Privacy Policy

Cready collects personal data in order to recover receivables on behalf of our clients.

Personal data is any information that can be used to identify an individual — such as name, address, personal identification number and email address — or indirect information such as a photograph, a bank account number or a case number.

Personal data processing means, in principle, any handling of the data — such as collecting, registering, storing and printing it.

The personal data processed by Cready is primarily obtained from our clients (creditors), but may also come from you directly when you contact us. You are not obliged to provide any information, but doing so facilitates our case handling and ensures your case is better investigated because we have your own information available. Personal data may also be obtained from public registers — such as the Swedish Tax Agency, the Enforcement Agency and courts — as well as other publicly accessible registers such as the vehicle and property registers, or from credit reference agencies such as UC and Creditsafe.

The primary purpose of processing the collected personal data is to enable us to issue invoices and debt collection notices, and to take other payment-securing measures, in an efficient, secure and lawful manner. We also process personal data in connection with, for example, termination of tenancy agreements, applications for freezing orders and bankruptcy proceedings, and enforcement matters. Assessment of ability to pay, financial administration and accounting are further examples where your personal data may be processed. We also use the data in our dealings with the Enforcement Agency, courts and, in certain cases, other authorities.

In debt collection operations there is a statutory duty of confidentiality under criminal penalty, and we therefore take a range of measures to ensure that your personal data is protected and that its processing always complies with applicable data protection rules. We also have internal guidelines to safeguard our routines and protect your privacy — for example, sensitive data transmitted via the internet is protected by various security systems, and only employees performing a specific task (e.g. dispatching debt collection notices or providing customer service) have access to your personal data. The computers and servers used in our operations to store personal data do so in a secure environment.

Your personal data is registered in our internal system; no external party has access to the system, and your data is deleted entirely within one year of your debt being fully paid. Once your data has been deleted, we cannot recover it — meaning that if you need the information for any reason, you must contact us within one year of your debt being fully paid.

We do not normally disclose personal data to third parties, and we do not sell, trade or otherwise transfer your personal data to any external party — except companies that provide services necessary for our operations, e.g. storage of our data system. The requirement is always that the external party agrees to keep the information confidential and protected in accordance with applicable law.

We disclose personal data to authorities where necessary to investigate, prevent or take action against illegal activity, suspected fraud or situations involving a potential risk to personal safety, money laundering, or other circumstances where the law requires it.

You have the right at any time to request correction of inaccurate personal data, and you also have the right to request a free extract from our system once a year. If you are dissatisfied with how we handle your personal data, you may contact us directly and we will investigate your complaint. Please address contact to: integritet@cready.se. If you are not satisfied with our response, or consider that we have processed your personal data in an unfair or unlawful manner, you also have the right to submit a complaint to the Swedish Authority for Privacy Protection (IMY). More information about the IMY and its complaint procedures can be found here: Swedish Authority for Privacy Protection – complaints.