As a serious operator, we are committed to handling your personal data in a safe and secure manner.
Applicable from May 2018
When you place a booking with us, we must make certain decisions about how and why your personal data must be processed to execute the order. As the data controller, we are thus responsible for protecting your personal data throughout the travel booking process.
We explain our procedures as data controller in this Privacy Statement, which describes our guidelines for personal data processing and what types of data we store, the purposes of our personal data storage and the ways in which we collect, store, and use and disclose these data.
Our CEO acts as the data controller on behalf of DMC Scandinavian Incentives AB and is thus responsible for the company’s processing of personal data.
Collection and storage of personal data
We store the following personal data about our customers:
- Data that you provide to us as a customer
DMC Scandinavian Incentives processes the personal data that you provide when you register with us and data that you otherwise provide voluntarily and that are necessary for the booking of the event.
The following standard data may be collected:
- Full name
- Telephone number
- Email address
- Data we collect when you use our services
We collect data which confirm that you have made your journey/event and which of our services you have used at any given time. The purpose is to enable us to assist you, if required, during your journey, and to provide any assistance needed in case of unforeseen events. We also use these data to ensure that you receive the right invoice. .
Purpose of the processing
We process the data to enable us to meet our obligations under our agreements with our customers. This means booking the desired journey, with the supplementary services that this entails. In this way, we handle the requirements of our customers and travellers securely and ensure that the practical arrangements of the journey are taken care of as effectively as possible before, during and after the journey.
Basis of the processing
The personal data are used to perform the purchase agreement, i.e. to make the travel booking possible. The legal basis for this processing is Article 6(b) of the General Data Protection Regulation.
If you have given your consent to this, the data are also processed to provide you with information, offers and service in connection with your purchase via email, telephone and text message. Your details are kept in the Pipedrive system. The legal basis for this processing is Article 6(a) of the General Data Protection Regulation. You may decline to receive such information from us at any given time.
Disclosure of data to third parties
To enable us to meet our contractual obligations, we disclose necessary data to our partners:
Data will subsequently be disclosed to the hotels which are included in the booking.
In connection with visa applications, the necessary personal data, itinerary and passport details are disclosed to the embassy of the country in question.
If you form part of a group journey arranged by DMC Scandinavian Incentives, your participant data are registered in our Inhouse Data.
Erasure of personal data
Data which we have received in connection with your purchase are stored in our active customer register for 3.5 years. Data which we are obliged to store in pursuance of the Swedish Bookkeeping Act are stored for up to seven years in accordance with the requirements of the Act.
Rights of the data subject
We process your personal data in accordance with the Swedish Act relating to the Processing of Personal Data and the accompanying current regulations. Please note that you may demand access to and transmission of your own personal data as well as rectification or erasure of data.
You may lodge a complaint with the Swedish Data Protection Authority about data processing which is contrary to the rules.
We protect your personal data by means of physical and virtual access and supply control as well as encryption of the sensitive parts of the data provided.
We do not store data for longer than necessary for our business purposes or to meet our legal obligations. However, you should note that we may keep some data after you have closed your account with us, for example if this is necessary to meet our legal obligations, including to keep data for tax and accounting purposes.
Inquiries about data registration, rectification and erasure may be sent in writing to the following addresses: