Privacy Notice

This Privacy Notice explains how Thermo Analytic Development AB (“Company”, “We”, “Us”, or “Our”) collects, processes, and protects personal data in accordance with the General Data Protection Regulation (GDPR). It is provided for information purposes only and does not request or require consent.

1. Data Controller

The data controller responsible for personal data processing is:

Thermo Analytic Development AB
Smidövägen 6, 197 91 Bro, Sweden
Email: info@thermoanalytic.com
Phone: +46 [phone number]

Data Protection Officer (DPO)
Email: claudia.menz@thermoanalytic.com

2. Purpose and Lawful Basis for Processing

We process personal data for the following purposes:

• Communication with customers, partners, and interested parties

• Provision and administration of products and services

• Contract management and fulfillment

• Compliance with legal and regulatory obligations

• Protection of legitimate business interests

Lawful bases for processing include:

• Performance of a contract (Art. 6(1)(b) GDPR)

• Compliance with legal obligations (Art. 6(1)(c) GDPR)

• Legitimate interests pursued by the controller (Art. 6(1)(f) GDPR), e.g., business communication, service improvement

3. Categories of Personal Data

Depending on the context, the following categories of personal data may be processed:

• Identification information (name, title)

• Contact information (email, phone number, business address)

• Professional information (company, job title)

• Communication records (emails, inquiries, meeting notes)

• Technical information where applicable (IP address, system logs)

4. Data Sharing and Transfers

Personal data may be shared with:

• Internal departments providing services

• Trusted service providers acting on our behalf

• Legal authorities, if required by law

If personal data is transferred outside the European Economic Area (EEA), appropriate safeguards will be applied, such as:

• Standard Contractual Clauses approved by the European Commission

• Other legally recognized mechanisms ensuring GDPR compliance

5. Data Retention

We retain personal data only as long as necessary to fulfill the purposes described above, or as required by law. Retention periods may vary depending on:

• The type of data

• Legal, contractual, or regulatory requirements

6. Rights of Data Subjects

Under the GDPR, you have the following rights regarding your personal data:

• Right of access – obtain confirmation and access your data

• Right to rectification – correct inaccurate or incomplete data

• Right to erasure – request deletion of data where applicable

• Right to restriction of processing – limit data usage under certain conditions

• Right to data portability – receive your data in a structured, commonly used format

• Right to object – object to processing based on legitimate interests

Requests can be made via the contact details in Section 1.

7. Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority if you believe your personal data is processed unlawfully.
For Sweden, the supervisory authority is:

Integritetsskyddsmyndigheten
Website: https://www.imy.se

8. Updates to this Privacy Notice

This Privacy Notice may be updated periodically to reflect changes in:

• Legal requirements

• Data processing practices

The latest version will always be made available on request or through appropriate communication channels.

10. Children’s Privacy

Our Service is not directed to children under 16. We do not knowingly collect personal data from children. If you believe we have collected such data, contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy. Changes will be posted on this page with a new “Last updated” date. For significant changes, we may notify you by email.