Privacy Policy
Updated, September 2023
1. Background and Scope
BizMed Sverige AB ("BizMed," "we," "us") is a corporate healthcare provider that focuses on promoting work environment, health, and well-being for companies and organizations. Our processing of personal data is governed by the EU General Data Protection Regulation (GDPR) and the Swedish Data Protection Act (2018:218). Additionally, our operations are covered by the Patient Data Act (2008:355) as we handle health-related information in our record system through HLTHY / The Patient Company AB.
2. Why and How Do We Process Personal Data?
2.1 General
We process personal data to comply with legal requirements and to effectively provide our services to corporate clients and their employees.
2.2 Patients at BizMed
2.2.1 What data is processed and how is it collected?
We process data such as health status, care meetings, names, social security numbers, and contact information. The information is collected from the patients themselves, through healthcare professionals, or via web-based tools.
2.2.2 For what purposes are the personal data processed?
The data is used to provide good and secure care and for statistical purposes in coded form.
2.2.3 What is the legal basis for processing?
The processing of patient data is according to the Patient Data Act and sometimes requires consent from the patient.
2.2.4 How long is personal data stored?
According to the Patient Data Act, patient records are stored for at least 10 years from the last entry.
2.3 Employees at Client Companies
2.3.1 What personal data is processed and how is it collected?
For services to employees of client companies, we process names, contact information, and other information necessary for the service.
2.3.2 For what purposes are the personal data processed?
The data is used to provide contracted services.
2.3.3 What is the legal basis for processing?
Processing is based on a legitimate interest or, when necessary, consent.
2.3.4 How long is personal data stored?
Data is stored for the duration of the service agreement and a reasonable period thereafter.
2.4 Contacts at Client Companies
2.4.1 What personal data is processed and how is it collected?
We process names, contact information, and positions for business relations and marketing.
2.4.2 For what purposes are the personal data processed?
The data is used for communication and marketing.
2.4.3 What is the legal basis for processing?
Processing is based on a legitimate interest and to fulfill contracts.
2.4.4 How long is personal data stored?
Data is stored to tailor offers and for marketing.
2.5 Contacts at Suppliers and Partners
2.5.1 What personal data is processed and how is it collected?
We process names, contact information, and positions for the administration of purchase agreements and business relations.
2.5.2 For what purposes are the personal data processed?
Processing is for the administration of purchase agreements and communication for business relations.
2.5.3 What is the legal basis for processing?
Processing is based on a legitimate interest.
2.5.4 How long is personal data stored?
Data is stored for the duration of the contract.
3. How Long Is Personal Data Stored?
Personal data is stored for the purposes specified above. Accounting information is stored according to the Accounting Act.
4. When and To Whom Do We Share Data?
We may share personal data according to applicable laws, with service providers, or in the event of business considerations. We also have the right to share the names of employees who have undergone a health check with the employee's employer. Appropriate safeguards are taken when transferring data outside the EU/EEA.
5. What Rights Does the Data Subject Have?
See details on rights including access, rectification, deletion, objection, and data portability in accordance with the GDPR. For patients, rights according to the Patient Data Act also apply.
6. Contact Information
For questions about the Policy or personal data, contact BizMed's data protection officer at support@bizmed.se.
7. Changes to the Policy
BizMed reserves the right to change the Policy and will inform about significant changes. Encouraged to regularly review the Policy on our website. The date of the latest change is published on the website.
©2023 by BizMed.
BizMed Sverige AB's operations are registered with IVO and are subject to the Patient Safety Act (2010:659).