Security in Open
At Open, we are committed to ensuring the security and protection of the Personal Information that we process, and to provide a compliant and consistent approach to data protection. We secure a robust and effective data protection program which complies with existing law and abides by the data protection principles.
We are dedicated to safeguarding the Personal Information under our remit and in developing a data protection regime that is effective, fit for purpose and demonstrates an understanding of, and appreciation for the Regulation.
According to Article 4 of the General Data Protection Regulation (GDPR), “personal data” is all information relating to an identified or identifiable natural person (hereinafter referred to as the “data subject”), which can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. The legal basis of data protection can be found in the GDPR.
Data controller and processing of data
The party responsible for this website (“the controller”) is Open.
Legal basis of data processing
In order to be able to offer you our website and the associated services, we process personal data on the following legal basis:
- Consent (Article 6 (1) (a) GDPR)
- for the fulfillment of contracts (Article 6 (1) (b) GDPR)
- on the basis of a balance of interests (Article 6 (1) (f) GDPR)
- to fulfill a legal obligation (Article 6 (1) (c) GDPR)
If personal information is processed by you based on your consent, you have the right to revoke your consent to us at any time with future effect.
If we process data based on a legal balance of interests, you, as the person concerned, have the right to object to the processing of your personal data, considering the requirements of Article 21 GDPR.
The purpose of processing personal data
Open will generally process personal information transmitted to or collected by us to meet our legal or contractual obligations to our customers, employees and suppliers and to provide our services
This includes the following cases:
- to ensure access to and use of our services (including billing), in particular to publish advertisements and other content, and to measure and improve the quality and success of our services, our services safe and operational hold.;
- to enforce our terms and conditions, or other policies.
- to improve our services, e.g. for example, by reviewing information related to blocked or crashed pages so that we can identify and resolve issues and provide a better user experience;
- to verify the quality and success of our email marketing campaigns (e.g. by analyzing opening and click rates);
- to monitor and improve the information security of our services.
Duration of storage of personal data
Data processing outside the European Union
Personal data is not processed outside the European Union.
Site Visitor Data
When you visit our website we may process personal data in order to be able to provide a user friendly experience of the website on your device.
For the pages to be displayed in your browser, the IP address of the device you are using must be processed. There is also more information about the browser of your device.
In terms of data protection, we are also obliged to guarantee the confidentiality and integrity of personal data processed using our IT systems.
For this purpose, the following data are logged based on a legal balance of interests:
- IP address of the connecting computer (when opening the website)
- Operating system of the connecting computer
- Browser version of the connecting computer
- Date and time of access to the internet site
- Referring URL
- Chat history including IP-address
The data is also used to detect and correct errors on the website.
We offer a contact form on our website where you can request information about our products or services or contact us in general. The data required by you to answer a request has been marked as mandatory. Information on further data fields is voluntary. We need this information to process your request, to contact you correctly and to provide you with an answer. The data processing takes place with concrete inquiries to the fulfillment of a contract or the contract signing. For general inquiries, the processing is based on a comparison of interests. Inquiries received via the contact form on our website will be electronically processed by us to answer your request. In connection with this, other persons or departments and possibly third parties may also receive knowledge of the form contents that you have sent. The transmission of the data form is done safely via encrypted internet connections. By filling in the contact form, you accept the general Terms & Conditions and give us approval to send newsletters or any other company /product information to you.
You can subscribe to an email newsletter on our website. In addition to the voluntary information in the respective form, we only process your email address. This is necessary in order to be able to send you the newsletter.
Existing customers will receive email information from us including newsletters with product updates and other information.
When you contact us, you will be added to our email list as it may, according to Article 6 (1) (f) GDPR, be deemed of interest. You can unsubscribe from the newsletter at any time. Alternatively, you will find a link to unsubscribe in each newsletter email.
To be able to analyze the popularity of our newsletter releases and optimize them, we log when emails are opened, and links are clicked. This usage analysis is based on a balance of interests. You can object to this processing by unsubscribing from the newsletter.
Google Assistant app Open Numbers collects basic information from visitors to our website, and some personal information from our users. We only require the minimum amount of personal information you might provide, such as:
- Login (username/password)
We store only the data that is necessary for our application to function in its entirety and until the user asks for its removal. The stored data enables to process a login to the app (security). The purpose of the app is to assist the user in finding transaction related data from their system by conversing with the app through Google Assistant.
We care about our customers and contacts; therefore, we have a strict policy against spam.
Recipient /Disclosure of data
Data that you provide to us will not be disclosed to third parties. In particular, your data will not be disclosed to third parties for their advertising purposes. Only OPENPOS AB and its subsidiaries within Open Group are allowed to use the collected data.
Lindholmspiren 7A, level 4
417 56 Gothenburg
+46 (0)10-410 2000