Privacy policy - IFS products and services

PRIVACY POLICY - IFS PRODUCTS AND SERVICES 

This privacy policy (the “Privacy Policy”) applies to the data processing carried out by IFS through its IFS Touch Apps, IFS Aurena Bot and [x] on-premise and IFS Touch Apps, IFS Aurena Bot and [x] in the IFS cloud (including IFS Applications Software as a Service (“Saas”) and IFS Managed Cloud). (collectively, the “Services”). Through this Privacy Policy, we inform you about our processing of your personal data and your rights.

COLLECTION AND PROCESSING OF PERSONAL DATA

Our processing of your personal data may be subject to the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and other applicable legislation for the protection of privacy, which grants you certain rights as an individual. Personal data is information that can be used to uniquely identify a specific natural person.

By using the Services, you (the end-user) consent to the privacy practices described in this Privacy Policy.

WHAT PERSONAL DATA WE COLLECT

When you use the Services, we may collect information, including your user name, password, your device's operating system version and device description and other information you transmit or receive utilizing the Services.

HOW AND WHY WE PROCESS PERSONAL DATA

Personal data collected is used for IFS´s performance of the relevant Services, e.g. for providing access to the relevant service, for user identification purposes and for establishing and assessing charges relating to the Service. We may also use personal data for internal purposes such as auditing, data analysis, security and research to improve IFS’s products and services. Our processing of personal data is based on point (b) of Article 6(1) of the GDPR (performance of a contract), point (f) of Article 6(1) of the GDPR (legitimate interest) and point (c) of Article 6 (1) of the GDPR (complying with legal obligations).

RETENTION OF PERSONAL DATA

We store personal data a) for as long as it is necessary in order to perform the Service and in order to fulfil the purpose set out above or (b) until you object to our use of the data. Where IFS is legally required to retain personal data, or where IFS retains it for the purpose of legal action and/or reasons of enforcement, the personal data may be retained until end of the relevant period prescribed by or allowed under applicable law, or, as applicable, until the legal action or enforcement in question has been settled and/or effected.

DISCLOSURE TO THIRD PARTIES

IFS will only make available the personal data to you, the IFS customer in question, said IFS customer’s administrators of the Service and IFS´s cloud administrators of the Services as applicable. The personal data will not be shared by IFS with any other third parties, unless this required in order to provide the Service and then subject to the below. IFS has affiliates, and utilises third-party service suppliers, which are domiciled within the European Economic Area (the “EEA”) as well as outside of the EEA. With regard to personal data processed under this Privacy Policy, any transfer to a party outside the EEA will be made under the Standard Contractual Clauses (according to EU Commission Decision 87/2010/EC; “SCCs”) or under such other safeguard as may be adopted and/or approved by the EU Commission (including any future replacement or amendment of the SCCs or such safeguards), in order to ensure that the personal data is protected at a level corresponding to the level applicable within the EEA.

It may be necessary, by law, legal process, litigation, and/or requests from public and governmental authorities within or outside your country of residence, for IFS to disclose your personal data. We may furthermore disclose data if we determine that for purposes of national security, law enforcement, or other issues of public importance, disclosure is necessary or appropriate.
The Service or related services may allow use of and/or contain references and/or links to third-party services (including references and/or links to privacy policies pertaining to third parties). IFS is not responsible for any such services or for any non-IFS privacy practices. Please read any such third-party privacy terms carefully.

You may obtain further information by contacting us at the address set out under the heading ”Privacy Policy Updates and Questions”, below.

PROTECTION AND STORAGE OF PERSONAL DATA

IFS takes precautions, including industry-standard technical measures and organizational measures, to safeguard your personal information against misuse and unauthorized access, by for example using encryption when transmitting any personal data. The personal data is stored locally, as applicable, on the relevant device and/or in the IFS cloud.

EXPORT CONTROL COMPLIANCE

IFS is subject to applicable export laws, trade sanctions, and embargoes of , including but not limited to, the EU and the US. This means that IFS is obliged to take action preventing that IFS deals with parties listed on government-issued sanctioned-party lists. Such actions may include checks of user registration and/or any identity information a user provides, contacts with such users to confirm identity information as well as restricting access to IFS’s Services and systems if there is a match against any applicable sanctioned-party list.

YOUR RIGHTS

You are entitled to request access and further information concerning processing of your personal data, or request that we correct, rectify, complete, erase or restrict the processing of your personal data. You are entitled to obtain a copy of the personal data that we process relating to you free of charge. For any additional copies requested by you, we may charge a reasonable fee based on administrative costs.

If you have any complaints regarding our processing of your personal data, you may file a complaint to the competent data protection authority. You can find out more about the local data protection authorities under the following link http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm.

PRIVACY POLICY UPDATES AND QUESTIONS

IFS may update this Privacy Policy from time to time. When we change the policy in a material way, a notice will be posted on our website along with the updated Privacy Policy.

Industrial and Financial Systems, IFS Aktiebolag (Swedish company reg. no 556122-0996) is the data controller for the purposes of this Privacy Policy.

If you have any questions or concerns about the Privacy Policy, please contact IFS Data Protection Officer Dena Dervanović at privacy@ifs.com