‘GDPR’). We encourage you to read this privacy policy in its entirety to ensure that you fully understand how we process your personal data in connection with the products and services which we provide you with.

Personal data means any information relating to you as a data subject that can directly or indirectly identify you, such as your name, date of birth and social security number. Processing means any operation on personal data, such as the use, collection and organisation of personal data.

1. Contact information to the controller 

Company name: Getcims
Registration number: 559478-8415
Postal address: STORA NYGATAN 13, 411 08 Gothenburg, Sweden
E-mail: gdpr_contact@getcims.com

2. What information do we collect?

We process personal data that you provide to us, as well as personal data generated when you use our products and services. You may directly or indirectly provide us with the following categories of personal data:

Identification data: Name, birthday, etc.
Contact information: E-mail address, invoice address, delivery address, phone number, etc.
Financial information: Payment information, credit and debit card information, etc.
Online identifiers: IP address, device-ID, etc.
Behavioural data: Purchase history, website heat map data, etc.
Generated data: Data that you provide Getcims, for example via correspondence

3. What do we do with your personal datA?

Below, you will find information regarding:

1. the purposes for which we process your personal data, i.e. why the processing is necessary,

2. the types of personal data we use for each purpose,

3. what legal basis we have under the GDPR to process personal data about you, and

4. what retention period we have for each processing activity, i.e. after how long Getcims deletes the personal data for each respective purpose.

3.1 When you contact and interact with us

When you contact us via phone, text message, e-mail or any of our social media, we will collect the personal data which you provide us with for the purpose of answering your questions, handling your requests, and interacting with you.

Purpose: Handling your requests / cases and answering your questions.

Personal data: 

• Identification data

• Contact information

• Generated data

Legal basis for processing

We base our processing on article 6.1 (f) GDPR. We have a legitimate interest in processing your personal data in order to answer    your questions and/or interacting with you.

After careful consideration, Getcims makes the assessment that our legitimate interest in processing your personal data for these purposes outweighs your interest in us not processing your personal data. 

Furthermore, we deem that the processing in question is necessary in order to fulfil the purpose behind the processing.

If there exists an agreement between you and Getcims regarding our services and if your inquires relates to the agreement, we base our processing on article 6.1 (b) GDPR. The processing is necessary in order for us to assist you with your customer support matter, thereby fulfilling our obligations under the agreement.

Retention period

Getcims stores your personal data for as long as necessary in order to handle your case / answer your questions, or longer if there’s a legitimate interest. In the latter case, it will be stored for a maximum of one (1) year after your last contact with Getcims. 

If we base our processing on article 6.1 (b) GDPR, Getcims stores your data for three (3) years.

Purpose: When you contact us on social media, we will process your personal data in order for us to answer any of your question and/or interact with you.

Personal data: 

• Identification data

• Contact information

• Generated data

Legal basis for processing

We base our processing on article 6.1 (f) GDPR. We have a legitimate interest in being able to process your personal data in order to answer any of your questions and/or interact with you on social media.

Retention period

Getcims stores your personal data for as long as necessary in order to handle your case / answer your questions, or longer if there’s a legitimate interest. In the latter case, it will be stored for a maximum of one (1) year after your last contact with Getcims. 

3.2 when you purchase and use our services

When you use and purchase our services (“customer(s)”), we will collect the personal data which you provide us with for the purpose of being able to provide you with our services, process your payments and otherwise fulfil our agreement-based obligations to you.

Purpose: Provision of our services, processing your payments and otherwise fulfilling our agreement-based obligations to you.

Personal data: 

• Identification data 

• Contact information

• Online identifiers

• Financial information

Legal basis for processing: 

We base our processing on article 6.1 (b) GDPR. The processing is necessary in order for us to provide you with our services, thereby fulfilling our obligations under the agreement between Getcims and you. 

Retention period: 

In order to perform our part of the contract in which you are part of, Getcims will store your data for as long as the agreement between you and Getcims is in effect, or longer time if required to establish, exercise or defend legal claims.  

To the extent that your personal data must be stored in order for us to fulfil our legal obligations according to the Swedish Accounting Act (1999:1078) (Sw: Bokföringslag (1999:1078), Getcims will store your personal data for seven (7) years after such accounting has been consolidated.

Purpose:

Maintaining contact with you and other effected parties after the end of the provision of our services in order to answer outstanding questions or other related inquiries.

Personal data: 

• Identification data 

• Contact information

• Online identifiers

• Financial information

Legal basis for processing:

We base our processing on article 6.1 (b) GDPR. The processing is necessary in order for us to provide you with our services, thereby fulfilling our obligations under the agreement between Getcims and you.

We base our processing on article 6.1 (f) GDPR and our legitimate interest in conducting and improving our business.

Retention period: 

Three (3) years or longer time if required to establish, exercise, or defend legal claims.  

3.3 when you register as an influencer

When you register as an influencer, we collect the personal data you provide us with (including name, contact information, and social media channels) for the purposes of being able to provide you with our services and otherwise fulfil our agreement-based obligations to you. We will not process sensitive information unless you provided us with explicit consent or if you have manifestly made the information publicly available.

Purpose: Provision of our services and otherwise fulfilling our agreement-based obligations to you.

Personal data:

• Identification data 

• Contact information

• Online identifiers

• Financial information

• Generated data

The generated data may include sensitive data if you have provided us with such and if your publicly available social media channels contain such data. 

Legal basis for processing:

We base our processing on article 6.1 (b) GDPR. The processing is necessary in order for us to provide you with our services, thereby fulfilling our obligations under the agreement between Getcims and you. 

Retention period:

In order to perform our part of the contract in which you are part of, Getcims will store your data for as long as the agreement between you and Getcims is in effect and subsequent three (3) years, or longer time if required to establish, exercise or defend legal claims.  

To the extent that your personal data must be stored in order for us to fulfil our legal obligations according to the Swedish Accounting Act (1999:1078) (Sw: Bokföringslag (1999:1078), Getcims will store your personal data for seven (7) years after such accounting has been consolidated.

Purpose:

Maintaining contact with you and other effected parties after the end of the provision of our services in order to answer outstanding questions or other related inquiries.

Personal data:

• Identification data 

• Contact information

• Online identifiers

• Financial information

Legal basis for processing:

We base our processing on article 6.1 (b) GDPR. The processing is necessary in order for us to provide you with our services, thereby fulfilling our obligations under the agreement between Getcims and you.

We base our processing on article 6.1 (f) GDPR and our legitimate interest in conducting and improving our business.

Retention period: 

Three (3) years or longer time if required to establish, exercise, or defend legal claims.  

3.4 when you appear in our influencer database

To connect our customers with the perfect influencers, we maintain a database of publicly available information. This database is built using data scraping tools that collect information from open social media profiles (like TikTok and Instagram). The information includes, without limitation, Influencer name and social media handles, publicly shared content about the influencer's activities (e.g., number of followers), areas of focus, brands, or products the influencer promotes, posting frequency, views / impressions and engagement rate. This raw data is then analyzed using custom metrics to generate valuable statistics. These insights are shared with our customers to help them develop targeted branding and marketing strategies that leverage influencer partnerships. The goal is to connect customers with the most relevant influencers for their specific campaigns, benefitting both parties.  We will only process sensitive information if you provided us with explicit consent or if you have manifestly made the information publicly available. We will however not use sensitive information for profiling purposes.

To object to any processing described above, please email gdpr_contact@getcims.com. For more information, please see 4.6 below. 

Purpose: Providing and developing our influencer database to customers.

Personal data:

• Identification data 

• Contact information

• Online identifiers

• Financial information

• Generated data

The generated data may include sensitive data if you have provided us with such data and if your publicly available social media channels contain such data. 

Legal basis for processing:

We base our processing on article 6.1 (f) GDPR and our legitimate interest in conducting and developing our business and our services.

Retention period:

The personal data is deleted after three (3) years. If an influencer edits or deletes their profile, we reflect those changes within 30 days.

3.5 when you interact with our website

When you interact with our website, Getcims will collect your personal data in order for us to provide you access to our website, and to analyse how you use our website.

Getcims uses cookies and other tracking technologies on our website in order to improve your user experience. You can find more information regarding our usage of cookies in our cookie policy: https://getcims.som/cookies

Purpose: When you interact or otherwise use our website, we will process your personal data through session and persistent necessary cookies in order for us to provide you access to our website.

Personal data:

• online identifiers

Legal basis for processing:

We base our processing on article 6.1 (f) GDPR. We have a legitimate interest in being able to process your personal data in order to provide you access to our website and to analyse how you use our website.

Retention period:

Getcims will process your personal data for the duration of the web session, or the period of the specific cookie is active. 

Purpose: When you interact or otherwise use our website, we will process your personal data through session and persistent cookies to analyse how you use the website in order to develop our business and our marketing.

Personal data:

• online identifiers

• behavioral data

• generated data

Legal basis for processing:

We base our processing on article 6.1 (a), your consent. You can withdraw you consent at any time by adjusting your cookie settings in accordance with out cookie policy, or by contacting us via email at gdpr_contact@getcims.com

Retention period:

We store your personal data until you delete the cookie or withdraw your consent or the period the specific cookie is active.

3.6 When we communicate with you

We may process personal data in order for us to communicate relevant information and marketing to you regarding services which you have previously purchased, or similar services which we sell which may be of interest to you. If you do not want to receive such communication from us, you may at any time request that we stop processing your personal data for these purposes by send an e-mail to gdpr_contact@getcims.com

Purpose: In order for us to market our services, send you other relevant information and to develop and improve our business, we may process your personal data.

Personal data:

• Identification data

• Contact information

Legal basis for processing:

We rely on your consent according to article 6.1 (a) GDPR and, for tailoring communications to your preferences, we base our processing on article 6.1 (f) GDPR and our legitimate interest in processing your personal data in order to market our services, sending you other relevant information and improving our business.

Retention period:

Getcims will store the data processed based on your consent until you withdraw your consent. You may at any time request that we stop processing your personal data for these purposes by send an e-mail to gdpr_contact@getcims.com. 

Getcims will store the data based our legitimate interest for as long as the agreement between you and Getcims regarding our services is in effect and a subsequent six (6) months.

Purpose: Sending you our newsletter

Personal data:

• Contact information

• Identification data

Legal basis for processing: 

We base our processing on article 6.1 (b) GDPR. The processing is necessary in order for us to fulfilling our obligations under the agreement to which you are a party.

Retention period:

Getcims will process your personal data until you unsubscribe to the newsletter. You may unsubscribe by e-mail or via the unsubscribe link in each mailing. 

Purpose: We may conduct surveys and ask you to participate. For this purpose, we may process your personal data.

Personal data:

• Contact information

• Identification data

Legal basis for processing:

We base our processing on article 6.1 (f) GDPR. We have a legitimate interest in requesting user data on our services in order to conduct and improve our business. When participating in our services, we base our processing on article 6.1 (b) GDPR and that the processing is necessary in order for us to fulfilling our obligations under the agreement to which you are a party.

Retention period:

In order to perform our part of the contract in which you are part of, Getcims will store your data for as long as the agreement between you and Getcims is in effect and a subsequent six (6) months.  

3.7 recruitment

Purpose: If you apply for a job with us, we will process your personal data in order for us to administer your application.

Personal data:

• Identification data

• Contact information

• Generated data

Legal basis for processing:

We base our processing on article 6.1 (f) GDPR and our legitimate interest of being able to process your personal data in order to administer your application and to conduct any follow up interviews.

Retention period:

Getcims will process your personal data during the recruitment process. The data is then stored for two (2) years to fulfil the requirements of the Discrimination Act (2008:567).

Purpose: When you become an employee we’ll process your personal data for entering into an employment contract with you and providing you with your tasks under the employment contract.

Personal data:

• Identification data

• Contact information

Legal basis for processing:

We base our processing on article 6.1 (b) GDPR. The processing is necessary in order for us to fulfilling our obligations under the agreement to which you are a party.

Retention period:

Getcims will process your personal data for as long as the employment contract is in effect and subsequent two (2) years to fulfil the requirements of the Discrimination Act (2008:567). Further information on how your personal data is processed within the employment relationship can be found in the internal personal data policy.

3.8 Legitimate interests

When we base our processing on article 6.1 (f) GDPR (legitimate interest), we have carefully assessed that that our legitimate interest (as stated above) outweighs your interest in not having your personal data processed, and that the processing is necessary to fulfil the purposes of the processing in question. You (as the data subject) do have the right to object to such processing, please see further in 4.6 below. 

4. YOUR RIGHTS REGARDING getcims’ PROCESSING OF YOUR PERSONAL DATA

As a data subject, you have several rights in relation to your personal data under the GDPR. These rights are listed below. If you wish to exercise your rights, you can contact us at the contact details provided above in section 1 of this privacy policy. 

4.1 Right to information

You have the right to receive information regarding how Getcims processes your personal data. Such information is provided through this privacy policy in connection with the collection of your personal data and is always available at our website [X]. You also have the right to receive specific information in the event of a personal data breach that affects your personal data and there is a risk of e.g. fraud or identity theft. We will communicate such information directly to you by e-mail.

4.2 right of access

You have the right to receive a summary of your personal data which Getcims processes (register extract). However, under certain conditions, Getcims may deny your request for access, e.g. if you request access many times over a short period of time.

4.3 right to rectification

You have the right to have inaccurate or incomplete personal data rectified or completed. The right to rectification applies to both personal data collected from you, or a third party and your possible profile created by Getcims through profiling. You can notify us by e-mail to gdpr_contact@getcims.com if you want us to rectify or complete your personal data.

4.4 right to erasure (’right to be forgotten’)

You have the right to request the erasure of your personal data when it is no longer necessary to process it for the purpose for which it was collected. You can notify us by e-mail to gdpr_contact@getcims.com if you wish us to delete your personal data. However, there are legal requirements and obligations set forth in laws that may prevent us from deleting certain information, such as the Swedish Accounting Act (1999:1078) (Sw: Bokföringslag (1999:1078)). We then ensure that such personal data is not processed other than to the extent required for us to fulfil these obligations and limit the access of Getcims’ employees to such personal data.

You may also have the right to have certain personal data erased when you object to processing under section 4.6 below provided that Getcims does not have an overriding legitimate ground for the processing.

4.5 right to restriction of processing

You have the right to request the restriction of our processing of your personal data in certain cases. If you believe that the personal data we process about you is inaccurate and you have requested rectification, you may request a restriction of processing of your personal data. In such cases, restricted processing will take place during the time we are working on verifying whether the personal data is accurate. You may also request the restriction of our processing of your personal data if the processing is unlawful and you oppose the erasure of the personal data and instead request a restriction of its use. Another scenario where you have the right to request restriction of our processing of your personal data is if we no longer need the personal data for the purposes of the processing, but you need it for the establishment or defence of legal claims. You can also request that our processing of your personal data is restricted if you have objected to processing based on a balance of interests (legitimate interest), in which case the processing of personal data will be restricted during the time we establish whether our legitimate interests outweigh your legitimate interests.

In case the processing has been restricted under any of the above situations, we may only process your personal data, in addition to the retention itself, for the establishment, exercise or defence of legal claims, for the protection of the rights of another person or because you have given us your consent to do so.

4.6 Right to object and automated decision-making

You have the right to object at any time to our processing of your personal data if such processing is based on a legitimate interest. The further processing of your personal data requires us to demonstrate a legitimate reason for the current processing activity. Otherwise, we may only process the data for the establishment, exercise, or defence of legal claims. For reasons related to your specific situation, you also have the right to object to profiling and other processing of personal data concerning you, when the processing of the information is based on the customer relationship between you and Getcims.

You always have the right to object to direct marketing without a balancing of interests.

As a data subject, you also have the right not to be subject to decisions based solely on automated decision-making, where such decision-making results in legal consequences or similarly significantly affects you. You have the right to object to such processing, including profiling. However, this right does not apply if the decision-making is necessary for the conclusion or performance of a contract with you or if you have provided us with your explicit consent. To object, please email gdpr_contact@getcims.com. 

4.7 right to data portability

In certain cases, you have the right to have your personal data transferred to you in a structured, commonly used and machine-readable format to another controller (register extract), provided that the transmission is technically feasible and can be automated. This applies to personal data that you have provided to us and that we process with the legal basis of performance of a contract or based on your consent. You can contact us by e-mail at gdpr_contact@getcims.com if you wish to receive a register extract of your personal data.

4.8 Right to withdraw consent 

Where you have given your consent for the processing of your personal data, you have the right to withdraw such a consent at any time. You can withdraw your consent by notifying us via the contact details provided in section 1 above.

4.9 THE RIGHT TO LODGE A COMPLAINT 

If you believe that we are processing your personal data in breach of the GDPR, you have the right to lodge a complaint with the Swedish Data Protection Authority (Sw: Integritetsskyddsmyndigheten, ‘IMY’) via the contact details provided in section 8 below. For more information on how to lodge a complaint, please visit the IMY website at https://www.imy.se.

5. WHO MIGHT WE SHARE YOUR INFORMATION WITH?

5.1 Transfers of your personal data within the EU/EEA

In order for us to conduct of our business, it is necessary for us to share your personal data with certain third parties.  When doing so, we take all reasonable technical, legal and organisational measures to ensure that your personal data is handled securely and with an adequate level of protection. The following categories of third parties may receive and process your personal data.

Suppliers and sub-contractors

Suppliers and sub-contractors are companies that provide Getcims with the services and functionalities required for us to provide you with our services and products. In most cases, suppliers and/or sub-contractors are companies that only have the right to process the personal data they receive from Getcims, so-called processors. Examples of such suppliers and sub-contractors are financing partners and e-mail- and IT companies. However, in some instances some of these suppliers and/or sub-contractors process your personal data for their own purposes and are thus separately responsible for that part of the personal data processing as independent controllers. To learn more about how these companies process your personal data, we refer you to their privacy policies which you can find in the tables below under section 5.2.

Getcims needs access to services and functionality from other companies that Getcims cannot provide itself. We may therefore share your personal data with suppliers or sub-contractors to access these services and functionalities in the performance of our contractual obligations to you or to fulfil our legitimate interest and for the other purposes set out in this privacy policy. We ensure that the processing involved is necessary to fulfil such interests, and that our interests outweigh your interests not to have your data processed. Based on the circumstances of your individual case, you have the right to object to our processing of your personal data where we rely on legitimate interest in supporting the transfer. More information on your rights can be found in section 4 above.

Advertisement Companies

In order for Getcims to create and realise marketing and advertisement strategies and/or campaigns, it is necessary for us to share your personal data with advertisement companies. We base such transfers of your personal data on our legitimate interests to market our products and business to you and other potential customers. You have the right to object to transfers of your personal data which we base on our legitimate interests. Such objections will be evaluated on a case-by-case basis. You can find more information regarding your rights in section 4 above.

Payment Service Providers, Financial Partners and other Financial Service Providers

We will share your personal data with our payment service providers, financial partners and other financial service providers. This is necessary in order for us to administer your purchases and our payment obligations. Our legal basis for such transfers is performance of the contract which you have entered into with us when purchasing any of our services.

Digital Signature Providers

In order for us to streamline and digitalise our contractual processes, we will share your personal data with digital signature providers when your sign digital agreements with Getcims. We base such transfers of your personal data on our legitimate interests to streamline and digitalise our contractual processes. You have the right to object to transfers of your personal data which we base on our legitimate interests. Such objections will be evaluated on a case-by-case basis. You can find more information regarding your rights in section 4 above.

Customers

Personal information on the people who appear in our influencer database will be shared with our customers as a part of the provision of our services. We base such transfers on the performance of contract which we have entered with the customers and our legitimate interest to conduct and develop our business.

5.2 Transfer of your personal data outside the EU/EEA

Where applicable, we may share your personal data with other companies in a country outside the EU/EEA, a so-called ‘third country’. In a third country, the GDPR does not apply, which may entail an increased risk from a privacy perspective regarding, among other things, the possibility for authorities in a third country to gain access to your personal data and for your ability to exercise control over the personal data. In order to protect and maintain an adequate level of protection for your personal data, such transfers are based either on an adequacy decision of the European Commission or through appropriate safeguards such as binding corporate rules approved by the competent supervisory authority, or the European Commission's standard contractual clauses in combination with organisational and technical safeguards.

You can read more about which countries are considered to have an adequate level of protection on the European Commission's website by following this link: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_en. 

You can read more about standard contractual clauses by following this link: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en. 

We always intend to carry out a risk assessment before a transfer to a third country and take both technical and organisational safeguards to ensure an adequate level of protection. We always strive to transfer as little personal data as possible to countries outside the EU/EEA, and if possible, in anonymised form. For more information on the safeguards that Getcims takes, please see section 6 of this privacy policy.

The tables below show which companies outside of the EU/EEA which might receive your personal data.

Suppliers and sub-contractors

In some cases, your personal data may be shared with suppliers and sub-contractors outside the EU/EEA. This may involve suppliers of, e.g. marketing services, IT services and financial services required to conduct our business, with a registered office or server in a country outside the EU/EEA.

Supplier/sub-contractor Google LLC

Personal data which may be shared

• Online identifiers,

• behavioural data,

• financial information,

• contact information

Description

Google LLC provides Getcims with the analytics software Google Analytics and the advertisement software Google Ads. The usage of these services is necessary for Getcims’ continued business development and marketing, and a transfer of your personal data to Google LLC is necessary in order for Getcims to make use the services.

Google LLC has its registered offices in the USA, a third country where the GDPR is not applicable. Google LLC is however certified under the EU-USA Data Framework Regulation which forms the basis for the third country transfer.

For more information regarding how Google LLC processes your personal data, please visit their data privacy policy: https://policies.google.com/privacy?hl=en-US

Contact information

1600 Amphitheatre Pkwy, Mountain View, CA 94043, USA

Social media

When you interact with us on social media platforms such as YouTube, Instagram, LinkedIn, TikTok, these companies will also collect and process your personal data. This means that a transfer of your personal data, e.g. your images and name, will take place to third countries outside the EU/EEA, namely the USA. The transfer is necessary to enable you to contact and interact with us on our social medias.

Social media: Instagram

Personal data which may be shared:

• Identity information

• Contact information

• Generated data

Description:

By using the services to contact or interact with us, your personal data is processed by the company Meta Platforms Ireland Ltd, a subsidiary of Meta Platforms, Inc.

Meta Platforms, Inc. is based in the USA, a third country with an adequate level of protection according to the European Commission, provided that the receiving company is covered by the EU-USA Data Privacy Framework (‘EU-USA DPF’).

As of the current date, Meta Platforms, Inc. is covered by the EU-USA DPF and all transfers are thus based on the European Commission's adequacy decision.

You can also read more about how Meta Platforms Ireland Ltd. processes personal data in their privacy policy here: https://www.facebook.com/privacy/policy.

Contact information:

Meta Platforms Ireland Ltd. 
4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

Social media: LinkedIn

Personal data which may be shared:

• Identity information

• Contact information

• Generated data

Description:

By using the services to contact or interact with us, your personal data is processed by the company LinkedIn Ireland Unlimited Company, a subsidiary of LinkedIn Corporation.

LinkedIn Corporation is based in the USA, a third country with an adequate level of protection according to the European Commission, provided that the receiving company is covered by the EU-USA Data Privacy Framework (‘EU-USA DPF’).

As of the current date, LinkedIn Corporation is not covered by the EU-USA DPF. Instead, all transfers are based on the European Commission's standard contractual clauses, which you can read more about on the LinkedIn’s website: https://www.linkedin.com/help/ linkedin/answer/62533. 

You can also read more about how LinkedIn Ireland Unlimited Company processes personal data in their privacy policy here: https://www.linkedin.com/ legal/privacy-policy/.

Contact information:

LinkedIn Ireland Unlimited Company 

Wilton Plaza, Wilton Place, Dublin 2, Ireland

Social media: TikTok

Personal data which may be shared:

• Identity information

• Contact information

• Generated data

Description:

By using the services to contact or interact with us, your personal data is processed by the companies TikTok Technology Limited and TikTok Information, subsidiaries of ByteDance Ltd. 

ByteDance Ltd. Is based in the Cayman Islands, a third country without an adequate level of protection according to the European Commission. The transfer is therefore supported by the EU Commission’s standard contractual clauses. For more information on this and  how TikTok Technology Limited and TikTok Information process personal data, please see their privacy policy here:

https://www.tiktok.com/legal/page/eea/privacy-policy/en

Contact information:

TikTok Technology Limited
10 Earlsfort Terrace, Dublin, D02 T380, Ireland
TikTok Information Technologies
4 Lindsey Street, Barbican, London, EC1A 9HP, United Kingdom

Social media: Youtube

Personal data which may be shared:

• Identity information

• Contact information

• Generated data

Description:

By using the services to contact or interact with us, your personal data is processed by the company Google Ireland Limited, a subsidiary of Google LLC.

Google LLC is based in the USA, a third country with an adequate level of protection according to the European Commission, provided that the receiving company is covered by the EU-USA Data Privacy Framework (‘EU-USA DPF’).

As of the current date, Google LLC is covered by the EU-USA DPF and all transfers are thus based on the European Commission's adequacy decision.

You can also read more about how Google Ireland Limited processes personal data in their privacy policy here: https://policies.google.com/privacy?hl=en-US

Contact information:

Google Ireland Limited
Gordon House, Barrow Street, Dublin 4, Ireland

Customers

Our customers are located all over the world. Thus, when providing our services to our customers, personal information will be transferred to each customer’s country of origin, which may be outside the EU/EEA. In order to protect your personal data, our customers are, in addition to when being directly subject to the GDPR, also contractually bound to maintain an adequate level of protection for your personal data in accordance with the GDPR. 

6. How do we protect your personal data?

Getcims takes a range of technical and organisational security measures in order to protect your personal data against loss, misuse, unauthorised access, unauthorised disclosure, alteration or destruction. By combining organizational measures such as access control and incident response plans, with technical safeguards such as firewalls and encryption, we have created a robust defence strategy to protect personal data on our web server from a wide range of potential threats. Our commitment to continuous monitoring, improvement, and adaptation ensures that we stay ahead of evolving security challenges.

For more information about which security measures we take and what they mean for you and your personal data, please send an e-mail to gdpr_contact@getcims.com.

7. updates to this privacy policy

We are constantly improving and developing our services, products and our website getcims.com, and the content of this privacy policy may therefore change over time. We encourage you to read this privacy policy every time you use our services and products. If significant changes are made to our services, products or this Privacy Policy, we may notify you by e-mail or by other appropriate means.

8. Contact information to getcims and the swedish data protection authority

Getcims is constantly working to ensure that we comply with data protection legislation in all the markets where we offer our products and services. If you have questions or complaints about our processing of your personal data, or if you wish to enact any of your rights as stated above in section 4, you are welcome to contact us at gdpr_contact@getcims.com.

In case you are not satisfied with our handling of your query or case, you have the right to file a complaint with the Swedish data protection authority (Sw: Integritetsskyddsmyndigheten, ‘IMY’).

Integritetsskyddsmyndigheten

E-mail: imy@imy.se 
Website: www.imy.se  

This Data Privacy Policy was last updated 2024-09-04.