Skip to content

Knightec Group Data Privacy Notice for Consultants.

This Privacy Notice describes how Knightec Group collects, processes, stores and shares personal data relating to consultants (“Consultants”) registered in the Knightec Group Partner Network (the “System”) by a partner company (“Partner”).

For the purpose of this Privacy Notice, a Consultant means an identifiable individual who is not employed by Knightec Group, but who has a registered digital profile in the System for the purpose of collaboration with Knightec Group and/or the possibility to undertake assignments for Knightec Group or its clients.

Personal data is collected during registration in the System and may be supplemented by Knightec Group, the Partner or the Consultant as long as the relationship remains active.

Knightec Group AB and its affiliated companies (“Knightec Group”, “we”, “us”, “our”) are responsible for the processing of personal data in accordance with this Privacy Notice. Depending on your relationship with Knightec Group, different companies within the group may process your personal data and act as data controllers.

1. Categories of personal data

The personal data that may be collected and processed includes:

Basic personal data

Name, date of birth/personal identity number, email address, nationality, gender, address, telephone number, country of residence, profile ID in the System and other relevant contact details.

Partner company data (where applicable)

Company name, VAT number, website address, tax registration verification and related supplier information.

Sales and business contact information (where applicable)

Name, email address and phone number of responsible sales or business representatives.

Work planning and assignment-related information

Availability, competencies, education, employment history, assignments, certifications, CV information, profile picture and other information relevant for matching Consultants with assignments and opportunities.

This information may be shared with existing or potential clients and partners of Knightec Group in connection with business opportunities and project staffing.

Business administration

Information relating to project administration, working hours, travel expenses, invoicing, emergency contact details and other information necessary for business administration and contractual fulfilment.

Communication and IT systems

Personal data required to provide access to Knightec Group’s IT systems and digital platforms, including usernames, email addresses, login credentials and system-generated logs connected to the use of such systems.

Security-related information

Personal identity number, date of birth, photographs used for access cards, host information, entry and exit logs, and other information required for safety, security and access management purposes.

2. Purpose and legal basis for processing

Knightec Group may collect and process personal data for the following purposes:

  • administration and management of the relationship with Knightec Group and the Partner Network;
  • maintenance and operation of the System;
  • planning and allocation of assignments, projects and resources;
  • evaluation of competencies, availability and suitability for assignments;
  • management of contracts and business relationships;
  • processing of invoices and compensation;
  • insurance administration;
  • providing access to Knightec Group systems, offices and digital platforms;
  • maintaining security, compliance and protection of business-critical information and intellectual property;
  • compliance with applicable legal obligations, including accounting, tax and workplace regulations;
  • handling disputes, claims and legal obligations connected to assignments and collaborations.

The legal basis for processing personal data includes:

Contractual necessity

Processing necessary for entering into and performing agreements with Consultants and/or Partner companies.

Legal obligations

Processing required under applicable laws and regulations, including accounting, tax, insurance and workplace legislation.

Legitimate interest

Processing necessary for Knightec Group’s legitimate interests, such as resource planning, business development, assignment matching, project delivery, network management and protection of company assets and systems.

Knightec Group has assessed that such processing is proportionate and that the impact on the individual’s privacy is limited and balanced against the legitimate business needs.

Consent

Certain processing activities, including registration in the Partner Network, may be based on consent provided by the Consultant during registration.

3. Storage and deletion of personal data

Knightec Group will store and process personal data only for as long as necessary to fulfil the purposes described in this Privacy Notice.

Personal data may be retained:

  • for as long as the Consultant remains registered in the System;
  • during active assignments or business relationships;
  • for additional periods where required by law, contractual obligations or legitimate business needs.

Certain data may also need to be retained for project documentation, accounting purposes, dispute handling or legal compliance.

When personal data is no longer needed, it will be deleted or anonymised in accordance with Knightec Group’s internal retention and deletion procedures.

4. Sharing of personal data

Personal data may be shared within Knightec Group companies for the purposes described in this Privacy Notice.

Personal data may also be shared with:

  • clients and business partners;
  • suppliers and subcontractors;
  • IT service providers;
  • professional advisors such as auditors and legal counsel;
  • authorities where required by applicable law.

As Knightec Group operates internationally, personal data may in some cases be transferred outside the EU/EEA.

Any such transfers will be protected through appropriate safeguards in accordance with applicable data protection legislation, including the GDPR, such as:

  • adequacy decisions by the European Commission;
  • standard contractual clauses (SCCs);
  • additional security measures where necessary.

5. Your rights

Under applicable data protection legislation, you have the right to:

  • request access to your personal data;
  • request correction of inaccurate or incomplete data;
  • request deletion of your personal data (“right to be forgotten”);
  • request restriction of processing;
  • object to certain types of processing;
  • request data portability where applicable.

You may also withdraw your consent at any time where processing is based on consent.

To exercise your rights, please contact:

privacy@knightecgroup.com
(replace with actual address if different)

You also have the right to lodge a complaint with the relevant supervisory authority.

6. Contact information

If you have any questions regarding this Privacy Notice or the processing of your personal data, please contact:

Knightec Group AB
Att: Data Privacy Function
[Address]
[Postal code and city]
Sweden

Email: privacy@knightecgroup.com
Phone: [Phone number]