About us

Vision & mission

Privacy policy

Contact

 

 

Privacy Policy – SkyMap Innovations AB

Version 2.0      Adopted 2026-03-09

This document has been translated into English for convenience. In the event of any discrepancy or inconsistency between the English translation and the original Swedish version, the Swedish version shall prevail.

 

Summary – the most important things for you

We value your personal privacy. This policy explains how we collect, use, store and protect personal data.

In brief, this means that:

  • We process personal data only when there is a clear and lawful basis.
  • We collect as little information as possible and only for specific purposes.
  • You have the right to know what data we hold about you, to have it corrected or erased, and to object to certain processing.
  • We never sell your information to third parties.
  • All processing complies with applicable legislation (GDPR) and our information security procedures.

 

1. Purpose and scope

The purpose of this policy is to provide clear information about how SkyMap Innovations AB processes personal data in its operations. The policy applies to all processing activities where SkyMap Innovations AB is the data controller, regardless of whether the data is collected via website, email, telephone, contracts or other contact channels.

Please note that this policy does not cover the processing of personal data within SkyMap’s SaaS services. When using our SaaS services, the Customer is the data controller and SkyMap acts solely as a data processor under a separate data processing agreement (DPA).

 

2. Data Controller

SkyMap Innovations AB, company registration number 556918-6025, Hjortvägen 8, 35245 Växjö, Sweden, email info@skymap.se, telephone +46 (0)470-17744, is responsible for ensuring that the processing of personal data is carried out in accordance with applicable legislation.

 

3. What personal data we collect

The personal data we process may include direct identifiers (e.g. name, email address), indirect identifiers (e.g. customer number), electronic traces (e.g. IP address, logs) and images. To make this clear, we describe these data in the following categories:

  • Contact information such as name, email address, telephone number and user information.
  • Customer information such as billing details, customer number, contracts, communication and details about contact persons at our customers, such as title and workplace.
  • Technical information such as language, IP address, browser type, device information, timestamps and information about how the service is used. We also store technical records (so-called system logs) and security tokens used to maintain operation, security and traceability in our systems.
  • Communication such as the content of messages, support cases and other correspondence between you and us.

We do not collect sensitive personal data such as information about health, religion or political opinions. If such information is nevertheless provided to us by mistake (for example in an attachment), it will be deleted or processed with special protection as soon as it is discovered.

 

4. Purpose and legal basis

We process personal data only for specific, explicit and legitimate purposes. The table below shows the purposes and the legal bases.

Purpose

Legal basis

Examples

Manage customer relationships and deliver agreed services

Contract

User data, customer data, support cases

Communication and sales

Legitimate interest

Customer contact

Marketing

Consent

Web and social media

Fulfil legal obligations

Legal obligation

Accounting Act, Companies Act

Operation and security of systems

Legitimate interest

Logs and technical data

 

5. Retention periods and criteria

We store personal data only for as long as necessary for each respective purpose.

Type of data

Retention period / criterion

Customer information

For the duration of the contract and up to 36 months thereafter for claims and followup

Financial information

7 years in accordance with the Swedish Accounting Act

Communication data

Up to 36 months after the end of the contact

Technical logs

Up to 12 months for troubleshooting and security

Marketing data

Until consent is withdrawn

 

After these periods, the data will be deleted or anonymised.

 

6. Special retention for traceability in project data

For personal data used to ensure traceability in our customers’ construction projects – for example who uploaded, modified or reviewed a specific document – the data is retained for as long as the customer stores its project data with us. The retention period therefore follows the customer’s obligation to retain documents during the agreed liability and warranty period, which normally amounts to approximately 10 years after the completion of the project.

The processing is carried out on behalf of the customer and is based on the customer’s legal obligation to retain the documents as well as our legitimate interest in maintaining traceability, security and information integrity during that period.

 

7. Recipients of personal data and thirdcountry transfers

We only share personal data with trusted partners who act as data processors under contract. They may process the data only in accordance with our instructions.

Examples of recipients:

  • IT and cloud service providers (for example hosting, email and storage)
  • Finance and accounting partners
  • Suppliers of business systems

Personal data is stored within the EU/EEA. If a transfer to a third country becomes necessary, it will take place in accordance with applicable rules and with adequate safeguards. At present, all storage takes place within the EU.

 

8. Data subject rights

You have the right to:

  • Request access to the personal data we process about you (data subject access request)
  • Request correction of incorrect data
  • Request erasure (“the right to be forgotten”)
  • Restrict processing in certain cases
  • Object to processing based on legitimate interest
  • Receive your data (data portability)

Requests to exercise these rights may be sent to us by email at info@skymap.se. If there is a need to verify your identity we may ask for additional information, but we always try to make the process as simple as possible.

 

9. Information security

We work systematically with information security. This means, among other things, that:

  • Only authorised persons have access to personal data.
  • We use technical and organisational safeguards (e.g. encryption and access controls).
  • All employees are bound by confidentiality commitments.
  • The policy forms part of our Information Security Management System (ISMS).

 

10. Automated decisionmaking

SkyMap Innovations AB does not use automated decisionmaking or profiling that produces legal effects or otherwise significantly affects you as an individual.

 

11. Contact details

If you have questions about how we process personal data or wish to exercise your rights, please contact us by post at SkyMap Innovations AB, Hjortvägen 8, 35245 Växjö, Sweden, by email at info@skymap.se or by telephone +46 (0)470-17744. If you are not satisfied with how we handle your data, you have the right to lodge a complaint with the Swedish Authority for Privacy Protection (IMY).

 

12. Version management

Version: 2.0
Previous version: 1.0
Adopted: 2026-03-09