The data on this website (“Website”) is processed by Food Waste Challenge, which is an initiative by Global Shapers Stockholm. At Food Waste Challenge we care about your privacy and are therefore careful when processing your personal data so we can maintain the highest possible standard regarding the protection of personal data.
We are the controller in accordance with current privacy legislations. In case you have any questions about our processing of your personal data, feel free to contact us at email@example.com.
Collection of personal data
The personal data of users (“User Data”) collected and processed by us in connection with our Services can be divided in two general categories: User Data and Technical data. Both categories are explained more in detail below.
We may collect User Data from our users in a variety of ways, including when users:
• Make an application for a competition;
• Request information, sign up receive email updates;
• Participate in any of our surveys or market research;
• Contact us via email, social media, post or instant messenger;
The categories of personal data that can be collected through your use of our Services depends on how you interact with us. When you enter the competition we will, for example, process your first and last name, e-mail address, telephone number, residential address, country of living, occupation, and other relevant information in your contact with us. We may also collect and process the following user data in connection with your use of our Services: professional background, employer, and other information that the user chooses to provide in connection with his/her contact with us.
Although we do not normally use technical data to identify you as an individual, you can sometimes be recognized from it, either alone or when combined or linked with User Data. In these situations, technical Data can also be considered personal data under applicable laws and we will treat such data as personal data. We and/or our authorized third-party service providers may automatically collect, for example, browser type and version, time spent at our Website and IP address.
Regardless for what reason you interact with us, we will only process data that is relevant.
Purpose and legitimate grounds for processing of your Personal Data
• To organize events and competitions
We process your personal data to be able to organize events and competitions and provide our Services under the contract between you and us. We use the data, for example, to handle your application, to enable us to send updated information about the status of your application and other relevant information. The legitimate ground for processing is the performance of a contract.
• For communication, marketing, and development
We process personal data for the purpose to maintain a good relationship with our users as well as for marketing and advertising our Services. This means for example, providing the user with targeted offers, side event information based on the information gathered from the user during his/her use of our Services. The legitimate grounds for processing are the legitimate interests of us.
When it comes to electronic direct marketing, we always gather a consent from the user (opt-in) where required by applicable laws which is also the legal basis for our processing of Personal Data. A user can withdraw at any time (opt-out) by contacting us via email. (See section 1).
• To fulfil our legal obligations
We process data to be able to administer and fulfil our obligations under law. Personal data may also be disclosed due to mandatory grounds arising from the law or regulations or, if enquired, to the court or competent authority for legal and justified grounds. The legitimate grounds for processing are to comply with legal obligations.
• For potential claims handling and legal processes
We may process personal data in relation to claims handling and legal processes. We may also process data for the prevention of fraud, misuse of our Services and for data, system, and network security. In these situations, the legitimate grounds for processing is the legitimate interests of us.
How long do we store your personal data?
If a user does not object, in writing, to the processing of their personal data, the personal data will be processed by us if we deem it necessary with regard to the purposes stated above. This means that we will only process your data if it is needed in to deliver our Services or otherwise fulfill the legal obligations applicable to us. We have routines for how long we store personal data to ensure that your data is accurately processed.
However, transfers of information over the internet and mobile networks can never happen without any risk, so all transfers are made on the risk of the person transferring the data.
Embedded content from other websites
Our Website may, from time to time, contain links to and from other websites. This includes, for example, links to our partners, advertisers, and others. In case you follow a link from any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or
liability for these policies. If you follow a link to any of these websites, please check these policies before you submit any personal data to these websites.
Transfers to third countries
We always take necessary steps to ensure that the users’ personal data receives an adequate level of protection in the jurisdictions in which it is stored and processed. In case we transfer personal data to countries outside of the European Economic Area we always take adequate measures to guarantee the safety in line with applicable privacy regulations.
Transfers to third parties
We do not share personal data with third parties outside of our organization unless one of the following circumstances applies:
• For legal reasons
We may share personal data with third parties outside our organization if we have a good-faith belief that access to and use of the personal data is reasonably necessary to: (i) meet any applicable law, regulation, and/or court order; (ii) detect, prevent, or otherwise address fraud, security or technical issues; and/or (iii) protect the interests, properties or safety of Slush, the Users or the public in accordance with the law. When possible, we will inform the Users about such data transfer and processing.
• To authorized service providers
• With explicit consent
We may share your personal data with third parties outside the Food Waste Challenge for other reasons than the ones mentioned above, when we have your explicit consent to do so. The user always has the right to withdraw a consent(s).
Aggregated data (non-identifiable data)
We may share aggregated data to third parties. Aggregated data is non-identifiable data. The aggregated data has in such instances been compiled from information that has been collected through the use of our Services. The aggregated data does not contain any information which can be used to identify individual persons and is therefore not personal data.
You have numerous rights according to applicable privacy laws. You have the right to receive information regarding what personal data we are processing, for what purpose it is being processed, if personal data has been transferred to a third country, and which parties have received your personal data. Moreover, and to clarify, you can at any time contact us to:
• Request information about what personal data we process about you;
• Ask us to restrict the processing of your personal data;
• Ask us to correct information that is incorrect (The users have the right to have incorrect, imprecise, incomplete, outdated or unnecessary personal data we have stored about the user corrected by contacting us;
• Request that your personal data are erased;
• Withdraw from a consent (you can contact us whenever to withdraw from a consent you provided in contact with us. All personal data which we do not have a legal obligation to retain will be erased.);
• Ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes; and
• Request that your personal data be moved to another controller of personal data by receiving your personal data in an electronic format, which are generally used. (the right to data portability)
The Swedish supervisory authority
You always have the right to lodge a complaint or report an infringement of the GDPR to the local supervisory authority for data protection in case the user considers the Company’s processing of personal data to be inconsistent with the applicable data protection laws. In Sweden, the local supervisory authority is the Swedish Authority for Privacy Protection.
Last updated February 21, 2021