Addlevel is the personal data controller for Addlevel’s processing of your personal data. We are responsible for ensuring that processing is carried out in accordance with applicable law.
3.1 When you visit our website or in order to purchase our services, products, trainings, event tickets or contact us for information or service, we may collect personal information about you, as set out below:
3.2 Addlevel collects and processes personal data about you when you visit any Addlevel website, make a purchase on Addlevel’s websites, use Addlevel’s support or participate in an event organized by Addlevel. The information collected from you for bookings and purchases is required for you to enter into an agreement with Addlevel and for Addlevel to provide its services and offers.
3.3 Information that Addlevel collects about you is how you interact with Addlevel’s websites, your purchase history, what events you participated in and what offers you have been interested in by reading an email or clicking on a link.
3.4 Personal data is stored in our CRM, billing, e-mail and web analytics systems. The current web analytics tools being used are Google Analytics for addlevel.se and nodeprotect.com, and Azure Application Insights for users of nodeProtect Cloud (Free and Business Plan).
4.1 If you are a customer of Addlevel Addlevel collects and processes personal data about you as a customer who makes a purchase of our services, products, events or training and uses our services and products:
4.2 If you have shown interest by filling out our web forms Addlevel collects and processes the following personal data about you:
4.3 If you are a newsletter subscriber Addlevel collects and processes the following personal data about you:
4.4 If you visit our websites Addlevel collects and processes your IP address and your use of Addlevel’s websites. To see how the use of the websites is tracked, see section 12 on Cookies.
We only use the personal data for the original purpose for which it was collected, unless subsequent consent has been obtained.
5.1 If you are a customer of Addlevel Addlevel processes your personal data for the purpose of:
5.2 If you are a newsletter subscriber or have shown interest by filling in our web form, or initiating dialog through other channels such as bot communication, Addlevel processes your personal data in order to:
5.3 If you visit our website Addlevel processes your personal data for the purpose of:
We base the processing of your personal data on the legal grounds described below.
6.1 Performance of contracts: If you are a customer, Addlevel processes your personal data in order to fulfil the contract with you as a customer, make bookings and purchases, simplify administration and order history.
6.3 Legitimate interest: In order to be able to send you offers about our services, products and events and to make limited segmentation of customers, e.g. based on geography or knowledge area, a small part of the processing of personal data is based on the legitimate interest of the personal data controller. Addlevel does not process sensitive personal data on the basis of a legitimate interest and does not carry out any processing that constitutes profiling on the basis of a legitimate interest e.g. allergies at events.
6.4 Legal obligation: In some cases, Addlevel may have a legal obligation to process your personal data. This applies, for example, to the processing of personal data that we perform in order to comply with the requirements of the Bookkeeping Act.
7.1 Addlevel can process your personal data through profiling. If you are a visitor, customer or newsletter subscriber, information is analyzed - about how you use Addlevel’s websites, - about which of our products, services and offers you have demonstrated interest in, - about the newsletters you have interacted with and events you have signed up for, - about purchases to provide personalized offers that we think suit you, - in order to invite you to events we think you would like to attend.
7.2 You may object to the processing of personal data through profiling at any time. You can do this by calling us at Addlevel + 46 8 10 40 00 or by contacting firstname.lastname@example.org or by sending your request to Addlevel AB, Odengatan 81, 113 22 Stockholm. Once we receive your notification, we will without undue delay cease processing your personal data for this purpose.
8.2 Data Erasure Policy Your personal data is stored in our CRM, billing and data analysis tools as long as you have purchased, interacted or shown interest in Addlevel or until consent is revoked by the customer, or if the customer objects to the processing. See section 12. In our chosen e-mail system, we store information about our customers that has been automatically created as an e-mail as a part of web interaction, i.e. filling in a form, or communicating with a chat program, for a maximum of 24 months. The data is then deleted from the system.
9.1 Third party Addlevel may disclose information to third parties, such as other companies within Truesec Group, partners and card and communication service providers. Addlevel never sells personal data to third parties. Third parties to which Addlevel discloses information about a customer may only use the information for the purpose of:
These third parties include:
9.2 In order to comply with applicable legal or governmental requirements, to defend Addlevel’s legal interests or to detect, prevent or act on fraud and other security or technical issues, Addlevel may disclose personal data if necessary for these purposes.
9.3 Non-EU/EEA countries Addlevel may transfer data to countries outside the EU/EEA, if one of Addlevel’s suppliers is located there. If data is transferred outside the EU/EEA, Addlevel takes steps to ensure that the data is protected and takes steps necessary to legally transfer personal data to countries outside the EU/EEA.
11.1 Addlevel is responsible for ensuring that your personal data is processed in compliance with applicable legislation.
11.2 At your request or on its own initiative, Addlevel may correct, de-identify, delete or supplement personal data that is inaccurate, incomplete or misleading.
11.3 You have the right to request:
11.4 Data portability. You have the right, under certain conditions, to obtain and transfer your personal data in a structured, commonly used and machine-readable format to another data controller.
11.5 You have the right to object to personal data processing carried out on the basis of Addlevel’s legitimate interests. Addlevel will only continue processing if there is a legitimate interest for the treatment that overrides your interests. Pending the verification that Addlevel’s legitimate interest overrides your interests, you can request restriction of the processing of your personal data, as referred to in section 11.3 last paragraph.
11.6 If you do not want Addlevel to process your data for direct marketing purposes, you have the right to object to the processing by emailing email@example.com. Once we receive your objection, we will cease processing the personal data for these marketing purposes.
11.8 You have the right to submit complaints regarding the processing of your personal data to the Swedish Data Protection Authority.
11.9 You have the right to withdraw your consent to the processing of personal data at any time, with immediate effect and free of charge. To do this, contact Addlevel by phone + 46 8 10 40 00 or firstname.lastname@example.org.
12.1 What are cookies?
A cookie is a small text file that the website requests to save on your device or computer in order to recognize you the next time you visit the website. The cookie is used to improve the web experience for you as a visitor. The information in the cookie is possible to use to follow a user’s browsing. There are two types of cookies:
12.2.1 The website uses permanent cookies and session-based cookies for the purpose of: – Measure and analyze visitors’ flow and navigation on the site to learn what visitors appreciate and how they use our web services – Allowing the system to recognize repeat users to make the experience as good as possible for you as a visitor. – Remembering the visitor’s choice of text size on the site and automatically fill out various form fields to facilitate the availability of services for the user and its revisits to our websites.
12.2.2 If you accept session-based cookies, you can fully use our website.
12.2.3 If you do not accept any cookies, you cannot fully use our website – you can only read information and view services, see prices and related information.
12.3 Website analytics tools We use Google Analytics to create an image of how you as a visitor use the site. The following cookies are created when you visit the web:
Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.
|CookieConsent||nodeprotect.com, addlevel.se||1 year||Stores the user’s cookie consent state for the current domain|
|AspNetCore.Antiforgery||login.nodeprotect.com||Session||Helps prevent Cross-Site Request Forgery (CSRF) attacks.|
|AspNetCore.Identity||login.nodeprotect.com||Session||Session cookie containing your authentication information|
|ARRAffinity||login.nodeprotect.com||Session||Used to distribute traffic to the web site on several servers in order to optimise response times.|
|AI_buffer||login.nodeprotect.com||Session||Used in context with the “AI_sentBuffer” in order to limit the number of data-server-updates (Azure).|
|AI_sentBuffer||login.nodeprotect.com||Session||Used in context with the “AI_buffer” in order to limit the number of data-server-updates (Azure).|
|ai_session||login.nodeprotect.com||Session||Preserves users states across page requests.|
|idsrv.session||login.nodeprotect.com||Session||The session cookie is only used by the session monitoring endpoint to detect if the current session has changed.|
|DSID||doubleclick.net||1 month||This cookie is set to note your specific user identity. It contains a hashed/encrypted unique ID.|
|SID||google.com, google.se||2 years||This is a very common cookie name but where it is found as a session cookie it is likely to be used as for session state management.|
|DSID||doubleclick.net||1 month||This cookie is set to note your specific user identity. It contains a hashed/encrypted unique ID.|
|SEARCH_SAMESITE||google.com, google.se||4 months||Used to prevent cross-site request forgery (CSRF) attacks.|
|vuid||vimeo.com||2 years||Collects data on the user’s visits to the web site, such as which pages have been read.|
|em_cdn_uid||cdn.embedly.com||1 year||Measures the number of times an embedded element from a third-party service has been used.|
Preference cookies enable a website to remember information that changes the way the website behaves or looks, like your preferred language or the region that you are in.
|CookieConsentBulkSetting-#||cookiebot.com||Persistent||Enables cookie consent across multiple web sites|
|lang [x2]||Session||Remembers the user’s selected language version of a website|
Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.
|_ga||nodeprotect.com, addlevel.se||2 years||Registers a unique ID that is used to generate statistical data on how the visitor uses the web site.|
|_gat||nodeprotect.com, addlevel.se||1 day||Used by Google Analytics to throttle request rate|
|_gid||nodeprotect.com, addlevel.se||1 day||Registers a unique ID that is used to generate statistical data on how the visitor uses the web site.|
|ai_user||login.nodeprotect.com||1 year||Used by Microsoft Application Insights software to collect statistical usage and telemetry information.|
|OGP||google.com||1 month||This cookie enables the functionality of Google Maps.|
|collect||Session||Used to send data to Google Analytics about the visitor’s device and behaviour. Tracks the visitor across devices and marketing channels.|
|personalization_id||2 years||This cookie is set by Twitter - The cookie allows the visitor to share content from the website onto their Twitter profile.|
Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third-party advertisers.
|_gcl_au||nodeprotect.com, addlevel.se||3 months||Used by Google AdSense for experimenting with advertisement efficiency across web sites using their services.|
|ads/ga-audiences||google.com||Session||Used by Google AdWords to re-engage visitors that are likely to convert to customers based on the visitor’s online behavior across web sites.|
|1P_JAR||google.com||1 month||This cookie carries out information about how the end user uses the website and any advertising that the end user may have seen before visiting the said website|
|APISID||google.com, google.se||2 years||Used to build a profile of the website visitor’s interests and show relevant ads on other sites.|
|CONSENT||google.com, google.se||18 years||This cookie carries out information about how the end user uses the website and any advertising that the end user may have seen before visiting the said website.|
|HSID||google.com, google.se||1 year||This cookie is set by DoubleClick (which is owned by Google) to build a profile of the website visitor’s interests and show relevant ads on other sites.|
|IDE||doubleclick.net||6 months||This cookie carries out information about how the end user uses the website and any advertising that the end user may have seen before visiting the said website.|
|NID||google.com, google.se||6 months||This cookie is set by DoubleClick (which is owned by Google) to help build a profile of your interests and show you relevant ads on other sites.|
|SAPISID||google.com, google.se||2 years||This DoubleClick cookie is generally set through the site by advertising partners, and used by them to build a profile of the website visitor’s interests and show relevant ads on other sites. This cookie works by uniquely identifying your browser and device.|
|SIDCC||google.com||1 year||This cookie carries out information about how the end user uses the website and any advertising that the end user may have seen before visiting the said website.|
|SSID||google.com, google.se||2 years|
|OTZ||www.google.com||1 month||Used by Google Analytics that provides an aggregate analysis of Website visitors|
|ANID||google.com, google.se||1 year||Used by for targeting purposes to build a profile of the website visitor’s interests in order to show relevant & personalized Google advertising|
|__Secure-3PAPISID||google.com, google.se||2 years||Used by for targeting purposes to build a profile of the website visitor’s interests in order to show relevant & personalized Google advertising|
|__Secure-3PSID||google.com||1 years||Used by for targeting purposes to build a profile of the website visitor’s interests in order to show relevant & personalized Google advertising|
|__Secure-3PSIDCC||google.com, google.se||2 years|
|__Secure-APISID||google.com, google.se||2 years||Used by for targeting purposes to build a profile of the website visitor’s interests in order to show relevant & personalized Google|
|__Secure-HSID||google.com, google.se||6 months||This cookie is set by DoubleClick (which is owned by Google) to build a profile of the website visitor’s interests and show relevant ads on other sites.|
|__Secure-SSID||google.com, google.se||6 months|
|https://tr.lfeeder.com/||tr.lfeeder.com||Session||Tracks the individual sessions on the website, allowing the website to compile statistical data from multiple visits. This data can also be used to create leads for marketing purposes.|
|_lfa_expiry||sc.lfeeder.com||Persistent||Contains the expiry-date for the cookie with corresponding name.|
|_lfa_#||sc.lfeeder.com||Persistent||Additional - lfeeder.|
|_lfa||sc.lfeeder.com||2 years||Used in context with Account-Based-Marketing (ABM). The cookie registers data such as IP-addresses, time spent on the website and page requests for the visit. This is used for retargeting of multiple users rooting from the same IP-addresses. ABM usually facilitates B2B marketing purposes.|
|bcookie||2 years||Used by the social networking service, LinkedIn, for tracking the use of embedded services.|
|bscookie||2 years||Used by the social networking service, LinkedIn, for tracking the use of embedded services.|
|i/adsct||Session||The cookie is used by Twitter.com in order to determine the number of visitors accessing the website through twitter advertisement content.|
|IDE||1 year||Used by Google DoubleClick to register and report the website user’s actions after viewing or clicking one of the advertiser’s ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user.|
|lidc||1 day||Used by the social networking service, LinkedIn, for tracking the use of embedded services.|
|lissc||1 year||Used by the social networking service, LinkedIn, for tracking the use of embedded services.|
|pagead/1p-user-list/#||Session||Used by Google pagead dynamic marketing to track events such as conversions or other meaningful user interactions.|
|test_cookie||1 day||Used to check if the user’s browser supports cookies.|
|UserMatchHistory||29 days||Used to track visitors on multiple websites, in order to present relevant advertisement based on the visitor’s preferences.|
12.4 Remove cookie storage
If you do not want cookies to be stored on your computer, you can turn off the feature in your browser settings. No cookies will be stored, but please note that your personal settings will disappear. Learn how to remove cookies from browsers. https://support.google.com/chrome/answer/95647
If you don’t want your visits to our website to appear in google analytics statistics, you can use an add-on to your browser. See Google Analytics Opt-out Browser Add-on. https://tools.google.com/dlpage/gaoptout Legal Information: Electronic Communications Act (SFS 2003:389).
113 22 Stockholm
Phone: +46 8 10 40 00
Data Protection Officer:
Phone: +46 8 10 40 00