Terms & Conditions

Introduction

Sólstöður complies with Act No. 90/2018 on Data Protection and the Processing of Personal Data, which entered into force on 15 July 2018. The Act in question was enacted to implement and enact the General Data Protection Regulation (REGULATION (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons about the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC). 

Sólstöður prides itself on ensuring the confidentiality and protection of the personal information that the company needs to collect and process in connection with its operations, including information on residents, clients, relatives, employees, applicants, and other customers. 

This privacy policy is intended to inform you about what data Sólstöður collects, how such data is processed, who has access to the data and how you can access further information about Sólstöður's privacy issues.

What is personal information?

Personal data under this Privacy Policy is any information relating to an identified or identifiable natural person. An individual is considered identifiable if he or she can be identified, directly or indirectly, such as by reference to an identifier such as name, ID number, online identifier or one or more factors that characterize him or her physically, physiologically, genetics, mentally, economically, culturally or socially.

What data do we collect and why?

The personal data that the Sólstöður collects is used, among other things, to fulfil legal obligations that rest on the controller, such as the registration of health information in medical records, the provision of certain services to residents and other individuals, to meet the demands of the labor market towards its employees, etc. 

Information is also collected to fulfill agreements made with individuals, such as employment contracts with staff and service agreements with residents of the nursing home or other clients.

Sólstöður strives to improve the safety and living conditions of residents and other clients, and for that purpose the processing of personal data is often necessary.  Sólstöður places an emphasis on informing all parties concerned about the processing of personal data and obtaining their informed consent in cases where applicable. 

Sólstöður may also collect and process information that individuals choose to provide to the organization. This can for example be writing letters with suggestions or comments from residents/clients/day-care guests, relatives, applicants, or other customers or 

information that may be received by the company because of its operations, including its main activities, which consist of services to its clients/customers, including health services.

You are specifically restricted from all of the following

• General information, such as name and address.
• Contact information, such as phone numbers and email addresses. 
• Social security number.
• Gender.
• Extensive health information.
• Skills and health assessment. 
• Education and career information. 
• Union membership.
• Pension fund membership. 
• Wages and conditions. 
• Sick leave and holiday entitlements and their utilization. 
• Working hours. 
• Account number. 
• Information about relatives, such as names, phone numbers, and email addresses.

Where does the information we process come from?

As a rule, the information that the Sólstöður processes comes from individuals themselves. In some cases, however, the information comes from a third party. Examples include health authorities, doctors, tax authorities, trade unions, pension funds, family members, etc. 

How long do we keep the data?

Sólstöður does not store personal data for longer than is necessary for the purpose of processing at any given time. The general rule is that the Sólstöður deletes data when a nurse has started work.

Who has access to the data?

Relevant employees and managers of Sólstöður have access to the data collected on registered individuals. Sólstöður never uses personal information for any purpose other than the one for which it was collected. 

How do we ensure data security?

Sólstöður strives to protect personal data through appropriate technical and organizational measures. Examples of such measures are access control to systems, clear procedures, and staff training. 

Websites and cookies

Sólstöður uses so-called cookies/web measurement tools [e.g., Google Analytics] to measure the websites of the home/association. Cookies are small text files that are stored on your computer or mobile device. When visiting the company's website, information is recorded about time, date, search terms, which website you came from, type of browser, type of operating system, etc. The information is used in improvements to Sóltún's website and in its development, e.g., to make it more efficient and improve the user's experience. The information is not sold to third parties.

Further information

The Company Name is allowed to assign, transfer, and subcontract its rights and/or obligations under these Terms without any notification. However, you are not allowed to assign, transfer, or subcontract any of your rights and/or obligations under these Terms.

Entire Agreement

These Terms constitute the entire agreement between Company Name and you in relation to your use of this Website, and supersede all prior agreements and understandings.

Further information

Sólstöður has appointed a Data Protection Officer who will oversee and monitor the company's privacy issues. If you would like further information about this privacy policy or how the company processes your personal data, please contact the Data Protection Officer. His contact details can be found below:

Gunnhildur Erla Kristjánsdóttir lögfr.
gunnhildur@samtok.is
+354 585 9532

Revision

This privacy policy is reviewed regularly and may be updated or changed in accordance with changes in laws or regulations or due to changed procedures for the processing of personal data within the company.

This privacy policy was approved by the Board of Directors on 21.10.2020.