Wondering how we process your personal data? It is important to us that you know how we process and store your personal data and that you know that we operate in a lawful and reliable manner. We will always protect your privacy and it is important to us that you trust us to process your personal data.
Prosero Security Group AB (Prosero), registration number 559108-3752 or one of Prosero's subsidiaries with whom you have a customer relationship, is the controller of your personal data. Contact details can be found at the end of this Privacy Policy.
Prosero Group companies process personal data in accordance with the General Data Protection Regulation (GDPR). This Privacy Policy explains in more detail how we process the personal data of data subjects.
The nature of the personal data we collect may vary depending on the service you use and the agreement we have between us. The personal data collected is necessary to provide you with the best possible service and a good customer experience, and to provide you with the right services and tailored offers.
We collect the following personal information about you:
Customer information
Customer information is the information we need to provide you with the agreed service. Customer information usually includes name, address, telephone number and email address. The information we collect may also include information about services related to you, such as subscriptions, usernames and passwords. Personal information may also include a picture of you. In some cases, we also collect other customer-specific information that we need to provide you with the right service.
Maintenance history
Maintenance history is the information we need to answer what has happened historically in an installation/safety system. The maintenance history relates to the installation or service itself and may include customer information as part of the case description.
Electronic log files and data
Electronic log files and data are data relating to events that occur when you use our services. Such information may include, for example, mobile data traffic or data received by alarm receivers. It may also be data from access control systems, alarm systems, camera systems and similar systems. Such data may include names, telephone numbers, user IDs, IP numbers, images, video clips and similar information.
Electronic log files and data may also include information obtained from our websites and other digital channels. Such information is collected to provide you with a better user experience when you visit our digital channels and to gather statistics to improve our services. Such information may include, for example, name, address, telephone number, email address, username and similar information.
Camera surveillance
Many Prosero Group companies use camera surveillance in and around their premises to identify, prevent and detect crime. In such camera surveillance, particular attention is paid to ensuring that the use of the cameras has a legitimate purpose and that the camera surveillance is necessary and proportionate to achieve that purpose. Persons who may be recorded by the cameras will be informed of the surveillance by means of signage. The cameras are not audio-recorded and are not installed in places where people have a legitimate expectation of privacy.
We will never knowingly collect sensitive personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership or information about health or sex life.
We also never knowingly collect personal data from children under the age of 16. If you are a parent of a child under 16 and become aware that your child has provided us with personal information, please contact us so that we can delete the information.
We collect personal data in the following ways:
The legislation clearly states that there must be a 'legal basis' for the processing of personal data. This means that at least one of the following conditions must be met in order for us to process your personal data:
Contract
The information is needed to fulfil the contract we have with you (or the contract you are about to enter into). This applies, for example, if you are our customer or have asked us for a quotation, price offer or similar.
Legal obligation
The information is needed to fulfil a legal obligation. This applies, for example, to data required to comply with the Accounting Act, the Emergency Services Act and similar laws.
Legitimate Interest
The information is needed to communicate with you and inform you about our services and events that may be of interest to you. This is called a legitimate interest. This requires that the processing of personal data is necessary for a legitimate interest (such as to communicate with you) and that your interest in the protection of your personal data is not overridden. You can always object to this treatment.
A legitimate interest also includes
Samples
Consent is also the legal basis for processing personal data. For consent to be valid, you must actively consent to it. Examples of such active behaviour include confirming a newsletter subscription by ticking a box on a website, filling in information on an online form, requesting information by email, responding affirmatively to a direct question about whether we should send you information, sharing a business card or similar. Pre-checked "I agree" boxes will not be accepted as consent. You can withdraw your consent at any time.
It is important for us to be able to guarantee the functioning of alarm systems and other security systems. How long we keep personal data depends on the type of data, the purpose of the storage and our legal obligations.
Within Prosero, we cooperate between companies, we cooperate with third parties and we provide services where personal data may be processed by third parties. Such a third party is called a data processor.
When personal data is shared with a processor, a data processing agreement is signed between the companies, which sets out how the personal data will be processed. The company acting as a data processor may not use your personal data for any purpose other than that for which it has been given access to the data.
Here we describe who we may disclose your personal data to.
Prosero Group companies
Prosero provides security services in Sweden, Norway, Finland and Denmark, and there is ongoing cooperation between the companies. This means that personal data may be transferred between the companies in order to carry out the services you have ordered.
Subcontractors and other companies that process personal data on our behalf.
We use subcontractors in various sectors to provide the services you order. For example, this may be a subcontractor who carries out an installation or maintenance task, an alarm centre who responds to an alarm, personal data stored in cloud services or similar. This means that personal data may be sent to third parties in order to perform the services you have ordered.
Public authorities
We are obliged to disclose personal data resulting from a decision at the request of a public authority.
Other
If you have given your consent, we may also share your personal information with companies, organisations or individuals outside our own business in other cases.
Transfer to a third country means making personal data processed in an EU or EEA country available in a country outside the EU/EEA. If we transfer your personal data to a service provider in a third country, we will implement appropriate safeguards and ensure that the transferred data is processed in accordance with applicable law.
Security companies are subject to high standards, and protecting the privacy of data, documents and customers is an important part of this. Our security work includes not only the strong protection of our premises, but also the protection of our IT infrastructure. Special attention is paid to data security to prevent and detect data leakage or loss.
We require that information about your rights and how we process your personal data is easily accessible and described in a clear and concise manner. Here we describe your rights step by step.
You can request, free of charge (once a year), an extract from the register showing the type of information registered about you. The information we provide must be in written form (which may also be in electronic form) and in clear and plain language.
We will respond to your requests without undue delay (usually within one month), and if for any reason we are unable to meet your requests, we will explain why. To ensure that we do not disclose information to unauthorised persons, information will only be disclosed after identification.
You have the right to have your personal data rectified and supplemented with relevant information if you believe that the information we hold is inaccurate or insufficient. Where personal data has been provided to subcontractors or similar parties, we will notify them when the personal data has been corrected. Exceptions will be made where it would be impossible or too burdensome to do so. You always have the right to request information about to whom the data has been disclosed.
You have the right to have your personal data deleted without undue delay. Exceptions are made for personal data that must be kept in accordance with accounting or other laws. You can request the erasure of your personal data if one of the following conditions is met:
You have the right to request the temporary restriction of the processing of your personal data. Restriction means that the data is marked in such a way that it can only be processed for certain limited purposes in the future. Processing may be restricted in the following situations:
If a restriction is requested and we have disclosed your personal data to subcontractors or similar organisations, we will inform them of the requested restriction. Exceptions will be made where it would be impossible or too burdensome to do so. You always have the right to request information about who the information has been disclosed to.
You have the right to receive your personal data so that it can be used elsewhere, for example by another service provider. To facilitate such a transfer, we must provide the information you provide to us in a structured, commonly used and machine-readable format, such as a text file or similar format.
You can request data portability if we process your personal data on the basis of your consent or if we process your personal data on the basis of a contract with you. However, the right to data portability does not apply if we process this data on the basis of a legitimate interest or a legal obligation.
For clarifications on consent, legitimate interest and legal obligation, please refer to the section "When we may collect personal data" above.
If we process your personal data on the basis of legitimate interests, you always have the right to object. In this case, you must specify what processing you object to and we must stop processing your personal data or demonstrate that there are legitimate grounds for the processing.
If your personal data is used for direct marketing, you always have the right to object to the processing at any time. If you object to direct marketing, your data may no longer be processed for that purpose.
If you believe that we are processing your personal data in breach of applicable law, please contact us as soon as possible so that we can correct the incorrect processing. You can also lodge a complaint with the national supervisory authority, which will decide whether to carry out an inspection. The contact details of the supervisory authority can be found at the European Data Protection Board: https://edpb.europa.eu/about-edpb/about-edpb/members_en.
If you have suffered damage because your personal data has been processed in breach of the General Data Protection Regulation, you may be entitled to compensation from the controller or processor involved.
A processor may be liable for damages if it has infringed the rules on processors in particular or has processed your personal data in breach of the controller's instructions.
If you have suffered damage, you can also bring a claim for damages.
You can remain completely anonymous if you wish. However, if you choose to provide personal data about yourself or others in the event of a notification, this personal data will be processed by Prosero Security Group.
Here you can find the Prosero notification channel: https://www.prosero.com/
Storage and processing of personal data related to the notification in an external notification system.
Personal data necessary for the purpose of the notification. Specific categories of personal data may be included if the nature of the case so requires.
The identity of the notifier is encrypted and anonymised through the notification system. We encourage notifiers not to enter themselves and other non-relevant personal data into the notification system.
A legal obligation. Processing is necessary to comply with mandatory legislation, the EU Directive 2019/1937 on the protection of whistleblowers and the Act on the Protection of Whistleblowers (2021:890).
The data will be kept for two years from the end of the case and/or for as long as necessary to comply with other legislation, court decisions or decisions by public authorities.
We may share your personal data with external advisors, IT service providers and public authorities where necessary.
Prosero reserves the right to make changes to this Privacy Policy from time to time. If the changes are material, we will notify you of the changes and what they mean to you before they take effect.
This Privacy Policy applies generally within Prosero, and the company with which you have a customer relationship is responsible for processing your personal data. If you wish to delete personal data, amend personal data, complete personal data, object to the processing of personal data or have questions about how we process your personal data, please contact the company responsible for your personal data. Contact details for Prosero companies are listed at https://www.prosero.com/.
This Cookie Policy explains what cookies are, how we use them on our website and how you can control them.
Cookies are small text files that are stored on a user's device when they visit a website. They are widely used by websites to make them work more efficiently, provide information to site owners and deliver personalised content to users.
We use cookies on our website for various purposes, such as:
We use both first-party and third-party cookies on our website. First-party cookies are set by our website, while third-party cookies are set by other websites, such as websites that provide advertising or analytics services.
Most browsers allow you to control the cookies stored on your computer or mobile device. You can choose whether to accept or reject cookies, or whether you want to be notified when a cookie is used. You can also delete cookies already stored on your device.
Please note that disabling cookies may affect the functionality of our website and other websites you visit.
We may update this Cookie Policy from time to time to reflect changes in the use of cookies or applicable law.
Interested in better fire safety?
Contact us, you will hear from us soon!
PAP GROUP
Niittytie 25 A
01300 Vantaa
© 2025 PAP Group Oy | by developit // creative
