Privacy Policy - Sigma IT
Skip to content

PRIVACY policy

Sigma IT respects your privacy and the right to control your personal information. Our guiding principles are simple. We will be transparent with what data we collect and why.

Our processing of personal data is carried out in accordance with the provisions arising from the applicable personal data legislation, including the EU General Data Protection Regulation, EU 2016/679, (“GDPR”).


We collect the data primarily directly from you within the framework of the relationship that we have with you. You can be a contact person at one of our customers, suppliers and/or partners or a consultant, job seeking candidate and/or student. In short, people we interact with in the course of our business. We may process personal data for the purposes outlined below, as a part of caring and maintaining our commercial relationship with your employer or you personally.

Examples of personal information we may process are your name, contact information, such as your mobile phone number, address, email address, LinkedIn profile, and other social media. We may also update your information from other public records, such as via the Swedish Companies Registration office (Bolagsverket), SPAR, etc. This is only done if it is deemed necessary to maintain good data quality.

We may also register personal information provided to us when you interact with us digitally in connection with:

  • When you fill in your name, email address and/or your mobile phone number on one of our websites.
  • If you contact us by email, our websites and social media.
  • If you sign up for one of our newsletters or sign up for some of our digital services.
  • Your visit to our websites and/or apps, including but not limited to traffic data, location data, web logs and other communication data, and for example the IP address, type of device, operating system, and browser type used for the visit.


We process your personal data for the following purposes and  legal basis.

  • Purpose: To manage and nurture our customer or supplier and/or partner relationships with your company (where you are employed) or you as a contractor/partner, and to fulfill the obligations arising out of any applicable agreements, orders and enquiries, which may involve the processing of personal data in digital business support, such as customer care systems and supplier databases.Legal basis: Our legitimate interest is to nurture our business relationships and fulfill what is expected under commercial agreements.
  • Purpose: To manage administration, invoicing, correspondence etc. with our partners and enable good service, correct erroneous information and/or send information that has been requested or which we deem may be of interest to you (or your Employer’s) in the light of our business relationship.

    Legal basis:
     Our legitimate interest is to nurture our business relationships and fulfill what is expected under commercial agreements.
  • Purpose: To manage and nurture our relationship with you as an individual contractor, jobseeker or student, in order to match the wishes of open assignments and positions.

    Legal basis: Our legitimate interest is in nurturing and fulfilling what is expected in our business relationships and the fulfillment of contracts to the extent you have registered/signed up for.
  • Purpose: To perform, administer, develop and improve our digital services (websites, apps, databases, etc.), which may include analysis of user behaviour and statistical data on an aggregated level, as well as storage and analysis.

    Legal basis: Our legitimate interest is in providing and ensuring the functioning of digital services and ensuring effective disclosure and promotion of our activities.
  • Purpose: To contact you by email, app, SMS, or post about offers, promotions or services that we believe may be of interest to your employer or you (please note that you may opt out of this promotion).

    Legal basis: Our legitimate interest is in offering and marketing services and products that we deem to be of interest to your employer or you.


We may disclose your personal information to any member of our group of companies (this means our subsidiaries, our ultimate holding company and all its subsidiaries) where we deem this to be of interest and relevance to the business relationship we have with your employer or you.

We may also disclose personal information with service providers that we have hired to fulfill the purposes of our processing of your personal information. These service providers provide IT services and marketing services unless otherwise informed.

If you are looking for a job assignment or are a candidate, we may also disclose information to our external customer or partner companies as part of our work to find assignments for you.

We only work with partners who process personal data within the EU/EEA [or with companies that maintain the same level of protection as in the EU/EEA.] Any transfer of personal data complies with the requirements of the GDPR.


Processing takes place in accordance with current legislation and means that personal data is not retained for a longer period than is necessary. We will store your personal information for as long as you are an active and potential customer, candidate (including subcontractor or jobseeker), or partner to us. If our relationship has ceased and/or it is not deemed reasonable to be reactivated, we will  remove your information. Such data reviews take place periodically and at least once a year.  Unless we have specifically addressed it, or obtained your specific approval, the personal information of anyone  who has been inactive in their relationship with us is deleted after 3 years of inactivity.

Certain information can be kept longer when required due to legal requirements, such as the Accounting Act.

When  processing and storing personal data, its confidentiality and the relevant level of organizational and technical security measures are observed based upon the risk and sensitivity of the data processed. 


If your personal data processed by us is subject to a representation agreement that we have entered into with your employer or other party responsible for your personal data, the representation agreement (to the extent appropriate) shall take precedent over and above what is stated in this policy. In such an occurrence, we will process your personal data in accordance with the terms of the representation agreement. In the same way, if you have registered for any of our services, communications etc., the terms and conditions provided at the time you registered your use of such service(s) will apply. 


You have rights with respect to your personal information and you are able to amend your information and what is saved. We will, at your request and/or our partners’ request, correct information that is found to be inaccurate. You may also request that your information be deleted or that its use be restricted by contacting us (for contact channels see the “How To Contact Us” section). If you believe that your rights are not respected by us, please feel free to contact us or you can get in touch with the privacy authority (the former Data Inspection board). You have the right, in certain circumstances, to access the personal data that you provide to us that relates to you, this can be obtained in an electronic format that is widely used and you have the right to transfer such information to another data controller (data portability). You also have the right to object to the processing of your personal data. If this happens, we must demonstrate compelling legitimate reasons that outweigh your interests, rights and freedoms in order to continue the processing of your personal data.

You may at any time refrain from receiving marketing communications from us by, where relevant, updating your account settings on “My Pages” (or similar), by clicking “Unsubscribe” in any email and SMS communication which we send you. You are always welcome to contact us for help to opt out of our communication.

You can obtain information about what personal data is registered with us, by requesting in writing a so-called register extract from us.


When you use our sites and apps, personal information may be collected, for example, so-called cookies. This means that information about the usage and the websites and apps you’ve visited are stored. This can include technical information about your device and Internet connection, such as your operating system, browser version, IP address, cookies, and unique identifiers. When you visit websites where our services are provided, different technologies can be used to recognize you and learn more about our users. This can be achieved directly, or through the use of third-party technology. Similar technologies may be used in connection with our websites, our online advertising, e.g. in social media, or our emails, either by us or by our suppliers, business partners or other third parties.


In the event that our website contains links to third-party websites, web sites, or materials posted with third parties, these links are for information purposes only. Therefore, because we do not have control over these sites or their material, we are not responsible for its content nor are we responsible for any damages or losses that may arise from the use of these links.

How to contact us

For further information on personal data management or if you have any questions, please feel free to contact us at

Never miss a thing With Sigma IT´s newsletter you get all the latest updates on everything we do.

With Sigma IT´s newsletter you get all the latest updates on everything we do.