GDPR and Data Policy
Rud Pedersen Group GDPR Policy
2. Our Organisation
2.1 Rud Pedersen is a Public Affairs Bureau with offices in Denmark, Norway, Sweden, Finland, Belgium, Germany, the UK, Poland and Estonia. Each office is an independent legal entity belonging to the same group.
2.2 We are a specialized communications consultancy which advises companies, NGOs, municipalities and other organisations regarding the political process in national and international contexts.
3. Processing of Personal Information
3.1 During the course of our work, we collect personal information for the purpose of uncovering the political process through political analyses and gaining insight into relevant politicians and stakeholders in relation to a given political context.
3.2 We process the following information:
Name and other publicly available information, e.g. occupation, contact information and political orientation at a personal and organisational level.
Political history, e.g. former involvement in political discussions.
Work area and priorities, e.g. an organisation’s or entrant’s priorities in a political area.
Process and influence, e.g. an organisation’s or entrant’s role in a political process, including the influence on such process.
4. Purpose of Processing
4.1 The purpose of our processing of personal information is to inform our clients about the political context of a given case within a given political area. Our ability to deliver a comprehensive and unique service to our clients regarding the clients’ political interest deeply depends on our profound knowledge about the stakeholders and other persons characterizing the political landscape.
4.2 Our service to the clients is solely delivered with focus on the political aspects of a case. Any personal information is presented neutrally and with attention to the political and economic aspects only. Therefore, individual persons’ private details are never in focus – attention is made solely to information relevant on a professional, political level.
4.3 As a consequence of the purpose specified above, we strictly process information from:
The registered persons, e.g. from social media or media statements
Commonly recognized public media, e.g. newspapers, news media, the website of the Parliament, political programs, ministerial websites, etc.
Information gathered through our social network, including our continuous dialogue with political entrants, the civil service, politicians, journalists, NGOs, etc.
4.4 All employees of Rud Pedersen have been instructed to solely collect and process personal information which is correct and necessary to fulfil the described purpose.
5. Legal Grounds of Processing
5.1 We process personal information in accordance with our legitimate interest in carrying on business with analyses and general information regarding the political process. We conduct our business on conditions, which do not override the interests of the registered persons’ right of data protection and privacy, cf. Article 6(1)(f) in the GDPR. We process special categories of information with respect to Article 9(2)(e) and (g).
6. Transfer of Personal Information
6.1 We share personal information with our Group companies in the EU as part of our international profile and our interest in delivering cross border services.
6.2 We transfer personal information to our entrusted data processors, who perform services for us, including cloud services or other IT infrastructure service providers. Our data processors are subject to the same security requirements as Rud Pedersen and they have no independent right to use the data. All our data processors are established in the EU/EEA.
6.3 We forward personal information to our clients. Our clients are responsible for their own use of data and, for confidentiality reasons, we do not disclose information about our clients.
6.4 We do not transfer, share or forward personal information in any other way than specified above.
7.1 We keep personal information for as long as it is necessary to fulfil the purpose of the processing. Therefore, the storage time depends on the character of the case and the stakeholders’ individual position and influence over time. On these grounds, we do not automatically delete all information at a specific date or time.
7.2 Our advice and use of information is dependent on our continuous updating of data, meaning that we do not keep standalone and/or historical analyses, which dates more than 7 years back in time.
8. Your Rights
8.1 At any time, you are entitled to ask us what information we process about you. In this case, we will be able to confirm or invalidate whether your information is processed or not, but we do not provide a copy of such information, as our analyses and stakeholder mapping are core values in our business and are therefore considered business secrets. If you become familiar with a specific matter, you may of course ask us to rectify wrongful data, including deleting, objecting to or limiting our continued processing.
8.2 Please note that you cannot exercise your rights contrary to our continued processing, if the processing is necessary for our fulfilment of any provision of the law. The same applies if our processing is litigation.
8.3 If you wish to contact us with regard to the processing of your personal information, please send an email to [email protected].
8.4 In case you do not feel that we have responded adequately to your inquiry, you are welcome to write again. If your inquiry is an objection to our continued processing of your personal information, we kindly ask you to further explain the reason for your objection. We process any objection with confidentiality and do not store such data with other personal information.
8.5 If you wish to make a complaint, you may contact the Swedish Data Protection Agency.
9. Security Measures
9.1 We have implemented a number of technical and organizational measures to ensure the proper protection of our data against unauthorized access. We have also implemented a fine mesh of control for our employees’ access to different types of data.
9.2 Our security measures are subject to continuous updates and include the following:
- Centralized user database for all computers, mail accounts and wireless network
- Password protection, including use of complex passwords and periodic change of passwords
- Encryption of computers, file-sharing services and cloud traffic
- Firewall, anti-virus, anti-malware and filtration of data traffic
- Automatic security updates
- Separate guest network
9.3 All data is stored on servers within the EU/EEA.
Last updated on 2022-03-23
1. General information
1.1 This website is owned by Rud Pedersen Public Affairs Company AB, 556638-9887, Klarabergsgatan 60, 111 21 Stockholm, Sweden
1.2 Rud Pedersen (”we”, ”our”, ”us”) are concerned with protecting your personal data.
1.3 This policy (the ”Personal Data Policy”) explains which personal data concerning you we collect when you visit our website (the ”Website”), when and why we collect the personal data, how we use them, the conditions of our disclosure to third parties, as well as how we secure the stored personal data.
1.4 Please read the Personal Data Policy thoroughly in order to understand how we process your personal data.
2. Who are we
2.1 Rud Pedersen Public Affairs is a consultancy company registered as a limited liability company in Sweden under 556638-9887. We are domiciled at Klarabergsgatan 60, 111 21 Stockholm, Sweden.
2.2 We are a part of Rud Pedersen Group based in Sweden with subsidiaries in Sweden, Denmark, Norway, Finland, Belgium, Estonia, Germany, Poland and the UK. Our head office address is Klarabergsgatan 60, 111 21 Stockholm, Sweden.
3. Personal data collected directly from you
3.1 We collect various personal data concerning you when you are using the Website.
3.2 Registration of user:
• You are able to sign up for notifications by stating your name, address, e-mail or telephone number.
• We use your contact details to send you promotion material via email, if you have signed up for our any of our newsletters.
• When you send an inquiry to us through our contact form, we use the personal data that you have stated in the contact form to answer you.
• In order to ensure that the services we offer meet your requirements, we may ask for your feedback in the form of surveys, customer satisfaction analysis or market research. Any feedback received from you will only be used for the purpose of improving our services and will not be disclosed.
4.1 All your personal data are stored on secure servers in the EU.
4.2 We have implemented appropriate technical, organisational and physical measures to ensure a level of protection of your personal data from accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access in accordance with the data protection legislation in Sweden and the EU.
4.3 In spite of our efforts to establish a secure environment for the Website, you should be aware that no information is completely secure on the Internet. Therefore, you should always take the necessary safeguards on your own equipment.
5. Duration of storage
5.1 We will store your personal data until these are no longer necessary for us to process. In certain situations, it may be difficult to envisage an exact period, but the below paragraphs list our periods for the processing of your personal data.
5.2 Marketing consent:
• Erased as soon as possible after your deregistration.
5.3 Inquiries from you:
• Stored until six months after completion of processing.
5.4 If we have reason to store your personal data as part of the protection of our legitimate interests, including for example legal disputes, we reserve our right to store your personal data for an extended period and minimum until the legal dispute has been determined.
6. Transfer of your personal data
6.1 We transfer your personal data to third parties when it is necessary in order to provide you with our service. Third parties shall mean:
• Undertakings in the Rud Pedersen Group
• Business partners
• Security-cleared data processors, who are assisting us with IT or other services
6.2 When we transfer your personal data to business partners, you should be aware that these might have stored personal data concerning you collected by other means, e.g. if you have been in contact with them in another context.
6.3 We also transfer your personal data to the above or other third parties if we are obliged to do so according to legislation or in order to protect our or the group’s interests in legal disputes.
7. Your rights
7.1 You have the right of access to the personal data we are processing concerning you, as well as to have your personal data updated, rectified or erased, or to obtain a copy of your personal data. All requests shall be made in writing to [email protected] or to Rud Pedersen Group, Klarabergsgatan 60, 111 21 Stockholm, Sweden.
7.2 If you want to lodge a complaint about our processing of your personal data, please contact us directly. If we cannot help you, you can lodge a complaint to the Swedish Data Protection Agency.
8.1 We reserve our right to make changes to the Personal Data Policy from time to time. If such changes are substantial, we will notify you via e-mail you have provided us with an email address.