Privacy Policy

CCUG Privacy Policy

In response to the General Data Protection Regulation (GDPR) (EU) 2016/679 of the European Parliament and the Council of 27 April 2016, replacing the 1995 Data Protection Directive 95/46/EC.

This Privacy Policy explains how CCUG collects and stores personally identifiable information (personal data), as well as detailing the rights of the customer pertaining to the personal data.

When you become a customer of CCUG, you thereby accept the collection and storage of your personal data detailed in our Privacy Policy. CCUG is the Data Processor for the personal data we collect from our customers, as outlined by our Disclaimer and this Privacy Policy. We continuously improve our guidelines and how we process your personal data. This may lead to changes in this Privacy Policy. We recommend that you review this Privacy Policy periodically so that you are fully informed, concerning the information that we collect, how we use it and under what circumstances it may be disclosed. We inform our customers of changes to this Privacy Policy.

How does CCUG collect and store personal data?
CCUG collects and stores personal data when doing so is necessary to provide quality products and services or when required by law. We store personal data for as long as necessary in order to fulfil our responsibilities and obligations

What information does CCUG collect and why?
When you enter the website, CCUG may automatically collect connection information, such as internet protocol (IP) address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform. This information is used for maintenance, troubleshooting and auditing of the website and webserver.
When you become a customer of CCUG, we collect the following information: name of customer; institution affiliation; postal address; phone number; fax number; e-mail address. CCUG collects these data to enable us to provide historical and background information for our products and to enable us to invoice customers in accordance with regulations.
CCUG may e-mail customers, notifying of disruptions to services, regarding products, changes to our terms and conditions or other information. At any time, you may opt-out of receiving information from CCUG by sending an e-mail requesting to be removed from mailing list. When customers use products and services of CCUG, the data on how they are used is collected. This information will never be shared with third-parties.

Does CCUG have a Data Collection Agreement?
Yes. In order to help CCUG customers prepare for GDPR, we have prepared a Data Collection Agreement. Contact CCUG at curator@ccug.se if you may need to sign one with us.

What rights do CCUG customers have?
As a customer of CCUG, you have the right to review all information CCUG has saved, pertaining to you as an individual. You may at any time contact CCUG to verify the information saved on your account. Send your request to curator@ccug.se for processing. We will respond within one month of receiving such a request. If we anticipate that it will take longer to process your request, we will inform you of the reason for the delay.
To insure that we share information only with the individual indicated in the request, you may be required to submit your scanned identification document (passport, identification card, etc.). The image will be deleted from our servers after the request has been processed.
You may request that CCUG deletes all personal data saved pertaining to you as an individual (‘The Right to be Forgotten’). Please note that we may be obligated to continue to store some personal data in order to meet our legal obligations, particularly laws regulating invoicing and tax processing.

Data Protection Officer
If you have questions or concerns regarding CCUG collection and storage of personal data, we encourage you to contact the Data Protection Officer (DPO) for Sahlgrenska University Hospital. You may contact him/her at xxxxxxx@vgregion.se. (Note: name and contact information for the DPO to be determined.)

Regulatory Authority
If you have concerns regarding how CCUG collects and stores your personal data, you may contact the relevant regulatory authority. Datainspektionen (The Swedish Data Protection Authority) is the governing office for Sweden. You may find contact details at www.datainspektionen.se .

Last updated: 2018 June 01