Swecon's Privacy Policy

Information about our processing of your personal data

Swecon Group companies (“Swecon” or “we”) work continuously to ensure that all our personal data processing is performed in accordance with the General Data Protection Regulation (“GDPR”). Local data protection legislation outside the EU/EEA is considered where applicable.

Your privacy is important to us and we strive to ensure a high level of protection when processing your personal data. In this privacy policy we provide you with information about how we process your personal data when you visit our digital channels, participate in a marketing activity organized by any of our companies, buy any of our products online, visit our workshop facilities and/or office buildings, contact us for a claim/customer matter or when you act as the contact person/representative for one of our customers, suppliers or other counterparties. We also describe what rights you have in connection to our processing of your personal data.

We may come to amend this policy as part of our continuous work with data privacy matters, but you will always find the most recent version on our websites. Targeted information regarding specific personal data processing activities may be given through other channels and such information take precedence over this policy.

The personal data controller responsibility

Swecon Group has undergone a change of ownership and, as of February 1st 2026, forms part of the Volvo Group. Notwithstanding the change of ownership, the applicable Swecon Group company remains the data controller for the personal data collected and processed by us, in accordance with the GDPR.

During a transition and integration phase, we may share certain personal data with our new owner, Volvo Construction Equipment, and other companies within the Volvo Group, as well as with our former owner, Lantmännen ek för and its subsidiaries (Lantmännen), to the extent necessary, inter alia, to facilitate a smooth transition, ensure business continuity, fulfil contractual obligations, comply with legal obligations, or meet legitimate administrative and business needs.

Any sharing of your personal data will take place only to the extent necessary and in accordance with applicable data protection legislation. Recipients within the Volvo Group and Lantmännen will process the personal data either as independent data controllers or as data processors, as applicable, and subject to appropriate contractual, technical, and organisational safeguards.

At present, the applicable Swecon Group company primarily processes personal data independently. If and to the extent that personal data sharing is established within the Volvo Group following the integration phase, such as for IT operations, shared administrative functions, Volvo Group-wide reporting, compliance or internal governance, such processing will be carried out in accordance with the GDPR and based on an applicable legal basis. In such case, this privacy policy will be updated and, where required, data subjects will also be informed separately.

Some of our digital channels may contain links to external websites or services that we do not control. If you share any personal data with external parties through such links, that external party is the data controller for your personal data and we recommend you turn to their privacy policy for information.

If you have any questions or concerns about how the applicable Swecon Group company processes your personal data, please contact us via dataprotectionofficer@swecon.com

What personal data do we collect?

We collect your personal data when you, for example, buy our products and/or services, visit our digital channels, contact our customer service, participate in one of our marketing activities, or when you are in contact with us as a representative for one of our customers, suppliers or other counterparties. Examples of data we collect include:

  • your name, age, gender, picture, video surveillance material and contact details (e.g. postal address, e-mail address and phone number)
  • national identification number (e.g. when it serves as the company identification number for your sole proprietorship or when necessary to verify your identity)
  • your customer profile (i.e. customer number, purchase/order history, etc.), bank/payment details and credit information
  • input you provide in competitions (e.g. competition entries) and evaluation activities (e.g. your ratings and suggestions)
  • cookie-related information (e.g. IP address and data related to IP address) as described in our Cookie Policy and Cookie Settings (see links in the footer of this page)
  • your preferences and case-related information (e.g. data provided by you while in contact with our customer service).
  • Your corporate commitments, trade bans, occurrences on sanctions lists and political exposure, occurrences in adverse media events
  • GPS-coordinates, driving patterns, service-history and other machinery-related data

Why do we process your personal data?

Purpose for processing

Personal data processed

Legal ground for processing

To administer our agreement with you and to handle orders for our products/services

E.g. name, contact details, customer profile, bank/payment details, credit information and national identification number (e.g. when it serves as the company identification number for your sole proprietorship)

Your agreement or order terms include detailed information about the personal data processing taking place

For the performance of our contract with you (e.g. to deliver your order, to receive our payment from you or to refund you if applicable)

To administer our after-sales services as part of our agreement with you, e.g. when you purchase a machine from us

E.g. name, contact details, customer profile, GPS-coordinates, driving patterns, service-history and other machinery-related data

For the performance of our contract with you (e.g. to anticipate and optimize machinery service/repair needs.)

To communicate with you, not for marketing purposes, but e.g. when you contact our customer service regarding returns, defects, complaints or other questions you may have

E.g. name, contact details, customer number and case-related information provided by you (e.g. the reason for your complaint)

For our legitimate interest in helping you with any questions or concerns you may have about our products/services

If your question concerns a return/claim, we will process the personal data for the performance of our contract with you

To enable your participation in competitions and other marketing events arranged by us or any of our Group companies. This may also include competition entries being published

E.g. your name, picture, contact details, competition entries, bank/payment details, etc.

The competition terms include detailed information about the personal data processing taking place

For our legitimate interest to administer and follow-up on competitions and other marketing events (e.g. to confirm your participation, announce winners, etc.)

For the performance of our contract with you, i.e. the competition terms (e.g. to pay out and distribute prizes)

 

To evaluate Swecon’s products/services, or products/services distributed by us on behalf of a business partner, based on input from you, for example through customer satisfaction surveys

You may opt-out from such surveys via a link in the e-mail/text message you receive from us, or by contacting us at dataprotectionofficer@swecon.com

If the survey is conducted by a business partner for which Lantmännen distributes products/services, you may opt-out from such via a link in the e-mail/text message you receive from them.  

 

E.g. your name, age, gender, contact details,  your ratings and suggestions for our products/services, etc.

For our legitimate interest in developing our products/services and follow-up on how you perceive our products/services

Based on your consent if you are not an active customer of Swecon

To communicate with you and market products and services provided by us or any of our Group companies/business partners

You may opt-out from such communication via a link in the e-mail/text message you receive from us, or by contacting us at dataprotectionofficer@swecon.com

E.g. your name, contact details, and whether you wish to opt-out from future communication, etc.

For the performance of our contract with you (i.e. to provide you with offers about products/service which may interest you/the company you represent)

For our legitimate interest in marketing our products/services if you are a customer of ours but have no customer account agreement with us

Based on your consent if you are not an active Swecon customer, or if the marketing will be communicated directly to you from one of our business partners  

To generate statistics regarding the use of our digital channels and to maintain, develop, test and improve them as well as our technical platforms

Cookie-related information (e.g. IP addresses)

Our Cookie Policy and Cookie Settings include detailed information about the personal data processing taking place (see links in the footer of this page)

For our legitimate interest in being able to update the technique enabling your visit and use of our websites, mobile applications and social media platforms as well as to understand how you perceive our digital platforms for the purpose of improving them and related products/services

To provide you with ads and content that may interest you based on your movements on our websites, to create customized audiences for marketing on social medias and to analyze and evaluate the effects of our marketing efforts

Cookie-related information (e.g. IP addresses)

Our Cookie Policy and Cookie Settings include detailed information about the personal data processing taking place (see links in the footer of this page)

For our legitimate interest in marketing our products/services as well as to understand the effects of our marketing efforts to optimize them

Also based on your consent, which we collect through the Cookie Settings presented to you when you visit our digital channels.

To fulfill our obligations of performing adequate control (due diligence) of counterparties in accordance with anti-corruption, anti-bribery and anti-money laundering laws and regulations

E.g. your national identification number as well as your corporate commitments, trade bans, occurrences on sanctions lists and political exposure, occurrences in adverse media events, etc.

For our legitimate interest in evaluating our potential business partners to avoid becoming involved in actions that could violate applicable laws or harm Swecon’s reputation, goodwill and value.

In some cases, this is done for compliance with a legal obligation to which Swecon is subject.

To handle and respond to legal claims, e.g. during a dispute or litigation

E.g. your name, contact details and other case-related information

For our legitimate interest to protect Swecon from legal claims and to exercise our legal rights

To create a safe environment within our offices and workshop facilities for employees and visitors as well as to lower the risk of crimes

E.g. your name, contact details and video surveillance material

Our receptions and visitor registration systems include detailed information about the personal data processing taking place

For our legitimate interest to create a safe environment within our offices and workshop facilities

 

If the applicable Swecon Group company is going to process your personal data for any purpose requiring your consent under applicable data protection legislation, we will obtain such consent from you before we collect and process your personal data.

When you visit our workshop facilities and office buildings

When you visit our workshop facilities and offices, we collect your name and contact details so that we may keep track of who is staying in our buildings. This is necessary to prevent unauthorized persons from entering our buildings as well as in case of an emergency requiring us to evacuate, etc. You will receive separate information about this in the reception area of our buildings or when registering in our visitor system.

With whom may we come to share your personal data?

We may come to share your information with:

Other Group companies

In certain areas, we may share your personal data with other Group companies within Swecon and Volvo - and during a transition and integrations phase - with our former owner Lantmännen, to the extent necessary, to enable the administration of our agreement with you and to handle your orders for our products/services. Examples include, when one of our Group companies provides shared systems or services (for mySwecon), when we share your credit information with in connection with the financing of a machine or when we share your contact details to facilitate transport of goods

We may also come to share your data within the Volvo Group, and during the transition phase, within the Lantmännen Group to get an overview of your commitments with all Group companies as well as to share risk assessments and experiences we have had with you as a customer, distributor or supplier to us , in accordance with the purposes of processing described above. If you have not opted out or objected to the processing of your personal data for marketing purposes, we may use our overview of you as a customer to us to personalize our communication and marketing towards you.

External parties providing products/services to us

We may also share your personal data with external parties providing services to us , such as companies providing us with IT-systems/services or services related to marketing, data analysis or statistics, to fulfill the purposes for processing described above. When personal data is disclosed to or shared with external parties acting as data processors to the relevant Swecon Group company, we enter into agreements with such parties to regulate how they may process personal data on our behalf. If personal data are to be transferred outside of the EU/EEA as part of disclosing or sharing it with external parties, we ensure that an adequate level of protection of personal data can be achieved in the receiving country, for example by entering an agreement with the data recipient including standard clauses issued by the EU Commission, you may read more about this further down on this page

Other external parties (acting as data controllers)

We may also share your personal data with other external parties, acting as data controllers, where it is necessary to administer the relationship with you or where we have another legitimate interest in doing so. This could for example include us disclosing your personal data, upon your own request, to financing companies, banks, insurance companies etc. so that you may take part of products/services provided by them. It could also include, for example, when we report construction machine(s) you have purchased from us to the manufacturer of such machines in connection with warranty claims, when we report machinery ownership updates to authorities, when we market our business partners to you, when our business partners market themselves to you (based on your consent) or when business partners, whose products we distribute, conduct customer satisfaction surveys, etc. We may also disclose your personal data to authorities if required by law and/or public authority decisions.

When may your personal date be transferred outside of the EU/EEA and how do we protect it in such cases?

We always strive to process your personal data within the EU/EEA. However, personal data may in some cases be shared with companies within the Volvo or Lantmännen Group established outside of the EU/EEA, as a result of our use of common IT-systems, or with external parties established outside of the EU/EEA who provide us with IT-systems/services, for example as part of IT-support matters. Also note that your personal data is transferred outside of the EU/EEA when you do direct business with, or visit a website belonging to a Group company established outside of the EU/EEA. Your rights in connection to our processing of your personal data are not affected by such transfers.

Countries outside the EU/EEA, however, may have local laws which mean that public authorities have the right to request access to personal data stored within the country for the purpose of fighting crime or defending national security. We always ensures that an adequate level of protection of personal data can be achieved in the receiving country if personal data are to be transferred outside of the EU/EEA, and that appropriate safeguards, in accordance with applicable data privacy legislation, are in place to protect the data in such cases. Such safeguards include:

  • Determining whether the receiving country is on the list provided by the EU Commission of non-EU countries determined by the Commission to have an adequate level of data protection or, if it are not;
  • Ensuring that standard contractual clauses issued by the EU Commission are entered into with the receiver of the data outside of the EU/EEA. This means the receiver guarantees that the protection of your personal data under the GDPR still applies. In these cases, we also perform an assessment of the legislation in the receiving country to see how such can affect the protection of your personal data. Where it is required, we ensure that appropriate technical and organizational security measures are in place to maintain the level of protection for your personal data when it is transferred to the receiving country in question.

Please note that your personal data may also be shared with external communication platforms established outside of the EU/EEA when you visit our websites, depending on what cookies you consent to. You may read more about cookies and how to manage your cookie settings in our Cookie Policy and Cookie Consent Tool in the footer of this page. Note that third-party cookies on our websites collect data directly from your web browser and the processing of this data is covered by each third-party’s privacy policy respectively.

For how long do we keep your personal data?

We will only process your personal data for as long as it is necessary to fulfill each purpose for processing it (as listed in section 4 above). This means that when we stop processing your data for one specific purpose, we may keep it to fulfill another purpose, however only in accordance with our remaining purposes listed above. We have procedures in place to ensure that your data are erased when it is no longer needed. For example, when we process your personal data:

  • to administer our agreement with you we keep it for as long as you have accepted our agreement terms (for example customer or account agreements) and generally for up to 1-3 years after you have terminated these or contacted us to exercise your ‘right to be forgotten’.
  • to administer your customer service matter, we generally delete it once the matter is closed (unless there are guarantees or complaint deadlines requiring us to keep it)
  • to enable your participation in marketing events we generally delete it once the competition/event has ended (unless there is a need to keep it for up to 1 year as proof of the winner or to administer prizes, etc. or for longer in accordance with separate competition terms).
  • to fulfill laws and regulations applicable to us (for example business ethics legislation and book-keeping regulations) we may keep your data for up to 10 years depending on what law applies to the processing at hand.

Security for and protection of your personal data

We safeguard your personal data and we have implemented appropriate technical and organizational security measures to protect it from unauthorized access, amendments, dissemination or destruction.

Your rights in connection to your personal data

You have several rights in connection to our  processing of your personal data according to applicable data protection legislation. You may read more about those rights below. You also have the right to file a complaint with a supervisory authority if you believe your personal data has been processed in violation to applicable data protection regulation. If you want to exercise any of these rights, please send a written request to dataprotectionofficer@swecon.com

Your rights:

  • Right to be informed: You have the right to receive information about how we process your personal data. We do so through this privacy policy or through information provided in our specific agreement or terms with you (such information takes precedence over this policy)
  • Right of access (right to a ‘register transcript’): You have the right know whether Lantmännen processes any of your personal data and to gain access to such data, for example in a register transcript
  • Right to rectification: You have the right to have your personal data corrected or completed if it’s inaccurate or incomplete
  • Right to erasure (‘right to be forgotten’): In some cases, you have the right to have personal data processed about you deleted/anonymized, for example if your personal data is no longer necessary to fulfill the purpose for which it is being processed or if you withdraw your consent, where such applies, to the processing of your personal data. Note that Lantmännen, under certain circumstances, will not be able to fully delete or anonymize your personal data. Such circumstances include, for example, where the data is still necessary to fulfill the purpose for which it is being processed, where our  interest in processing the data outbalances your interest in having it erased or where we are obliged, by law, to retain the data.
  • Right to restriction of processing: If you think that the personal data we process about you is not correct, that our processing is in violation with applicable law or that we do not need the personal data to fulfill our specified purposes, you have the right to request us to limit the processing of your personal data. You may also request that we do not process your data during the time we investigate your request to exercise this right or if you have requested to exercise your right to object to our processing (read more about that right below).
  • Right to data portability: In cases where we process your personal data for the performance of our contract with you, or based on your consent, you have the right to gain access to your personal data in a simple and transferrable format in order for you to be able to move your personal data to another data controller, where technically feasible.
  • Right to object to the processing: You may object to our processing of your personal data when such processing is based on our legitimate interest (in accordance with GDPR Article 6.1f). You always have the right to object to our use of your personal data for direct marketing purposes. We will stop sending you marketing as soon as you opt-out from such.
  • Right to withdraw your consent: In cases where we process your personal data based on your consent, you always have the right to withdraw such consent. When you withdraw your consent, we will stop processing your personal data for purposes based on the consent.