Privacy Policy
Privacy Policy

Privacy Policy

Privacy Policy

For us at GoalEnvision Strategy Solution AB 559078–0697 , personal integrity is important. For us, it is important that you can feel safe with how your personal data is processed with us. We therefore always want to strive for a high level of protection for your personal data. In this privacy policy, we inform you about how we collect and use your personal data. We also describe your rights and how you can assert them.


You are always welcome to contact us if you have questions about how we process your personal data.


  1. Definitions

Personal data is information that can be directly or indirectly attributed to a living natural person. Examples of such data are names, personal e-mail addresses, telephone numbers and the like, but even encrypted data can constitute personal data if they can be linked to natural persons.


Processing refers to any act that is carried out with personal data, for example when collecting, storing, changing, using or deleting.


Personal data controller refers to a natural or legal person, public authority, institution or other body that alone or together with others determines the purposes and means for the processing of personal data. For all processing that takes place according to this policy, GoalEnvision is Strategy Solution AB 559078–0697 personal data controller.


  1. What personal data do we collect about you and when?

Information that you yourself provide to us

We mainly process your name, your e-mail address and your telephone number. Sometimes additional information may be processed but only if you yourself can be considered to have made the information public. Other personal data that may be processed relates to contacts with us internally or with our employees. The personal data is collected via registration and login to our service and through forms filled in by you.



Information from other sources

We may also process personal data collected from someone other than you, for example from your employer or when the company you work for becomes a customer, information may be collected about people in a leading position at the company.


When we collect personal data from someone other than you, it involves the following categories of data:

Contact details: name, telephone number and e-mail address

Information on employment: professional group and position


  1. Why do we process your personal data?

We process your personal data for the purpose of providing the services you have requested, which includes allowing colleagues within companies to identify each other. We will also process your personal data to maintain and administer our relationship with you and, where applicable, to administer the agreement with you or with your employer. We may also inform you about our services and other things that we find to be in your interest as well as ours. We market ourselves by sending information about our business to your e-mail address, it may also happen that we send out surveys to evaluate our work or our services.


  1. What legal basis do we have for processing your personal data?

We always process your personal data in accordance with applicable legislation. We process your personal data when it is necessary to fulfill a contract with you or respond to your request for service or when we have another legitimate and justified interest in processing your personal data, for example an interest in being able to market our services. We also process your personal data when the processing of personal data is necessary to fulfill a legal obligation.


If we process your personal data for any purpose that requires your consent, we will obtain your consent in advance. Certain personal data may be mandatory to provide, for example in order for us to provide a service or fulfill another request from you. This will then be stated or made clear in connection with the data being collected.



  1. Who can we share your personal data with?

Personal data assistants

In some situations, it is necessary for us to engage other parties in order to carry out our work. This is, for example, about us using different IT suppliers. They are to be considered as personal data assistants to us and we have signed personal data assistant agreements in these cases. The responsibility for personal data remains with us as a company.


We check all personal data processors to ensure that they can provide sufficient guarantees regarding the security and confidentiality of personal data and sign personal data processor agreements. When personal data assistants are engaged, it is only for the purposes that are compatible with the purposes we ourselves have for the processing because we are still the personal data controller.


Actors who are independently responsible for personal data

We also share your personal data with certain other actors who are independent personal data controllers. Some information is also provided for statistical purposes.


When your personal data is shared with an actor who is an independent personal data controller, that organization's privacy policy and personal data handling apply.


We may engage suppliers and partners to perform tasks on our behalf, for example to provide IT services or help with services. The performance of these services may mean that these recipients gain access to your personal data.


We may also disclose personal data to third parties, such as the police or another authority, if it concerns the investigation of a crime or if we are otherwise obliged to disclose such information based on law or authority decision.


  1. Where do we process your personal data?

Your personal data is processed within the EU/EEA.


  1. How long do we store your personal data?

We never save your personal data longer than is necessary for the respective purpose. We have developed thinning routines to ensure that personal data is not saved longer than is necessary for the specific purpose. How long the storage period can be varies depending on the purpose of the processing and how long the data is necessary for the purpose. After that, we will securely delete or de-identify your data so that it can no longer be linked to you.


According to the Accounting Act (1999:1078), we are obliged to save certain personal data for at least seven (7) years.


  1. Cookies

Our website uses cookies. By law, we must inform our visitors about this, what the cookies are used for and how to opt out. You can find more information here (link to website)


  1. What are your rights as a data subject?

As a registered user, you have a number of rights under current legislation. Here we list these rights.


Right to register extracts (right to access)

If you want to know which personal data we process about you, you can request access to the data. When you submit such a request, we may ask some questions to ensure that your request is handled efficiently. We will also take steps to ensure that the data is requested by and provided to the correct person.


Right to rectification

If you discover that something is wrong, you have the right to request that your personal data be corrected. You can also complete any incomplete personal data. In some cases, you can make corrections yourself, which we will then inform you about.


Right to erasure

You can request that we delete the personal data we process about you, among other things, if:

  • The data are no longer necessary for the purposes for which they are processed.
  • You object to a balance of interests we made based on our legitimate interest, where your reason for objection outweighs our legitimate interest.
  • The personal data is processed in an illegal manner.
  • The personal data has been collected about a child (under the age of 13) for whom you have parental responsibility
  • If the information was collected based on your consent and you want to withdraw your consent


However, we may have the right to refuse your request if there are legal obligations that prevent us from immediately deleting certain personal data. It may also be the case that the processing is necessary for us to establish, assert or defend legal claims.


Right to limitation

You have the right to request that our processing of your personal data be restricted. For example, if you request correction because you believe that the personal data we process is incorrect, you can request limited processing during the time we need to check whether the personal data is correct.


If, and when, we no longer need your personal data for the stated purposes, it is our normal routine to delete the data. If you need the personal data to be able to establish, assert or defend legal claims, you can request limited processing of the data from us. This means that you can request that we do not clear and delete your data.


If you have objected to personal data processing by us on the basis of a balancing of interests as a legal basis, you can request limited processing for the time we need to check whether our legitimate interests outweigh your interests in having the data deleted.


If the processing has been restricted according to any of the situations above, we may only, in addition to the storage itself, process the data to establish, assert or defend legal claims, to protect someone else's rights or if you have given your consent.


The right to object to certain types of treatment

You always have a right to object to any processing of personal data based on a balancing of interests. You also always have the right to avoid direct marketing.




Right to data portability

As a registered user, you have the right to data portability (transfer of personal data) if our right to process your personal data is based either on your consent or fulfillment of an agreement with you. A prerequisite for data portability is that the transfer is technically possible and can take place automatically.


Manage your rights

The application for a register extract or if you want to invoke one of your other rights must be in writing and signed by the person to whom the extract refers. We will respond to your requests without undue delay and within 30 days at the latest. Email to our email address below. As far as possible, the email should be sent from the email address you are registered with us.


  1. How is your personal data protected?

We work actively to ensure that personal data is handled securely. This applies both through technical and organizational protective measures. Such measures are, for example, access restriction through password protection, firewalls and encryption. Our website also has HTTPS protection which stands for HyperText Transfer Protocol Secure and ensures that visitors have a secure connection to our website. Such protection encrypts the connection between users and the website server. An encrypted transmission of information means that passwords and other important data are protected and remain private.


  1. Supervisory authority

The Privacy Protection Authority is the authority responsible for monitoring the application of the legislation around data protection and privacy. If you believe that we are acting incorrectly, you can contact the Swedish Data Protection Authority, see https://www.imy.se .


  1. Our contact details

Contact us with questions about how we process personal data. If you have questions about how we process personal data or have a request in accordance with the above rights, you are always welcome to contact as below:





Contact information :

GoalEnvision Strategy Solution AB, 559078–0697

Magnus Ladulåsgatan 1, 118 65 Stockholm




  1. Changes to the privacy protection policy

We reserve the right to make changes to our Privacy Policy. You will always find the latest version on our website. In the event of changes that are of decisive importance for our processing of personal data, this will be communicated to you.