top of page

Privacy Notice

1. Personal Data Responsibility and Basis for Processing


This Privacy Notice applies when SUNMICO AB ("SUNMICO," "we," "our," "us"), business registration number 556330-9748, located at Östgötagatan 93 (1 st floor), SE-116 64 Stockholm, Sweden, processes personal data relating to individuals using SUNMICO services ("you," "your"). SUNMICO's processing of personal data complies with the General Data Protection Regulation (EU) 2016/679 ("GDPR"). If you want to learn more about how we use cookies, please see our Cookie Notice.


Processing of personal data when using SUNMICO services is based on an agreement with the company that you, the data subject, represent. Other instances include when you submit a contact request through our website or via e-mail, subscribe to our newsletter, interact with us on social media, or participate in a webinar or event we organize. We may also process your personal data if we believe the company you represent may be interested in our services. Additionally, we process personal data to comply with legal obligations under applicable laws and governmental decisions.

 

2. Personal data processed


Personal data refers to any information that can be directly or indirectly linked to a living person. SUNMICO collects and processes various types of personal data within the scope of its activities.


SUNMICO may collect the following personal data from you:

  • Information on identity – e.g. first and last name.

  • Contact details – e.g. address, email address, phone number and job title.

  • Newsletter statistics – e.g. topics of interest, open and click-through rates.

  • Participation and feedback – e.g. data collected before, during or after an event or webinar.

  • Payment information – e.g. data necessary for payments, invoicing, or financial transactions with SUNMICO. 

  • Social media activity – e.g. information on interactions with us via social media.

  • Cookie consent – for placing cookies in your browser to collect anonymized data on website user behaviors, including clicks, time spent on pages, navigation patterns and interactions.

​Additionally, we collect information about the organization you belong to and its contact details.


3. Purposes of the processing


SUNMICO processes your personal data for the following purposes:

  • To fulfil contractual obligations.

  • To provide services and communicate with you.

  • To send information about our consultancy services or other activities that you may have indicated an interest in or registered for.

  • To conduct targeted marketing via social media, other digital channels or events.

  • To handle inquiries and complaints.

  • To facilitate invoicing.

  • To comply with legal obligations imposed by authorities and applicable laws.​

 

For detailed information on the purposes and legal basis for processing, please refer to the table in section 5 below.


4. Retention of personal data


Personal data is retained as long as necessary to fulfill the specified purposes. Most personal data is automatically deleted after the statutory retention period following contract termination.


For instance, under the Swedish Accounting Act, SUNMICO is required to retain specific personal data (e.g., invoices and accounting documents) for seven years. Such data will only be used for accounting purposes.


Client related data is retained while you are considered a client of SUNMICO. After contract termination, most of your data will be deleted unless retention is required for other purposes. Certain data, such as identity and contact details, will be kept for 36 months for marketing and follow-up purposes.


For full details on data retention periods, see the table in section 5 below.


5. Deletion of personal data


Personal data will be deleted or anonymized when it is no longer necessary for retention. Once deletion is executed, it cannot be reversed, and no individual can be linked to the remaining information.

​​

​​

6. Recipients of personal data

 

SUNMICO collaborates with various companies, including partners and suppliers. As a result, we may share your personal data with third parties when necessary. The following types of recipients may process your data as our sub processors (meaning that they are contractually bound to maintain confidentiality and may not use the data for their own purposes):
 

  • Web hosting platform provider

  • Notification services that we use for communication (e.g., newsletters or reminders)

  • Social media platforms

  • Online accounting system

  • Sub-contractors such as freelance consultants who may be engaged in delivering services to you on specific agreed assignment(s)

SUNMICO may also be legally required to disclose information to different authorities. In some cases, we may be prohibited from informing you about such disclosures.

 

SUNMICO primarily processes data within the EU/EEA. If data is transferred outside this region, we ensure the recipient maintains a comparable level of data protection through contractual agreements.​

7. Information Security

 

As a data controller, SUNMICO implements appropriate technical and organizational measures to safeguard personal data, adhering to GDPR regulations. We maintain internal policies and procedures to address security risks and prevent unauthorized access or leaks.

In the event of a security breach (a "personal data breach"), we may contact you in accordance with Article 34 of the GDPR.

 

8. Your Rights

 

You have the following rights regarding your personal data:

  • Right to Withdraw Consent:
    You may withdraw consent at any time without affecting the lawfulness of prior processing. Email us at info@sunmico.com.
    If you would like to review or change your Cookie consent settings, refresh your browser and click on the widget in the lower left-hand corner of the website, ''Manage Cookies''.

  • Right to Restrict Processing:
    You may request that processing be limited to storage or object to certain processing activities. For instance, you may choose to unsubscribe from newsletters and other mailings by following a link in these mailings or by sending an e-mail to info@sunmico.com.
     

  • Right to Object:
    You may object to processing based on legitimate interests or for direct marketing purposes. Contact us at info@sunmico.com.
     

  • Right of Access:
    You may request a record of how your data is processed, which will be provided within one month. Request this by emailing info@sunmico.com.
     

  • Right to Rectification:
    You may request corrections to inaccurate personal data or add missing details. Contact us at info@sunmico.com.
     

  • Right to Data Portability:
    You can request the transfer of your data to another company or yourself, except for legally retained data or data pertaining to our specific discussions. Email info@sunmico.com.
     

  • Right to Erasure:
    You may request deletion of personal data not required for legal compliance or certain other activities such as contractual obligations. Email info@sunmico.com.

​Please note that SUNMICO may ask you for additional information to help us verify who you are before completing any of the above requests.

 

If you believe we are not complying with this privacy notice, we encourage you to contact us at info@sunmico.com. You also have the right to file a complaint with the Swedish Data Protection Authority (www.imy.se).

9. Privacy Notice Updates

We reserve the right to modify this privacy notice at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it.

 

This Privacy Notice was last updated on March 26, 2025.

bottom of page