Secure data management isn't an option—it's our standard

Conrab Opto AB (“Conrab Opto,” “we”) is committed to protecting your privacy.
In this Privacy Policy, we describe how we collect, use, store, and share personal data about you as a representative of our customers, suppliers, and other stakeholders. Our goal is to be transparent, clear, and compliant with the EU General Data Protection Regulation (GDPR).

Data Controller

Conrab Opto AB, Corporate ID No. 556814-2961
Address: Höjdrodergatan 14, 212 39 Malmö
Phone: +46 (0) 40 680 85 80
Email: integrity@conrab.se

What personal information do we collect?

Information you provide: We process contact information necessary for our business relationship:

• name
• company name
• role/title
• phone number
• email address
• company address

You are not required to provide this information, but without it, we will not be able to contact you.

Information that does not come directly from you:  We may receive your information from colleagues or other representatives at your company in connection with agreements or collaborations.

Cookies: We do not store any personal data in cookies. The only thing stored locally is a language setting. See also the section on our cookie policy.

Why do we process personal data?

Communication and collaboration: In order to:

• communicate with you in your role as a contact person
• manage contracts and partnerships
• respond to inquiries and provide support
• send relevant information about our business

Newsletters and product information: We may send you information about updates, features, and news relevant to your company’s use of our services.

Sharing of Personal Data: As a general rule, we do not share your personal data with third parties.

Exceptions:

IT providers and operational partners: Certain providers may have access to data when they provide operational, support, or technical services to us. They process your data only in accordance with our instructions (data processors).

Invoice distribution: When sending out customer invoices, names and company information may be shared with our billing partner. The partner uses this information solely for distribution purposes.

Legal basis: Our processing is based on legitimate interest pursuant to Article 6.1(f) of the GDPR.
Our interest is to be able to communicate effectively with you as a representative of a company that is a customer, supplier, or stakeholder.

How long do we retain data?

We only retain the data for as long as necessary, and delete it when:

• you are no longer the contact person, or
• your relationship with the company you represent will end.

Your rights under the GDPR

You have the right to:

Access: Request confirmation of whether we process your data and obtain a copy of the record.

Correct incorrect information

Deletion: Request that data be deleted when it is no longer needed.

Restriction of processing

Objection: You may object to processing based on legitimate interests or direct marketing.

Data portability: Get the data you have provided in a machine-readable format.

Transfer to a third country

As a matter of policy, we process personal data only within the EU/EEA.
If data must nevertheless be transferred, this will only occur if permitted under the GDPR and with adequate safeguards in place.

Changes to the policy

We may update this policy as needed, for example, in response to new legal requirements or changes in our business operations. The latest version is always available on our website.

Contact us

Do you have any questions or comments about how we process personal data?
Contact us at integrity@conrab.se.

Cookie Policy 

Our website uses cookies to function properly.

• We only use essential cookies and language settings.
• We do not store any personal information in cookies.
• You can change or withdraw your consent at any time via the cookie settings.

Data protection and the GDPR are now an integral part of every company’s daily operations, and in this context, electronic invoice processing plays a bigger role than many people realize.

When invoice workflows are digitized, the risk of data breaches is reduced, while traceability, control, and compliance become significantly easier.

Here’s a straightforward and clear overview of how digital invoice processing can help you comply with GDPR—without any hassle.

Here's what you'll get:

• How digital invoice processing reduces the risk of data breaches
• Why traceability is enhanced by electronic processes
• How automation helps you handle personal data correctly
• Why GDPR compliance is easier when invoices are digital

Lower risk of data breaches

Paper invoices and manual processes always carry a risk:
wrong envelopes, lost documents, unauthorized access, or a folder ending up on the wrong desk.

Electronic invoice processing significantly improves security:

Encryption & Access Control: Digital systems use secure platforms where only authorized individuals can access the correct information.

Less manual work: The fewer steps people perform manually, the lower the risk of errors and, consequently, GDPR incidents.

Full traceability and transparency

The GDPR requires companies to be able to demonstrate how personal data is processed.

This is where digital invoicing workflows have a huge advantage:

Everything is logged automatically: From receipt and interpretation to approval, storage, and deletion.

Easy to demonstrate compliance: You can quickly pull up logs and show how data has been handled—something that’s much harder to do with paper and PDFs.

Automated processing of personal data

Manual processes always increase the risk of errors.

With automation, you get:

Proper data processing: The system ensures consistent processing in accordance with the principles of the GDPR.

Automated data cleansing: Information that is no longer needed can be automatically deleted, thereby complying with data minimization rules.

Faster access and better control

The GDPR gives individuals the right to request information about their personal data. It’s easy when everything is digital.

Quick access to the right data: You can find personal data immediately, without having to search through folders, email threads, or binders.

Effective deletion: When data needs to be deleted, it can be done directly in the system, without the risk of information remaining in old files.

Electronic invoice processing is more than just a way to streamline financial processes

It is also a concrete way to:

• Reduce the risk of data breaches
• Ensure traceability at every step
• Automate data protection
•  Simplify access and deletion
• Demonstrate clear GDPR compliance

It is an investment in security, control, and trust.

Conrab offers market-leading solutions for electronic invoice processing that provide high security, traceability, and full control over personal data.