Our policy in pdf-format: BSC Privacy Policy
BSC Business Service Club AB (Swedish org.nr 556643-9518) and BSC Travel AB (Swedish org.nr
559012-0043) cares about your privacy and wants to make sure that you always feel safe when submitting
personal information. This Privacy Policy describes how we ensure the processing of your personal data in
accordance with applicable legislations.
Personal data manager: BSC Business Service Club AB and BSC Travel AB
Address Box 5148
121 17 Johanneshov
Contact by email: info@bsc.se
Contact by phone: Kerstin Öhman, +46-8-702 00 70

Personal data management
BSC Business Service Club is personally responsible for handling and processing your personal data as
well as ensuring the application and accordance of relevant legislations. When booking and confirming a
trip abroad with us, you will directly receive an invoice from BSC Travel AB which then becomes your
personal data manager for that particular trip/project. BSC Travel AB is an owned subsidiary of BSC
Business service Club AB. Regardless of which company, we are available under info@bsc.se or by phone
+46 8 702 00 70.

How do we collect personal data?
We collect personal data such as name, address, telephone number and e-mail when you book an event,
a trip, an additional service or when you contact us personally or register for a newsletter. During travels,
additional data on gender and birth dates may also be required.
Our long-term customers are part of our Premium Service program, whom we have an agreement with. If you don’t belong to this group it is our confirmation that regulates our cooperation.
The above mentioned agreement gives us access to the personal data which is needed to communicate
with customers as well as to be able to deliver products and services that our agreed and confirmed
delivery refers to.

Why do we collect data?
We collect necessary information in order to fulfil our event and/ or travel agreement with our
customers/you. We only take in personal data that is needed to communicate with customers, partners and
subcontractors as well as required data for the delivery of products and services that our agreed and
confirmed delivery refers to.
If we don’t have a contractual relationship or any other legal basis for handling your personal data as
mentioned above, your consent is our basis in order to process your personal data or send newsletters.
Some personal data must be saved from us in order to meet legal or regulatory requirements such as
accounting provisions. This means that we may save your personal data for a longer time.
It may also occur that your personal data is processed due to several different statutory sources.

What purpose do we collect data for?
The information is needed to administer, deliver and provide customer service around the event/ travel
service or for any other service we offer. Your personal data is further used to send and provide you with
information via e-mail, SMS and / or mobile calls regarding your travel or trip.
Your contact and booking information may also be used for customer surveys.

How long do we save your personal data?
After completing the event and / or trip, your customer data and event / travel history will be saved for a
maximum of two years if you do not actively disagree. We also save your data due to the law for
accounting. Additional laws that are regulating data storage times are also met by us.
If you have register to receive a newsletter, you can at any time deregister and stop the service.

Who else has access to your personal data?
In order to fulfil our agreement, customer data is passed on to suppliers who are responsible and actively
engaged in the trip or event, for example airlines, hotels, restaurants, car hire companies etc. We are
following all legal, technical and organizational measures to ensure that your personal data is handled
safely and with an adequate level of protection.

Personal data in third countries
We arrange trips all over the world and personal data will therefore be transferred to partners and suppliers
outside the EU /EEA. In that case, all legal, technical and organizational measures are met in order to
ensure that your personal data is handled safely and with adequate level of protection even in countries
outside the EU.

We take appropriate security measures to protect your personal data from loss or unauthorized access,
use, modification or disclosure. We continuously work with built-in data protection and data protection as

Your rights
You have the right to request access and rectification or, in some cases, deletion of your personal data,
request limitation of continued processing and a right to object the process. In that case, we will notify each
recipient who got access to your personal data about any corrections or deletions of data as well as
limitations of processing in accordance with your wishes.
You have the right, through a written signed application, to receive a register extract free of charge
including, among others, all your existing saved personal data, the purpose of its processing and all
recipients that received or got disclosed to your personal data.
We will, at your request or on our own initiative, rectify, de-identify, delete or supplement any information
found to be inaccurate, incomplete or misleading.
If you do not want us to process your personal data for e.g. direct marketing, you have the right to revoke
your consent and / or deregister in our marketing messages at any time. Once we have received your
revocation, we will cease to process your personal data for the purpose you provided your consent for.
You also have the right to data portability, which is the right to request the transfer of your personal data to
someone else /a third party.
You have the right to raise an objection to the Data Inspectorate if you believe that we do not process your
personal data correctly. You can read more about the Data Inspectorate at www.datainspektionen.se.