• Svenska
  • English
  • Svenska
  • English

    • General Data Protection Regulation (ENG)

    General Data Protection Regulation (Cookies below)

    Identification and Personal Data

    (Cookies are covered below)

    Disclaimer:

    This text has been translated from the Swedish version of this webpage [click here], but not by a certified translator. In case of any discrepancies, the Swedish text shall take precedence.

    1. In order to fulfil Zacharias® obligations under the law and provide Zacharias® services, personal data is used for the following purposes, including, but not limited to:

    • Handling customers matters in Sweden and Malta.
    • Handling matters relating to Swedish and Maltese law and regulations.
    • Handling insurance-related matters.
    • Managing and administering dive courses related to law for Swedes in Malta.
    • Managing emails and other communication necessary to effectively perform our services.

    2. We do not use your personal data for any other incompatible purposes and only retain it as long as necessary. In certain cases, we may disclose your personal data to third parties we collaborate with in order to provide our services, such as insurance companies for instance DAN, diving agencies to which we belong i.e. PADI,  and professional advisors in Malta. We may also disclose your personal data to authorities in Sweden and Malta concerning among other things the professional liability insurance covering employees and others. We will not sell your personal data to anyone.

    Legal Basis for Processing

    3. According to the law we must verify customers identity and inform us about the case and, in some cases, the source of funds and other assets. This usually occurs before any course begins. We may therefore ask for identification documents and documentation proving the origin of funds and other assets. We are also required to verify the information provided to us. For this purpose, We may gather information from external sources, such as databases. All information and documentation obtained in connection with these verifications will be retained by us.

    4. Personal data is not used for automated decision-making or profiling.

    5. By engaging us, you consent to us processing your personal data for the purposes specified in this document and as outlined below concerning anti-money laundering laws.

    6. The customer, by transferring the assignment, consents to their name, personal identification number, case details, etc., being recorded in our customer register, invoicing system, accounting software, template management system, and email management for both incoming and outgoing correspondence with or without attached files, as well as data processing of incoming mail. The customer also agrees that the information may be forwarded, in whole or in part, to third parties for the purposes outlined above or to facilitate the execution of our and ours employees tasks or to promote the customers interests.

    7. We are responsible for handling personal data properly. The client has the right to access the personal data we hold about them once a year. The customer also has the right to request that incorrect information be corrected. Requests for information and correction must be made in writing.

    Retention Period

    8. We retains personal data for as long as necessary to comply with statutory obligations, conflict of interest checks, and other responsibilities, and to provide the services entrusted to us. Data in our archives is gradually purged over time. As client data may be reused for recurring assignments, there is a legitimate basis for maintaining the data for the specified retention period.

    9. To ensure the accuracy of the customers personal data, we may update and supplement personal data by obtaining information from private and public registers. See below under “Archiving and Disclosure of Information.”

    Children Under 18 Years

    10. When personal data is provided by or on behalf of children under the age of 16, the relevant guardian must give written consent for us to process the data.

    The consent may be provided by email, but only if the email with the consent is accompanied by a copy of the guardian’s driver’s license or passport and a phone number for follow-up verification of the consent.

    Complaints

    11. Complaints regarding our handling of personal data can be made to the supervisory authority. In Sweden, this is the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten), and in Malta, it is the Information and Data Protection Commissioner (IDPC).

    Swedish Authority for Privacy Protection

    Box 8114
    104 20 Stockholm
    Phone: 08-657 61 00
    Email: imy@imy.se
    Website: https://www.imy.se/

    Information and Data Protection Commissioner (IDPC)

    Data Protection Commissioner
    Level 2, Airways House, High Street
    Sliema, SLM 1549, Malta
    Telephone: +356 2328 7100
    Email: idpc.info@idpc.org.mt
    Website: https://idpc.org.mt

    Responsible for Processing

    12.Claude D Zacharias/Z-Dive is responsible for the handling of stored personal data.

    13. We is obligated to provide the client, free of charge, with written information, signed by the customer, once per calendar year, regarding whether personal data about the client is being processed. If such data is processed, information will also be provided about the types of personal data, the sources of the data, the purpose of processing, and the recipients or categories of recipients to whom the data has been disclosed.

    Archiving and Disclosure of Information

    14. The information provided by the customer to us is protected by us in an appropriate manner and in accordance with applicable ethical rules.

    15. We communicates with the customer and others involved in an assignment in several ways, including via email. Although email is an effective communication method, it does pose risks regarding security and confidentiality. We want to inform the customer about the risks associated with communication via email, especially if the customers email address belongs to a company. The client is responsible for informing us if any special precautions are required. We do not encrypt our email communications. We takes no responsibility for these risks. If the customer prefers us not to communicate via email, they should inform us about it.

    16. Our spam and virus filters and other security measures may sometimes block or filter out legitimate emails. The customer should therefore follow up on important emails via phone with the responsible partner.

    17. When an assignment is completed or otherwise terminated, we will archive (either by our self or with a third party, in paper or electronic form) most of the documents and work results received and created during the assignment. These documents and work results will be archived for the period deemed necessary by us based on the nature of the assignment, but never for less time than required by law or applicable ethical rules.

    18. As we are obligated to archive nearly all documents and work results received and created during an assignment, we cannot accommodate requests to restore (without creating and retaining a copy of the relevant document) or destroy a document or work result before the archiving period has expired. If the customer requests us to empty an electronic file in our document management system, we will comply with the customers request to the extent allowed by law and applicable ethical rules (but we will keep a paper copy of the removed documents or store them on an electronic storage medium), normally with compensation if the work is time-consuming.

    19. If we have not specifically agreed otherwise in the assignment confirmation, we will provide the client with all original documents once the assignment is completed or otherwise terminated. However, as stated in above, we will retain a copy of the original documents.

    20. If we hire or collaborate with other professional advisors or specialists in the assignment, we have the right to share relevant materials and information with them to enable them to advise or perform the relevant service.

    21. Once an assignment – for instance when excecuting a dive course in a public area – becomes publicly known, we has the right to disclose information about our involvement in the assignment and other publicly available details about the case when marketing and on our website.

    22. If VAT is not applicable to our services to the customer, we are legally required in certain cases to provide the tax authorities with information about the customers VAT number and the value of the services provided. By engaging us, the customer consents to our disclosing this information to the tax authorities.

    Cookies

    According to the Swedish Electronic Communications Act and Data Protection regulations, which came into force on 1 July 2011, all visitors to a website using cookies (small text files) must be informed about:

    • That the website contains cookies.
    • What these cookies are used for.
    • How cookies can be avoided.
    • That visitors must give their active consent before cookies are used (especially for non-essential cookies).

    We uses cookies on this website, where applicable, to improve user experience and for statistical purposes. We use both persistent cookies and session cookies. By continuing to use our website, you accept the use of cookies in accordance with this policy.

    If you do not wish to have cookies stored on your device, you can adjust the settings in your browser to reject cookies or to be notified whenever a website attempts to store cookies. If you disable cookies, some features on our website may not function correctly.

    For more information, please refer to the Swedish Data Protection Authority (Integritetsskyddsmyndigheten) or the Information and Data Protection Commissioner (IDPC).