Introduction and summary
To whom does this privacy notice apply?
In this privacy notice we have gathered information on how companies within the business area “Di-gruppen” processes personal data regarding customers and previous customers, company representatives, participants at events and educations, prospects and end users of websites and apps.
Di-gruppen consists of Dagens Industri Aktiebolag, Bonnier Business Media Sweden AB, Fastighetsnytt Förlags AB, Dagens Samhälle AB and Hakon Media AB. Each company is the data controller with respect to the use of its customers’, end users’ and prospects’ data. Contact details to us, our privacy team and data protection officer can be found under "Contact us" and “Data protection queries” in this privacy notice.
Data controllers and contact
Di-gruppen consists of Dagens Industri Aktiebolag, Bonnier Business Media Sweden AB, Fastighetsnytt Förlags AB, Dagens Samhälle AB and Hakon Media AB. Each company is the data controller with respect to the use of its customers’, end users’ and prospects’ data. The companies are also joint controllers with each other, and together with the group company Bonnier News AB, for certain joint data processing. You can find more information about the data controllers and their joint processing activities under “Data controllers” and “Joint intra-group processing”. Contact details to us, our privacy team and data protection officer can be found under "Contact us" and “Data protection queries” in this privacy notice.
Summary of purposes
We use personal data mainly for the following purposes.
Providing services and products that you have ordered, arranging conferences, events, networks and courses that you have signed up to, and to send newsletters that you subscribe to. This also includes processing payments, to send invoices, to verify your identity when needed and to communicate with you about our terms, updates and similar as well as providing user accounts etc. Some of our services may be customized to provide you with a more personalized experience.
Customer service. Please note that we may record incoming telephone calls.
Customer and market surveys.
Administration of competitions and votings.
Analytics and product improvement/development and so called “Business Intelligence”.
Direct marketing and telemarketing, including profiling. Please note that we may record parts of our telephone calls. If you have requested that we block you from direct marketing or telemarketing we may store the relevant contact details in a blocking list.
Display, measure and personalize ads on our platforms.
Custom audience advertising on other platforms.
Security, disputes, enforcement of agreements and compliance.
Please read more about our purposes under “How we use personal data”.
Joint intra-group processing
The companies within DI-gruppen may share certain data with each other and with the group companies Dagens Samhälle Insikt AB, Bonnier Healthcare Sweden AB and Medibas AB for marketing purposes. The companies are joint controllers for this data processing. The companies within Di-gruppen also use certain central functions provided by the group company Bonnier News AB, and are joint controllers for such processing together with Bonnier News AB. You can find more information about the joint processing activities under “Joint intra-group processing”.
You have various rights under the GDPR. You have the right to have a copy of your personal data, and sometimes, to have your data deleted. You always have the right to object to direct marketing and telemarketing, including profiling for these purposes. If you have given your consent to certain processing, you have the right to withdraw your consent at any time. Please read more about your rights and how you can exercise them under “Your individual rights”.
Please note that editorial content such as our articles, pictures and TV programs falls outside the scope of this privacy notice. If you have questions regarding editorial material, please contact editor in chief.
Supplemental terms and privacy notices may apply with respect to some of the services that we offer.
This privacy notice comprises the following companies, jointly referred to as “Di-gruppen”. Each company is the data controller for the data processing regarding its customers, prospects and end users.
Dagens Industri Aktiebolag (reg no: 556221-8494) ("Di").
Bonnier Business Media Sweden AB (reg no: 556468-8892) ("BBM"). BBM includes a number of brands: Aktuell Hållbarhet, Apoteksmarknaden, Dagens Media, Dagens Medicin, Digital Hälsa, Energimarknaden, Fond & Bank, Kommunal Hälsa, Läkemedelsmarknaden, Pensioner & Förmåner, Resumé och Risk & Försäkring.
Fastighetsnytt Förlags AB (reg no: 556326-8837) (”Fastighetsnytt”). Fastighetsnytt includes the brand Business Arena and Byggindustrin.
Dagens Samhälle AB (reg no 556176-4613) (”Dagens Samhälle”).
Hakon Media AB (reg no 556923-9519) (”Hakon Media”). Hakon Media includes the brands Dagligvarunytt and Market.
Di-gruppen is part of the larger media group Bonnier News. The group company Bonnier News AB (reg no 559080-0917) provides certain central functions that Di-gruppen uses. Furthermore, the companies within Di-gruppen have various collaborations with each other and with the group companies Dagens Samhälle Insikt AB (reg no 559122-5486), Bonnier Healthcare Sweden AB (reg no 556615-8472), Medibas AB (org nr 556617-5518) and Bonnier News AB. In these cases the companies have a joint controllership for the personal data that they process. Please find more information under the section “Joint intra-group processing”.
If you have questions regarding the joint processing or if you want to exercise your rights, you can always contact the company that you have a customer relationship with or that you have received communication from or otherwise been in contact with. You are also welcome to contact our privacy team by sending an email to email@example.com.
The personal data we compile
The data we compile may vary and may among other things depend on which services you use. The data we compile may include the following.
Name and contact details: First name and surname, email address, postal address, telephone number, delivery address, invoice address and other similar contact details.
Personal identification number: Personal identification number (Sw: “personnummer”)
Authentication details: Username and password
Settings: Information that you add to your account.
Age, gender, demographic data and household data: Age and gender as well as statistics about the area where you live, e.g. information on whether the area is populated by many families with children or retired persons, or if residents generally rent or own their house or apartment. Information about whether your household owns a car or not.
Work related information: Title/role, company and specialization/industry. This data is only collected if we have a relationship with you in your professional capacity.
Payment information: May include means of payment number (for example, credit card number) and associated security code or bank account number.
Purchase history: Information about your purchases, subscriptions, amounts, time of purchase and offers which you take up.
Unit data: Data about your unit, e.g. information whether you surf on a phone or computer and which browser you use. This may include information about IP addresses and settings (e.g. language settings) and software configurations.
User data: Data on how you use our digital services, e.g. information about the functions you use, how you navigate our websites, which ads you have clicked on in our newsletters, which parts of our websites you have visited including our social media pages such as our Facebook Pages, your location, your favourites among the news articles you store on your profile on your user account and subjects/writers that you follow, and which shares you monitor through a financial app and similar information.
Correspondence: Information that you write in messages which you send to us, such as feedback and reviews you write, or questions and information you submit in customer service matters. When you contact us, e.g. for customer support by telephone or chat sessions with our representatives, or when we contact you in connection to telemarketing, the conversations may be monitored and recorded and stored for a certain period of time.
Food preferences/allergies: Information about food preferences and/or allergies may be processed if you participate in an event or course.
Log data: Information about the product you logged in to, date and time, IP address and error messages.
How we use personal data
The data we compile may vary and may among other things depend on which services you use, your settings on your device and which functions you use in our services.
In this chapter we describe the purposes for which we mainly process personal data and which legal basis we use. We primarily process your personal data on the legal basis that our processing is necessary for the performance of a contract to which you are a party (“Performance of a Contract”), or that the processing is necessary for the purposes of the legitimate interests pursued by us or a third party (“Legitimate Interest”). In some cases our processing is based on your consent (“Consent”) or that the processing is necessary for compliance with a legal obligation (“Legal Obligation”).
We have made the assessment that we have a Legitimate Interest to process personal data in those cases where the processing is necessary to meet our users’ and customers’ wishes and requests, to evaluate, develop and improve our content and the services and to be able to market our services and products and be relevant in our offerings and advertising. Finally, we have a legitimate interest to protect our business operations.
Providing services and products and administer our customer relation to you or the company that you represent
This purpose comprises various processing activities which we have summarized below.
To provide you or the company that you represent with the services and products that your/the company has ordered, e.g. subscriptions, advertisements, newsletters that you have subscribed for, premiers, courses, conferences, industry networking events and other events.
To process payments, send invoices and if needed to verify your identity (e.g. when payment is made by invoice).
To create and provide access to a user account. Your authentication details can sometimes be used to log into user accounts provided by other companies within the Bonnier News group.
To customize content and give you a more personalized experience of our services that can be based on your activities on our websites, interests and favourites etc.
We may contact you by email, telephone, push-function or otherwise to provide you with information relevant for your subscription, purchase or use of our services. We may for example inform you when a subscription is about to expire or when we update our terms and conditions; notify you when security updates are available; remind you that you still have products in your shopping cart or inform you that you need to take measures to keep your account active.
To provide an event app for an event that you have signed up for.
If you are the representative for a company that participates in an event we will process your data to administer the company's participation.
If you participate in an event in the capacity as a jury member or speaker we will process your name and contact details, work related information and (if applicable) invoice details in order to administer your participation.
If you are a member of one of our networks we may share information about you and your company to other members of the network on the network platform and in marketing for the network. Please read more under “How we share your personal data”.
Categories of personal data: - Name and contact details - Payment information (to process a payment) - Authentication details and settings (if you have a user account) - Personal identification number (if you make a purchase as a consumer and we need to verify your identity, for example when payment is made by invoice) - Work related information (if you purchase a product/service in your professional capacity) - When we host an event we may take photographs and make video recordings from the event which may be used to inform about coming events. - When you sign up to participate in an event we and our event partner may need to collect sensitive information about your food preferences or allergies. - In order to be able to customize content and provide a more personalized experience of our services we may process unit and user data, purchase history, demographic data, age, gender and work related information (if applicable). Legal basis: - If you are the buyer of the product/service: Performance of Contract (if the processing is necessary to carry out our contractual obligations to you) or Legitimate Interest - If your company is the buyer of the product/service: Legitimate Interest - Photographs and video recordings at events: Legitimate Interest - Processing of food preferences and allergies: Consent - Customize content and provide a more personalized experience of our service: Performance of Contract (if personalized content is part of the service) or Legitimate Interest.
We may process your personal data to provide you with customer service and to administer complaints regarding your purchase or subscription, event, course or other service or product. If you contact us by phone our conversation may be recorded for your and our safety and/or for quality and educational purposes.
Categories of personal data: Name and contact details, correspondence Legal basis: Performance of Contract or Legitimate Interest, depending on the matter. Recordings of conversations is done based on Legitimate Interest.
Customer and market surveys
We may send out customer surveys via email and ask you to evaluate an event that you participated in or a service that you have used. We may also send you an inquiry to participate in one of our panels. Prior to upcoming events we may contact our professional contacts to make research regarding topics of interests and trends.
Categories of personal data: Name and contact details, work related information, correspondence Legal basis: Legitimate Interest
Administration of competitions and votings
If you participate in a competition or voting that we arrange we may process your data in order to administer your participation, which includes collecting your contribution/answers and to appoint and communicate a winner.
Categories of personal data: Name and contact details, the contents of your contribution/answer to us Legal basis: Legitimate Interest
Analytics and product improvement/development
We use personal data to analyse and improve our existing services and products, among other things by updating functions and obtaining an increased understanding as to how we can improve your user experience. For example, we use error reports in order to improve security functions, user behaviour, search questions and clicks on our websites to improve the relevance of search results, to determine which new functions should be prioritised, what content to be published on our websites and placement of relevant content. We use various analytic tools such as Google Analytics to collect data about how our websites are used in order to develop analyses based on such data. The data may for example present the most visited pages on the website, how the visitors navigate through the website and from which pages the visitors exit the website. Website analytics may also provide insight in how often visitors return to our websites and what content is viewed the longest. Sometimes we conduct surveys where we ask questions to our visitors in order to evaluate our services and products. This analysis may be used for, inter alia, product improvement.
Categories of personal data: Unit and user data, age, gender, demographic data and household information, work related information and purchase history Legal basis: Legitimate Interest
To better understand our business (so called “Business Intelligence”)
We process personal data in order to develop statistics and analyses regarding our business. We use this information to make well informed decisions and to plan for future strategies for our business operations.
Categories of personal data: We mostly use anonymized data for this purpose, but we may also use unit and user data, age, gender, demographic data and household information, work related information and purchase history Legal basis: Legitimate Interest
Direct marketing and telemarketing, including profiling
We use different channels for marketing, e.g. postal, telephone, email, SMS and our websites and other digital channels. The marketing may, depending on channel, include our own products and services as well as other companies’ products and services.
Our marketing may be based on how you have used our services, such as reading and purchase history, as well as age, gender and demographic data. If we have a relationship with you in your professional capacity we may also direct our marketing based on your tite and company. We may for example choose to direct our marketing to a certain target audience, such as “women in Stockholm aged 30-35 who have read many articles on finance” or “IT managers within the healthcare sector”.
If we contact you by telephone to market our services or products to the company that you represent, we may record the part of the conversation where we come to an agreement, to be used as proof of contract.
You always have the right to object to our direct marketing and telephone marketing. Please contact customer service with your request in this regard. You can find contact details to us under “Contact us”.
Categories of personal data: Name and contact details, unit and user data, purchase history, age, gender, demographic data and household information, work related information (only used for marketing directed towards professionals) Legal basis: Legitimate Interest
Display, measure and personalize ads on our platforms
We process certain data to be able to display and measure ads. The advertisement that you see on our websites and other digital channels may be based on how you have used our services, such as your reading and purchase history, as well as age, gender and demographic data. We may for example choose to display an ad to a certain target group such as “women in the Stockholm area aged 30-35 who have read many articles on finance”. If you are a corporate customer representative we may use your title and company as a basis for the profiling of ads. Some of our profiling is done using machine learning. That means that we use AI to understand which products a reader will be most interested in based on previous reading history on our websites.
By changing your cookie settings you can limit the personalisation of ads and content on our websites and apps. Please read more in our Cooke Policy.
Categories of personal data: Unit data, user data, purchase history, age, gender, demographic data and household data and work related data Legal basis: Legitimate Interest
Custom audience advertising on other platforms
We may use custom audience advertising on other platforms, including Facebook, Twitter and Google. If you are or have been a customer of a company within Di-gruppen, we may use your email address in order to be able to show you advertisements of our services and products on the other platform, or to exclude you from seeing our advertisement. You are entitled to object to this processing by contacting our customer service. Some websites use the Facebook pixel if you have consented to this. The pixel is used to show you better ads on the Facebook platform, and means that some data is shared with Facebook. Please read more under “How we share your personal data”. You can limit our ability to show you ads on Facebook by adjusting your settings on your personal Facebook account. Go to Settings on your account. Click on Ads in the menu, thereafter Ad Settings. Change the setting from “Allow” to “Not allow” for “Ads based on data from partners” and “Ads based on your activity on Facebook Company Products that you see elsewhere”. Direct link to your advertising settings. Please read Facebook’s data policy for users here.
Categories of personal data: Email address. IP address and other user and unit data may be collected and processed by the other platform. Legal basis: Legitimate Interest. For the Facebook pixel we use consent.
We use information in order to protect our products, services and customers’ security and to discover and prevent fraud (for example double take up of offers). When you log into your user account, we create a registration of the login, in order to be able to search for errors and to prevent and investigate IT attacks and other security threats.
Categories of personal data: Log data. We may also process names, email addresses and personal identification numbers to prevent double take up of offers. Legal basis: Legitimate interest or Legal obligation (if we are legally obligated to protect certain information assets)
Disputes and enforcement of agreements
We may use information to resolve disputes and enforce our agreements.
Categories of personal data: Depends on the situation Legal basis: Depends on the situation, normally Legitimate interest, Legal obligation or Performance of a Contract
We use information in order to comply with applicable legislation such as the Swedish Accounting Act (Sw: bokföringslagen) and the GDPR. We may also have to process personal data to comply with other legal obligations, court orders or authority decisions.
Categories of personal data: - Accounting Act: Information about your purchases; normally information included in an invoice such as name, address and purchased product and price. - GDPR and the Marketing Act: We may have to process name, address and sometimes personal identification number in order to comply with the NIX register. If you have requested that we do not contact you by email, post or telephone, we may retain a copy of the relevant contact information in our distribution blocked list to ensure that you do not receive undesired direct marketing in the future. - Administration of data subject rights under the GDPR, including right to access and deletion: The personal data that we have registered and that we are obligated to process due to your request. - Other: Depends on the situation. Legal basis: Legal obligation
If we plan to use personal data for a new purpose, other than as described in this policy, you will be informed of such use before, or in connection with, compilation of the personal data. If legally required we will request your permission.
Cookies and similar tracking technologies
Cookies and similar tracking technologies are, among other things, used in order for us to improve functionality on our websites, to direct relevant content, offerings and advertisements to you and to ensure that the services are working correctly. We use both first-party cookies and third-party cookies (e.g. for advertisement).
Some advertising cookies and technologies are so called third party cookies/technologies. Advertisers, media agencies and other partners use these cookies and technologies to deliver ads on our websites and to measure how many users have seen the ad, and to personalize the ads. Information about which data our partners process and how this data is processed as well as their legal basis can be found in their privacy notices.
Retargeting is a form of interest-based advertising which allows us and several of our advertisers to display advertising for our advertisers’ products and services. The advertisement is based on your reader and click patterns on a website which is not controlled by us. For example, if you visit an online clothing store, and if you have consented to the clothing store’s cookies, this may allow the clothing store to direct advertising to you on our websites.
How do we compile personal data?
Data that you provide. Some of the data is provided by you directly, for example when you order a subscription or when you create and use an account in an app or on our websites, when you apply to attend an event, register for a newsletter, buy a product from an online store or contact us for support. We may also collect your data through a form on Facebook, for example when you sign up for a free article.
Gifts. If you receive a subscription as a gift we will collect your personal data from your giver.
Employer. If you receive a subscription through your employer we may collect your personal data from your employer.
Use of services. We obtain some of the data by registering how you interact with our services and products, for example through use of technology such as cookies on our websites and through information to which we obtain access via the unit (such as mobile telephone, computer or tablet) you use when you obtain our Services, such as IP address, language settings and push settings. In some cases, we may collect and use your data cross-devices for the purpose of achieving relevant content and advertisements on our websites.
We can also obtain data from external companies or authorities, referred to as third-party sources. Such third-party sources may vary over time but have previously included:
We use Bisnode to verify and add contact details and demographic data such as statistics for a certain residential area.
In conjunction with the use of a service which requires payment, we compile the name, personal ID number, address details and means of payment from payment service providers such as Klarna in order to confirm your identity and address details.
Social networks where you afford a service access to your data in one or more networks, for example if you have chosen to identify yourself via Facebook or LinkedIn we compile data from your public Facebook or LinkedIn profile.
Suppliers that help us determine geographical locations based on IP address.
Partners with whom we collaborate in order to offer services or to participate in joint marketing activities; we can, for example, obtain data from our event partners (such as a co-organiser) if you apply to participate at any of our events through our event partner.
Publicly available sources, for example open public authority databases or other data sources which is available to the general public, such as SPAR (The State’s Personal Address Register).
If you do not provide data which is necessary to gain access to the services or a particular function, there is a risk that you will be unable to use the specific service or function.
It may sometimes be necessary for us to share your personal data with other companies in our group or with companies who perform services on our behalf or that we collaborate with.
Suppliers that are data processors
We engage suppliers that provide services on our behalf, for example customer service support, marketing and traffic measurement and for assistance in protecting and securing our systems and services. These suppliers may require access to personal data, and may have to process data, in order to provide such services. These suppliers are bound by so called data processing agreements and are not allowed to process the data for its own purposes.
If you are a member of any of our networks, e.g. one of our CEO networks, information about you and the company/organization that you represent may be visible for other members of the network through the network platform. The information that may be visible is your name, company, industry, turnover, telephone, email address and link to your LinkedIn profile. You can also update your profile with more information about yourself that you want to share with other members. We may ask for your permission to publish a photograph. You can also choose to make your information non-visible to other members.
Information about your role and the company/organization that you represent may also be used in marketing of the network that you participate in. You always have the right to object to the use of your personal data in such marketing.
If you receive your subscription through your employer we may share information about your name and email address with your employer so that the employer can keep its company subscription updated.
Payment service providers
The payment information which you provide to carry out a purchase is shared by us with banks and other institutions that process payment transactions or deliver other financial services, and to prevent fraud and reduce credit card risks. One example of such providers is Klarna. Klarna is the controller of its processing of personal data.
Invoice in the Kivra app
If you have a digital mailbox in Kivra you may receive your invoice in the Kivra app when purchasing some of our products and services. We share your personal identification number and content in your invoice with Kivra in order to provide your invoice in the Kivra app. We share this information on the legal basis Performance of Contract. Kivra Sverige AB is an independent controller of the personal data it processes from when your invoice has been made available in your digital mailbox.
We share personal data with our distribution partners, e.g. Postnord (Tidningstjänst AB) or Nim Distribution I Skåne AB. Each distribution company is an independent controller of the personal data that they process in relation to deliveries.
Advertisers and other partners may process certain unit and user data in connection to ads on our websites through cookies which are used to deliver, measure and adapt ads on our websites. Such partners process data as independent controllers. For more information on advertising, please read our FAQ.
When participating at a conference in your professional capacity, your personal data may be shared with our partners who participate at the conference (co-organisers, sponsors and exhibitors) in order for them to be able to market their services to you which may be of interest in your professional capacity. The event partners process personal data as independent controllers. We share your personal data based on our Legitimate Interest to, among other things, increase the opportunities for networking within the business community as between participants and our event partners. You have the right to object to our sharing of your personal data to event partners by contacting the company within Di-gruppen arranging the conference, see the chapter “Contact us”.
Social media / plug-ins
When you use our services you can choose to share articles via social media via a social plug-in (for example, a share button). When you share information via a social plug-in, your browser will transfer unit data to the social medium, such as date and time of the sharing, the type of unit you use, your operating system and IP address, URL for the visit, as well as information regarding the article you share. For more information about how relevant social media process the information you provide via social plug-ins, we encourage you to read the respective social medium’s terms and personal data policies.
Facebook and similar services
Some of our websites use a tool called the Facebook pixel that shares data with Facebook. This tool is only used if you have provided your consent. The Facebook pixel makes it possible for us to display better ads for you on Facebook based on your behaviour on our website. You can withdraw your consent at any time by changing your cookie settings on the website where you provided your consent.
We may also use audience-based advertising on other platforms including Facebook, Twitter and Google. We may share a list with email addresses of existing or former customers with Facebook, Google or Twitter, in order to show, or exclude the users from seeing, our advertisements on their platform.
We also use social media pages, such as Facebook Pages. When you visit such pages, both Facebook and we may process data on how you have used the social media page in order to show you relevant ads on the social media platform.
You can adjust your settings on your personal Facebook account. Go to Settings on your account. Click on Ads in the menu, thereafter Ad Settings. Change the setting from “Allow” to “Not allow” for “Ads based on data from partners” and “Ads based on your activity on Facebook Company Products that you see elsewhere”. Direct link to your advertising settings. The Facebook pixel shares data regarding your behaviour on our website (which URL that you visit), IP-adress and certain technical information. Facebook and we as advertisers on Facebook may use target audiences for our respective advertisements. In addition to the pixel data, other data about your activities on Facebook may be used by Facebook. Please read Facebook’s data policy for users here.
We may disclose personal data as part of a joint transaction, for example a merger or sale of assets. Finally, we may need to disclose or store your data when we believe that doing so is necessary to:
Comply with laws or legal processes and to disclose information to the police and other competent authorities;
Protect our customers, for example to prevent junk mail or attempted fraud;
Manage and maintain the security of our products, including preventing or stopping an attack on our systems or networks;
Protect rights or property belonging to us, including performance of the terms which determine your use of the services. When necessary, we refer the matter to the police for further action.
Note that some of our websites contain links to external companies, for example to offers regarding products and services, whose personal data policies differ from ours. If you provide personal data in any of these products, your personal data is processed in accordance with their respective personal data policy; we recommend that you read such policy before disclosing data to an external company. We are not responsible for the use of your personal data by such external companies.
Joint intra-group processing
Di-gruppen is part of the larger media group Bonnier News. The group company Bonnier News AB (reg.no. 559080-0917) provides certain central functions that Di-gruppen uses. Furthermore, the companies within Di-gruppen have various collaborations with each other and with the group companies Dagens Samhälle Insikt AB, Bonnier Healthcare Sweden AB, Medibas AB and Bonnier News AB. In these cases the companies may have a joint controllership for the personal data that they process. This section provides more information about our joint processing. If you have questions regarding the joint processing or if you want to exercise your rights, you can always contact the company that you have a customer relationship with or that you have received communication from or otherwise been in contact with. You are also welcome to contact our privacy team by sending an email to firstname.lastname@example.org
Joint database for professionals
The companies within Di-gruppen, Dagens Samhälle Insikt AB, Bonnier Healthcare Sweden AB and Medibas AB have a joint database that contains information about professionals, representatives of existing or potential corporate customers as well as participants at conferences, educations and other events. The categories of data included are mainly name and contact details, work related information, user data and purchase history. The companies may share this data for marketing purposes towards professionals, provided that the marketing is deemed to be relevant for the receiver in his/her professional capacity. We share this data based on our legitimate interest of being able to market our products and services towards professionals in an efficient manner, and to achieve relevance in our marketing activities. The companies are joint controllers for the data processing in the joint database. If you want to object to all direct marketing and/or telemarketing from the participating companies you can send an email with your request to email@example.com.
Please read Dagens Samhälle Insikt AB’s privacy notice here.
Joint database for consumers
Dagens Industri Aktiebolag and Bonnier News AB co-operate to maintain a joint customer database with good data quality in regards to consumer data (i e not professionals). Through the co-operation we are able to achieve an efficient and integrity friendly processing of customer data since we can share resources and competence. The co-operation is managed by Bonnier News AB. Bonnier News AB and Dagens Industri Aktiebolag are joint controllers for the joint processing. More information about the joint data processing and how you can exercise your rights, can be found here.
In connection to certain offerings and campaigns
Companies within Di-gruppen, Dagens Samhälle Insikt AB and Bonnier Healthcare Sweden AB co-operate from time to time regarding various offerings and campaigns relating to its products and services; either for managing a combined offering or for reducing the companies’ marketing activities. Dagens Industri Aktiebolag may also co-operate with Bonnier News AB for the same purposes. In connection to such co-operations it may be necessary to share certain limited data, and the companies are then joint controllers for that processing. If, for example, DN offers its customers the possibility to add a subscription to Di to its existing DN subscription, it may be necessary for DN to share certain data with Di in order for Di to be able to activate the subscription. Another example may be that Expressen wants to display a website campaign for Di. In order not to bother existing Di subscribers with the campaign, Expressen can choose to display the campaign to visitors that are not already Di subscribers.
Central privacy team
Di-gruppen has a joint privacy team that is centrally located at Bonnier News AB. Bonnier News AB is a joint data controller together with the company within Di-gruppen that the request/question regards.
Central administration of digital advertising
The administration of Di-gruppen’s digital advertising, including certain personal data processing, is centrally located at Bonnier News AB. Bonnier News AB is a joint data controller together with the company within Di-gruppen whose website or app you are using.
User account for Dagens Nyheter and Dagens Industri
DN and Di has a joint user account (“BIP account”), which means that you can use the same login credentials for both accounts. When you have created a digital account with DN, you can use the same credentials to create an account with Di, and vice versa. If you have a joint account for DN and Di, Bonnier News AB and Dagens Industri Aktiebolag are joint controllers for the processing of your login credentials. You can contact both DN and Di to exercise your rights.
How to access and check your personal data
Privacy Portal. We have gathered information on how to access and control your personal data on our privacy portal (www.privacy.bonniernews.se) under the section “Hantera personuppgifter”.You are also always welcome to contact us via our customer service with any questions concerning the processing of your personal data. Read more about how to proceed under "Your individual rights" and "Contact us".
User account. You can control certain data through your user account.
Unsubscribe from direct marketing. If you receive advertising messages from us by email or text message and wish to unsubscribe from them, you can do so by following the instructions in the message, or by contacting customer service. You can also unsubscribe from newsletters and direct marketing emails via our Privacy Portal at www.privacy.bonniernews.se. Note that such subscription cancellation does not apply to other communication which is required to enable us to provide the Services, such as communication regarding changes or updates to user terms.
Cookies. On most of our websites and in our apps you can adjust your settings directly on the website/in the app. Read more here.
Your individual rights
We have gathered information on how to access and control your personal data on our privacy portal (www.privacy.bonniernews.se) under the section “Hantera personuppgifter”. You are also welcome to contact customer service. Contact information about whom to contact to protect any of your rights is available under "Contact us".
You have the following rights:
Consent. If processing of personal data is based on your consent, you are entitled at any time whatsoever to withdraw your consent to future processing of your personal data.
Register extract, rectification and deletion. You are entitled, free of charge, to request a copy of your personal data (referred to as a register extract), request rectification of incorrect information and, under certain circumstances, request that your personal data be deleted.
Limitation. You are entitled to demand that we limit the processing of your personal data during the period we are required to investigate any objections from you or if we lack any legal ground to continue processing but you do not wish the information to be deleted, or if we no longer need the information but you require it in order to assert your rights.
Data portability. In certain cases you are entitled to data portability, i.e. to receive personal data which has been provided by you, in a structured, generally usable and mechanically readable format and to be able to transfer such to another controller of personal data in those cases where our entitlement to process your personal data is based either on your consent or on performance of an agreement with you.
Objection against direct marketing, i.e. marketing via post, email, SMS and telephone. You are entitled, at any time whatsoever, to object to direct marketing (including profiling for direct marketing purposes), with the consequence that we may no longer continue to use the data for this purpose.
Objection. You are entitled, in certain cases, to object to the use of your personal data with the consequence that we must possibly cease the processing unless we can show compelling justifiable reasons which outweigh the interest in not processing the personal data.
The Swedish Authority for Privacy Protection. You are entitled complain to a data protection authority. The Swedish Authority for Privacy Protection (Sw: Integritetsskyddsmyndigheten) is the authority in Sweden which exercises supervision over the manner in which we, as a company, comply with legislation. You find the authority’s website here: www.imy.se.
It costs nothing to exercise your rights. We answer requests about your rights and enquiries about access to or deletion of your personal data within, as a starting point, 30 days. The measures are taken within a reasonable time which, depending on the circumstances, may be up to 3 months. We reserve the right to charge a reasonable fee or decline to take any measure in the event of an unreasonable or manifestly unfounded objection or request.
Information regarding editorial content. Editorial content such as our articles, pictures and TV programs are not subject to the provisions of the GDPR. This means that you cannot request removal of an article based on the provisions of the GDPR. If you discover any errors in published material please contact editor-in-chief.
Security for your personal data
We employ a number of security methods to protect your personal data from unwanted access, use and disclosure. For example, personal data which you state on a computer system to which there is restricted access is stored in protected premises. In conjunction with the transfer of extremely sensitive data (for example, credit card numbers and passwords) via the Internet, we provide protection of such data through encryption. In those cases where our providers use subcontractors, we conduct regular audits of such subcontractors to ensure that processing takes place in accordance with this policy and our security routines. We store the information we compile when a user is not logged in (authenticated) separately from customer-specific account information which identifies you, such as your name, email address or telephone number. When analysing customer views, product development, personalisation, trends, statistics and for similar purposes, we primarily use anonymous data which does not consist of personal data; alternatively, we use pseudonymised data which cannot be linked to a specific individual without supplementary information being used.
Where we store and process personal data
We process data primarily within the EU/EEA, however in certain cases we use suppliers who are established in the US or in other countries outside the EU/EEA, such as for distributing newsletters, for development and maintenance of our systems and for web analytics. Countries outside the EU/EEA do not always ensure a level of protection for personal data equivalent to that guaranteed within the EU/EEA. It may therefore be necessary to implement supplementary measures when personal data is processed outside the EU/EEA. In those cases where we use suppliers who are processing personal data outside the EU/EEA, we have ensured that there is a legal basis for such processing for example by entering into standardised contractual clauses with the recipient of the personal data, that are approved by the EU Commission.
It has so far been issued three sets of standard contractual clauses for personal data transfers. These are accessible on the EU Commission’s website: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en.
We specifically want to inform that we use the analytics tool Google Analytics (read more about how and why we you the tool under ”How we use personal data” and ”Cookies and similar tracking technologies”). Google Analytics stores data on our behalf in several countries, including the USA. You find more information about Google’s data center locations here: https://www.google.com/about/datacenters/locations/. Google has engaged sub-processors who process data in different countries. You find more information about Google’s sub-processors and their locations here: https://privacy.google.com/businesses/subprocessors/.
You find the standard contractual clauses applicable to our use of Google’s services here: https://privacy.google.com/businesses/processorterms/mccs/
How long we store your personal data
We store personal data for the time necessary for the reasons for which they are used, e.g. for such time as required to enable us to provide the services; to maintain and improve the performance of existing services; to distribute necessary communication and market communication; to engage in development of our services; and to perform our statutory obligations. Since needs can vary as regards different types of data and with respect to different types of services, products and contexts, the period in which we store the information may vary.
Criteria that determine storage time. The criteria that primarily determine how long personal data will be stored are:
the reason we use the data, i.e. if we use the data to meet statutory requirements, it is stored for a longer time than, for example, contact information for direct marketing;
the type of data involved, i.e. sensitive data such as a food allergy is stored for a shorter period of time than, for example, contact information;
the way in which the data is stored, i.e. data which is not pseudonymised is stored for a shorter period of time than information which is pseudonymised;
our relationship with you, i.e. whether you are an existing, former or potential user/customer or whether you are visiting us without being logged in.
Contact details for direct marketing. We use your contact details for direct marketing during such time as we have a user or customer relationship and for a certain period of time after our user or customer relationship has ended, provided you have not objected thereto; read more under "YOUR INDIVIDUAL RIGHTS". We store your details for direct marketing purposes for up to 24 months following conclusion of the service (e.g. a subscription) or after your final purchase.
Information about purchases/transactions. If you are or have been a customer to us, we will store information relating to your purchases/transactions for 7 years for accounting purposes under the Accounting Act (Sw: bokföringslagen).
Company contact details. If your contact details are connected to a company that you represent, for example in conjunction with an event, your contact details may be stored to direct marketing to you for up to 36 months after the concluded event.
Prospects. We may contact potential customers by telephone in order to market our services and products. If you choose not to enter into a customer relationship with us, we store the contact details for up to 3 months from the date of contact. Companies within Di-gruppen may contact representatives of companies that are potential customers in order to market its services and products. In these cases, your contact details may be stored for up to 12 months from the date the contact details were collected by us.
User account data. If you have registered a user account, we use your data regarding, for example, interests and favourites, reader and purchase history, until such time as you close your account and for up to 24 months thereafter, if you do not request that we delete certain data. We store data in order to process complaints and to analyse user and customer behaviour with the aim of improving our services and for interest-based marketing.
Recording of telephone conversations. We store telephone conversations for 3 months.
Miscellaneous. Your personal data is deleted or anonymized when it is no longer relevant for the purposes for which it has been compiled. In conjunction with analyses of customer views, trends, etc. we use anonymous data which does not comprise personal data, alternatively pseudonymised data which cannot be attributed to a particular individual without additional data which requires specific measures.
Your personal data may be stored for longer than stated above in those cases where we are obliged to do so pursuant to any law, ordinance or public authority decision or to retain data which must be retained in order to resolve a dispute or if you have consented thereto.
We have gathered information on how to access and control your personal data on our privacy portal (www.privacy.bonniernews.se) under the section “Hantera personuppgifter”. You are also welcome to contact customer service if you want a register extract, or if you want to request deletion, object to our direct marketing or if you want to exercise any of your rights (please read under “Your individual rights”).
Telephone: 08-573 651 00
Bonnier Business Media
Telephone: 08-409 320 10
Telephone: 08-409 320 02
Telephone: 08-409 320 05
Telephone: 08-409 320 12
Telephone: 09-409 320 10
Telephone: 08-409 320 10
Data protection queries
If you have questions about our data processing or a complaint you are welcome to contact us by the contact details below. Here you can also get in contact with our Data Protection Officer.
Dagens Industri: firstname.lastname@example.org Bonnier Business Media Sweden: email@example.com Fastighetsnytt: firstname.lastname@example.org Dagens Media: email@example.com Byggindustrin: firstname.lastname@example.org Dagens Samhälle: email@example.com Hakon Media: firstname.lastname@example.org
Changes in this Privacy Notice
We will update our privacy notice as needed to reflect customer feedback and changes to our services or if we consider that we can clarify and improve the information. When the notice is updated, the date of the latest update is changed at the bottom of the notice. In the event of major changes to the notice or in the way we use your personal data, where so required by law you will be notified via an announcement on the website or by email before the changes enter into force. Please read this personal data policy from time to time to stay updated as to how we at Bonnier News process your personal data.
This privacy notice was updated on: March 23, 2022