CURRENT EVENTS
OPENING HOURS & PRICES
BEFORE YOUR VISIT
BUY TICKET
MENU

DATA PROTECTION POLICY
Version: 2019-06-03

We are committed to protecting the rights and privacy of individuals. Our Data Protection Policy describes how we collect, use and store personal information.

By using our digital services and purchasing our services, you accept our Data Protection Policy and our processing of your personal data. You also agree that we use various methods of communication such as e-mail, SMS, telephone or computer systems to send you information. It is important that you read and understand our Data Protection Policy before using our services.

In order for you to use our services, we need to store and process your personal data as described below. We always take your privacy into account as much as possible.

 

What information is collected?

Personal data is collected in most cases from our customers when ordering one or more of our services, or is generated in connection with your use of our services (e.g. IP addresses or user logins). The personal data we collect can be divided into the following categories:

Identification: Usually this consists of name and email address.

Contact: Information such as email, contact details and phone number. This is important for example to be able to offer support, send invoices or contact you with important information.

History: For example, login history, support cases, etc.

Legal basis for processing personal data?

All processing is carried out with the support of agreements. In order for us to be able to fulfill our obligations towards you as a customer and comply with applicable legislation, this is regulated in your acceptance of your order.

What do we do with information?

All data is used to deliver, administer and improve our services. The information is required to deliver our services (for example, for billing and support). We also use this to communicate with you about important information.

Who may we disclose your personal data to?

To protect and safeguard the privacy of our customers, personal data is not disclosed to external parties that are not specified (see below) without your consent as a customer.

Exceptions to this are made if a customer has violated our terms of agreement, if there are legal actions or if an authority requests this based on Swedish legislation.

We have a register of subcontractors who process personal data. We have signed service agreements with these subcontractors, which include provisions regarding the processing of personal data on our behalf.

At the bottom of this document is a list of all our assistants who in some cases process our customers' personal data where we are the data controller.

Where do we process your personal data?

We always carry out the processing within the EU/EEA. However, in certain situations (e.g. e-mail via Microsoft Office 365) the information may be transferred to, and processed in, a country outside the EU/EEA by one of our subcontractors. As we always strive to protect your information at all times, we will take all legal, technical and organisational measures to ensure that your information is handled securely and with a level of protection comparable to and at the same level as that offered within the EU/EEA.

How do we protect your personal data?

We have a comprehensive system with multiple levels of security through logical network restrictions, access levels, alarms and intrusion protection of various kinds.

What rights do you have to your data?

As a registered person and customer with us, you have special rights regarding the personal data we have about you. These are:

Information: As a customer, you can contact us at any time to find out what information we have collected. We strive to do this without delay.

Amendment: Changes to registered information are made by contacting our administration.

Limitation: If you object to the accuracy of the data we have registered, you can request that we limit the processing of this data to storage only. We can then stop all other processing (which also means that we must stop the delivery of our products) until a correction has been made or until it can be determined what is correct and what is not.

Data portability: For personal data that has been processed and collected automatically (with the support of consent/agreement), you have the right to receive this from us in a machine-readable format.

Deletion: Under certain circumstances, you have the right to request the deletion of your personal data. These may be, for example,

  • If there is no legal basis for the processing, or the processing is unlawful
  • There is no legitimate reason for continued processing
  • You object to processing for direct marketing purposes

A prerequisite for us to be able to perform the above is that we receive sufficient identification from you as a data subject. Your request to exercise your rights above is assessed on a case-by-case basis based on the prevailing circumstances. We may also be required to retain your information if necessary to comply with legal obligations, assert a legal claim or enforce our active contracts.

Automated decision-making

In some cases, we may use automated decision-making if you have given your explicit consent or if it is necessary to fulfill a contract.

Cookies on our websites

We use cookies, a text file that is saved on the visitor's computer, to identify and optimize our web applications for visitors and customers. If you do not want us to do this, you can turn off cookies in your browser. However, please note that the functionality of our website may be limited.

How long do we keep your personal data?

We store data for as long as it is necessary to fulfill our obligations as a supplier, and for as long as required by statutory retention periods. When we store data for purposes other than our obligations as a company, e.g. to meet accounting and financial reporting requirements, we only store the information for as long as is necessary for the respective purpose.

Changes to this Data Protection Policy

The content of this data protection policy may change over time. We will always hold our customers' privacy in high regard, and comply with all data protection laws within the EU and Sweden. If we make major changes, these will be communicated via email. If you want to stay up to date, we recommend reading this policy at regular intervals.

Contact us and the data protection authority

If you have any questions or comments regarding our data protection policy, please contact us by email or telephone. Contact information can be found on our website.

You can also file a complaint or contact the Swedish Data Protection Authority, which acts as our supervisory authority. Contact details can be found at https://www.datainspektionen.se

 

Register of our personal data processors

In the capacity of data controller for your personal data as a customer, the following suppliers may be used, which thereby have access to customers' personal data.

Supplier

Cause

Information

Country

Legal basis

Web IT Solutions AB

Web hosting

Server operation

Booking system

Website

SEE

Agreement

We will not disclose or sell your personal information to any third party unless we have your written permission to do so.

CONTACT US

En del av Kulturresan
Dalarna Art Trail
Kulturrådet vit logo

Work.se

sveriges museer

Follow us

Facebook Instagram

Data protection policy

Region Dalarna logo

© All rights reserved Verket Avesta 2025

Created by: Web IT Solutions

This website uses cookies to ensure you get the best possible experience on the Website.

Accept