Data collected from visiting the website or using UMC’s services

Data is information we collect and store about you and your usage of the UMC’s services. We process your information to make the services available for you, but also more useful and to develop new services.

What data are we collecting?

We collect and store two types of data about you; customer data and traffic data.

Customer data is information connected to you which enables using our services, for example username, password and contact information (name, e-mail address, phone number and organisation information). We also have information about what services you have been granted access to (governed by the organisation your account is connected to) and other information you have provided in your contact with us. We include information about you, that you have provided by yourself to our support, in this category. 

Traffic data is information we learn about you from your visit to the UMC website or the logged in services. We store the following traffic data: the IP address from which you access the Internet, the date and time, the Internet address of the website from which you linked directly to our site, the name of the file or the words that you searched, and the browser used to access our site. We may use this information to assess the number of visitors to the various sections of our site and system performance, and to identify problem areas. It helps us learn about the geographical distribution of our visitors, the technology used to access our site, which services are most frequently used, how the workload of the systems is distributed, and areas of improvements. 

How are we collecting your data?

We collect and process data:

What information we collect about you depends on which of our services you are using.

Why are we collecting this data?

As we are an organisation with basis in Sweden we need to adhere to the General Data Protection Regulation (GDPR), a European law that governs processing of personal data with the aim to protect the personal integrity. To process personal data, there must be support in the regulation, a so-called legal basis. This means that in order for our processing of your personal data to be legal:

  1. necessary to fulfil the agreement with you (your organisation/employer).
  2. to fulfil a UMC legal obligation.

The processing of your data may also be done

  1. after a balance of interest (legitimate interest).
  2. due to that you have given your consent to that particular treatment.

In order to provide services and products, we need to process and manage your data. Below are examples of the purposes for which we treat your data and on the basis of which legal basis we do this.

Provision of services

We process data about you to identify you as user of our services, to grant you access to those services you have a valid user agreement for, or have signed up for, or to help provide you with the information or material that you request. We process data so that we can invoice the costs of services, mange support issues and other problems related to your use of our services.

Legal ground: Legitimate interests (customer data) and fulfilling agreement (customer data).

Development of services

We process data to improve and develop our operations, products and services. We may pool data together for statistical reasons. We also use third party cookies from trusted providers as Google Analytics and Microsoft Application Insights, including analysis of usage that underlies our future product development.

Legal ground: legitimate interests (customer data) and fulfilling agreement (traffic data).

Other communication of the services including direct marketing

On occasion, we may study the types of questions sent to us. These studies help us to improve our website to make it more responsive to the needs of our users. We also process information about you when providing you with information about our services, or we may analyse your support request(s) to educate staff.

Legal ground: legitimate interests (customer data) and fulfilling agreement (traffic data).

Information security and preventing misuse of services

We process data to ensure data security, prevent misuse or unauthorised access according terms and condition.

Legal ground: Fulfilling agreement (traffic data).

Read more

Last modified on: May 25, 2018