What data does Parakey collect?
Parakey only process personal data that are necessary to fulfill our commitments to you and the agreement such commitments are based on, or because Parakey has a legitimate interest to process the data.
When you create / activate your account
Your e-mail address is used as your username and is used to be able to provide you with information regarding the service, such as change of password or information about account events. Upon first sign in we request first and last name. These are used by administrators to facilitate, for example, the action of giving you access to a location.
On specific account events
An account event is an event such as when signing in or signing out, changing password and similar. When an account event occurs a log is created and sent to Parakey. The log contains what type of event it was, when it happened, device information and IP address. The information is used to inform you about what is going on with your account and in support matters.
When you use the App to unlock
When attempting to unlock something a log is created with information that is sent to Parakey. This log contains information such as what hardware was unlocked, who unlocked it, at what time it was unlocked and whether the attempt was successful or not. The log also contains what kind of phone was used, manufacturer, model, and version of the app. The information in the log is used primarily by administrators who can see who entered where and in support matters.
When you report a problem or suggest improvements
If you choose to report a problem or give us feedback a report is created and sent to Parakey. The report contains data related to you and your phone such as manufacturer and model, OS version and app version. This is used to better help you and to improve our service. If you choose to submit a message this will also be saved.
When you use our portal with additional privileges
When you have administrative privileges or with other privileges for a location use our portal to e.g. distribute access to other users a log is created. This log describes what has been done, by whom, when it was done and information about the device from where the request originated from. The logs are primarily used by administrators who can see who has done what and in support matters.
How long is the data stored?
Parakey process data that has been collected in the ways described above with the legitimate interest to develop the business and to develop the service.
The data is stored as long as there is a contractual relationship between Parakey and the customer. However, the personal data is removed as soon as it is out of date and according to Parakey’s data removal process. Entry logs are anonymized, by default, after three months. This interval can be adjusted, per location, by the customer. Administrator logs and logs for account events are saved for up to two years. Parakey may retain personal information for up to five years in order to handle any dealings that may arise after the relationship has ended. Data used for accounting is kept for seven years. In exceptional cases there may be reasons for Parakey to store data longer after the agreement has ended.
How do we protect your data?
To prevent any personal data incidents from occurring Parakey has taken appropriate technical and organisational protective measures and protect your personal data according to current laws.
As a customer and as a person that has had or may have his or hers data processed you always have the right to, for no cost, after a written application to us, get informed about what data Parakey is processing and its purpose for that process. You can also request that Parakey erase or adjust data about you that we are processing. Furthermore you have the right to request that your data is not used for direct marketing purposes. You also have the right to receive part of your data in a machine readable format (or if technically possible, to have the data transferred to a third party of your choice). If you are dissatisfied with the data processing you can file a complaint with a regulator. In Sweden that is Datainspektionen.