Data Controller
Indicare AB (company registration no. 559571-2091), hereinafter “Indicare”, is the data controller for the processing of personal data carried out within the scope of our own operations, including our website, marketing activities, and customer relationships.
Contact:
info@indicare.se Roles under GDPR
Indicare provides a cloud-based service for managing regulatory inspections, property-related documentation, and follow-up processes.
- Indicare acts as data controller for personal data relating to our own contacts (e.g., customer representatives, suppliers, and partners).
- Indicare acts as data processor for the processing of personal data carried out in the service on behalf of customers.
A Data Processing Agreement (DPA) is entered into with all customers in accordance with Article 28 of the GDPR.
Categories of personal data
Data processed by us as Data Controller
- Name
- Job title
- Company information
- E-mail address
- Phone number
- Communication history
- Billing information
Data processed within the service (processor role)
May include personal data related to:
- Properties and facilities
- Inspection-required objects
- Documentation and reports
- User accounts and access rights
Processing is limited to what is necessary for the functionality of the service and the customer’s purposes.
Purpose and Legal Basis
Personal data is processed in order to:
- Perform contracts with customers
- Provide, administer, and develop the service
- Ensure information security and traceability
- Comply with legal obligations
- Manage customer relationships and support
Legal bases for processing:
- Contract (Article 6(1)(b) GDPR)
- Legal obligation (Article 6.1 c GDPR)
- Legitimate interest (Article 6.1 f GDPR)
- Consent where required (Article 6.1 a GDPR)
Retention and Deletion
Personal data is stored only for as long as necessary for the purposes for which it was collected, or as required by law.
Customer data is deleted or returned in accordance with the terms of the customer agreement upon termination of the contractual relationship.
Security and Data Storage
Indicare implements appropriate technical and organizational security measures in accordance with Article 32 of the GDPR, including:
- Access controls and authorisation management
- Encryption where applicable
- Logging and traceability
- Regular safety review
Personal data is processed and stored within the EU/EEA unless otherwise agreed.
Transfer to third parties
We only share personal data with:
- IT providers and partners (data processors)
- Authorities when required by law
All suppliers are covered by personal data processing agreements.
Data Subject Rights
The data subject has the right to:
- Request access to their data
- Request correction
- Request deletion
- Object to treatment
- Request restriction of processing
- Get data portability
Requests should be sent to
info@indicare.seYou also have the right to lodge a complaint with the Swedish Authority for Privacy Protection (IMY).
Terms of Service – Indicare
Indicare provides a cloud-based service for managing regulatory inspections and related property documentation.
Agreement
Use of the service is governed by a separate customer agreement, quotation, or procurement agreement.
Customer’s responsibility
The customer is responsible for:
- Ensuring that registered data is accurate
- Assigning and administering access rights correctly
- Using the service in compliance with applicable legislation
Availability
Indicare strives to maintain high operational reliability and availability in accordance with the agreed service level.
Intellectual Property Rights
All rights to the software and system belong to Indicare AB or its licensors.
Limitation of Liability
Indicare is not liable for indirect damages, loss of profit, or consequential damages, unless otherwise required by mandatory law.
.svg)
