How we process your personal data

The General Data Protection Regulation aims to prevent personal data processing that invades your privacy. Your personal data may only be processed if you have provided consent or if it is permitted by the General Data Protection Regulation or other laws.

 

Business Region Göteborg (BRG) is responsible for all personal data processing conducted within its operations. BRG respects privacy and strives to protect the privacy of all individuals who come into contact with us regardless of context.

BRG processes personal data in its efforts to create favourable conditions for the region's trade and industry within our core areas, which are Business Development, Establishment & Investment, and Clusters & Innovation. All personal data processing within BRG aims to support these efforts.

What is personal data?

Personal data is information that can be linked to a natural person. Name, personal identity number, e-mail address and telephone number are examples of personal data. Images, films and audio recordings are also considered personal data, provided that it is possible to identify individual persons.

Personal data processing

Under the General Data Protection Regulation, the concept of processing encompasses essentially everything that can be done with personal data, such as collecting, recording, storing, adapting, correcting, transmitting or erasing. All processing is subject to the requirements of the General Data Protection Regulation, regardless of whether the processing takes place electronically or manually.

BRG processes your personal data in compliance with the legal bases contained in the General Data Protection Regulation. In those cases where we request your consent, you may revoke that consent at any time.  Personal data processing necessary for the performance of a contract entered into with you, for compliance with a legal obligation or for the performance of a task carried out in the public interest is permitted without consent. We keep your personal data for as long as is necessary to fulfil the purpose of the processing. We must comply with archival law and other laws, which may stipulate longer retention periods.

How have we collected your personal data?

At BRG, your personal data is recorded whenever, for instance, you e-mail us or contact us via one of our digital channels. We may need to store your personal data on such occasions. This also applies when you choose to subscribe to newsletters or other information from us.

Please keep in mind that if you use social media, such as Facebook or LinkedIn, to get in touch with us, the information and your personal data is always transmitted to a third party (the company or organisation running the social media channel). For your own sake, we recommend that you do not send us sensitive information via social media.

How is your data protected?

BRG is obligated to ensure that all personal data are protected by appropriate technical and organisational measures.  BRG ensures a level of security appropriate to any risks associated with the processing of personal data. 

Since BRG is a public body, we are subject to freedom of information legislation. This means that everyone has the right to request access to all information held by BRG. This information can include personal data. The obligation to disclose information applies provided that the information is not considered confidential under the Swedish Public Access to Information and Secrecy Act.

Your rights when your personal data is processed by us

The General Data Protection Regulation gives you the right to:

  • Request access to your personal data
  • Request the rectification or erasure or restriction of processing of your personal data. (Provisions stipulating that personal data may not be erased or restricted may exist, such as in archival law, and if so these provisions take precedence.)
  • Request portability
  • Object to the processing of your personal data. (In this case, BRG will not continue to process your data unless we are forced to do so for other reasons, such as legal grounds.)
  • Complain about our processing of your personal data to the data protection authority

You can read about your rights in relation to your personal data on the Swedish Data Protection Authority’s website (only available in Swedish)

Personal data controller

BRG is the personal data controller for the processing of personal data within the company. BRG is owned by the City of Gothenburg.
 

Questions?

In matters concerning our personal data processing, please e-mail info@businessregion.se or call 031-367 61 00.

We also have a data protection officer, named Martin Brunhage. He can be reached at dso@intraservice.goteborg.se

 

Tip a friend