U Group Privacy Policy 

The data controller responsible for processing your personal data is: 

U Group AB 
Kungsportsavenyen 10 
411 36 Göteborg, Sweden 
info@friday.se 

U group has an external Data Protection Officer: 

Qbase AB 
Oliver Edstrand 
dpo@qbase.se  

We collect personal data to provide, manage, and improve our services and to maintain our customer relationships. The types of personal data we process include: 

• Personal Identification Information: Name, email address, phone number, and any other information you provide us with 

• Customer data: Customer history, notes from calls and meetings, email correspondence, employee information 

• Contractual data: Contracts, billing information, payment history 

• Communication: Emails, meeting notes, etc.  

We do not collect sensitive personal data, such as health or biometric data, unless it is absolutely necessary and only with your explicit consent. 

We collect and process personal your personal data for the following purposes:  

• To facilitate communication, respond to your queries and provide customer support. 

• To manage services, agreements, and invoicing. 

• To improve customer service and follow-ups. 

• Comply with legal or contractual obligations. 

We collect personal data in the following ways: 

• Directly from you when you fill out a contact form, send an email, or enter into an agreement with us. 

• From meetings and calls, where we may document relevant information in our CRM system. 

• Other parties that share relevant data on you with us. 

We process your personal data based on the following legal grounds: 

• Consent: When you have given clear consent for us to process your personal data. 

• Contractual Obligation: When processing is necessary due to a contract between us. 

• Legal Obligation: When we must process data to comply with the law. 

• Legitimate Interest: For our legitimate interests, provided your interests and fundamental rights do not override those interests. 

We retain your data only as long as necessary to fulfill the purposes we collected it for, and to satisfy and comply with any legal, accounting, or reporting requirements. 

We implement technical and organizational security measures to protect your personal data, including: 

• Encryption of data during transmission and storage. 

• Restricted access to personal data, ensuring only authorized personnel can access it. 

• Password protection and two-factor authentication for our systems. 

Under GDPR, you have the following rights regarding your personal data: 

• Right to access: Request a copy of your personal data. 

• Right to rectification: Correct inaccurate or incomplete data. 

• Right to erasure: Request deletion of your personal data. 

• Right to restrict processing: Limit how we process your data. 

• Right to object: Object to data processing for direct marketing purposes. 

• Right to data portability: Request your data in a structured format. 

To exercise any of these rights, please contact us at info@u-group.se.   

We only share personal data when necessary: 

• With service providers, such as IT support, CRM systems, and cloud storage providers. 

• With authorities, when we have a legal obligation to disclose data, such as tax authorities. 

• In case of business changes, such as mergers or sales of the business. 

We always ensure that third parties comply with GDPR by signing data processing agreements where required. 

If you have any questions about how we process your personal data, or would like to exercise your rights under GDPR, please contact us:

U Group AB 
Kungsportsavenyen 10 
411 36 Göteborg 
info@u-group.se   

 If you believe we are not complying with GDPR, you have the right to file a complaint with the Swedish Authority for Privacy Protection (IMY): www.imy.se