Portal Terms & Policies

Privacy Policy

Privacy Policy

Your privacy is important to us. We are responsible for the personal data you provide to us and for ensuring that it is processed in accordance with applicable law. It is important that you read and understand this policy and feel confident about how we handle your personal data. This policy describes how we collect, process, store, and manage your personal data when you are our customer, when you visit our website, or when you contact us by email, phone, chat, or other means. The policy also explains your rights and how to exercise them. ProjektStegen Sverige AB is the data controller for its operations and is responsible for the processing of personal data described in this policy. Contact details can be found at the end of this policy.

How do we obtain your personal data?

We collect and process personal data when you:

– purchase a training, service, or product

– participate in a training program

– visit our website

– subscribe to digital content

– contact our support team

What personal data do we process?

We may process the following categories of personal data:

– Contact information, such as name, address, email address, and phone number

– Financial information, such as bank account details, card numbers, and other payment data

– Employment-related information, such as work experience, job titles, and certificates

– System information, such as login credentials and user accounts

– Training-related information that you provide while participating in a course, such as usage data, results, self-assessments, reflections, and other submitted content

How do we use your personal data?

We primarily process your personal data to fulfill our obligations to you. Our principle is to never process more data than necessary for the purpose, and we always aim to use the least privacy-sensitive information available.

Below is a description of the different processing activities.

Providing and fulfilling agreements for training, services, and products
We process personal data to fulfill our contract with you and to deliver training, services, and products. This includes processing for administration, invoicing, delivery of services, providing support, safeguarding our rights, and fulfilling our contractual obligations. Categories of data used may include contact data, identity data, financial data, employment-related data, system data, and information you submit during training.

Accounting
We process personal data to comply with legal obligations, such as bookkeeping and financial record retention requirements.

Marketing
We process personal data to market training, services, and products to you, send newsletters, provide company information, and invite you to events relevant to your interests.

What is our legal basis for processing your personal data?

We rely on the following legal grounds when processing your personal data:

– Performance of a contract – We process your personal data to administer and deliver the training, service, or product agreed with you. When processing is necessary to meet statutory requirements, such as accounting or tax regulations, the legal basis is legal obligation.

– Contract – We process your personal data to register and manage user accounts across platforms, cloud services, communication services, and other systems used to deliver training. For login credentials and contact information, the legal basis is the performance of a contract.

– Contract or legitimate interest – When you participate in training, we process information you provide through oral or written communication, for example when interacting with platforms and systems, in meetings, by phone, email, or through other electronic or physical communication channels.

– Legitimate interest – For marketing activities, the legal basis is our legitimate interest. This means we consider our interest in processing your personal data for the purposes listed above to outweigh any potential impact on your privacy. This assessment has been made with particular consideration that the processing is expected to be beneficial to you.

– If your employer has ordered and/or paid for training on your behalf, we may process and share your personal data with your employer in order to fulfill our contractual commitments. Please refer to the section Employers under With whom do we share personal data? in this policy for further details regarding the purpose, categories of data, and legal basis for such processing.

How long do we retain your personal data?

Personal data processed to enable you to participate in training with us is retained for the duration of the training plus 30 days.

Agreements related to subscription services are retained for the term of the agreement plus five (5) years.

Other personal data is retained for as long as you remain a customer and for up to 12 months thereafter. Certain information may be stored for a longer period where required by law, for example under accounting or tax regulations. When the purposes of the processing have been fulfilled and the retention period has expired, your personal data will be securely deleted or anonymized so that it can no longer be linked to you.

Cookies

A cookie is a small text-based data file that a web server asks to store in your browser. Because the contents of the cookie are typically returned with each request to the website, the server can recognize preferences, behavior, or identity (where known).
We use the following types of cookies on our website:

– Session cookies (temporary cookies that expire when you close your browser or device).

– ersistent cookies (remain on your device until you delete them or they expire).

– Third-party cookies (set by a third-party website, primarily used for analytics, such as Google Analytics).


The cookies we use help improve the services we provide. They enhance website functionality and make it easier for you as a user. We also use cookies to collect and analyze behavioral data based on how the website and services are used, in order to improve the user experience and enable personalized communication and messaging. Cookies are also used to deliver relevant marketing.

How can you manage cookies?

You can change your browser settings at any time regarding the use and scope of cookies. You may choose to block all cookies, accept only certain cookies, or delete cookies when you close your browser. If you block or delete cookies, some services may not function properly, and parts of the website may not operate as intended.

With whom do we share personal data?

Our principle is not to disclose personal data to third parties unless the data subject has consented to it or it is necessary to fulfill our contractual or legal obligations. Whenever we share personal data, we ensure it is handled in a secure and appropriate manner.

Service providers
To fulfill the purposes of our processing and to meet our obligations as a company, we share personal data with vendors who provide services to us. These may include training providers, platform providers, cloud services, system support, and other related services. Such vendors may only process personal data after we have entered into written agreements with them. Processing may only take place according to our documented instructions. They are not permitted to use personal data for their own purposes and are required by law and contract to safeguard it. A service provider may not share your personal data with third parties or subcontractors without our prior approval.

Employers
If your employer has ordered and/or paid for training on your behalf, we may, in order to fulfill our contractual obligations to the employer:
– process your personal data before the training begins by registering contact details and login credentials in platforms, communication systems, training administration systems, and other services used to deliver the training. The legal basis is contract or legitimate interest.
– provide designated representatives of your employer with information about your participation and achieved results in training. The legal basis is contract or legitimate interest.

Authorities
We may disclose necessary information to public authorities if we are required to do so by law. Such information may include personal data. In connection with legal disputes, we may also transfer information, which may include personal data, to other parties involved in the matter.

How do we protect your data?

We protect your personal data through a combination of technical and organizational safeguards. We have implemented specific security measures to prevent unlawful or unauthorized access. We maintain established procedures and working methods to ensure that personal data is handled securely. Access is granted only to individuals who need the information to perform their job responsibilities.

Your rights

As a data subject, you have the following rights:

– You have the right to request an extract of the personal data we hold about you.

– You have the right to request correction if any information we hold is inaccurate or incomplete.

– You have the right to request deletion of your personal data under the following circumstances:
– the data is no longer necessary for the purposes for which it was collected;
– the data is processed based on your consent and you withdraw that consent;
– the processing is based on legitimate interest and there are no overriding grounds that outweigh your interests;
– the personal data has been processed unlawfully;
– erasure is required to comply with a legal obligation;
– you object to processing for direct marketing purposes.


The right to erasure does not apply where we are required by law (for example, accounting legislation) to retain the data.

– You have the right to data portability, provided that the legal basis for the processing is consent or contract. The data you can receive includes personal data relating to you that you have provided yourself or that has been generated through your actions or activities.

– You have the right to request that the processing of your personal data be restricted. However, if processing is restricted, we may be unable to fulfill certain obligations toward you during the period in which the restriction applies.

– You have the right to object to processing that is based on legitimate interest as the legal ground. In order to continue such processing, we must demonstrate compelling legitimate grounds that override your interests, rights, and freedoms. Otherwise, we may process the data only to establish, exercise, or defend legal claims.

– You always have the right to object to your personal data being used for direct marketing purposes. If you object, your personal data will no longer be processed for such purposes.

Changes to this policy

Updates to this Privacy Policy are published on projektstegen.se and in other channels where the policy is made available.

Do you have questions about how we process your personal data?

You are always welcome to contact us if you have any questions about how we handle your personal data.
ProjektStegen Sverige AB, org.no 556598-3011, Artillerigatan 6, S-114 51 Stockholm, Sweden.

Terms of Use

Terms of Use

The terms below are accepted together with the applicable Privacy Policy upon your first login to the course portal.

These purchase and usage terms (“Terms”) apply to the service (“Service”) provided by ProjektStegen Sverige AB (“ProjektStegen”). The Service is made available to the course participant (“Customer”) for a limited period of time (the “Term”). The Customer’s use of the Service is limited to the courses and components ordered (the “Order”). Upon payment, ProjektStegen grants the Customer a non-exclusive, non-transferable license to use the Service in accordance with the Order and these Terms (together, the “Agreement”), for the courses and number of users purchased. By placing an Order, the Customer accepts these Terms and becomes bound by the Agreement.

The Service

The Service consists of the training programs, services, and modules made available to the Customer via public electronic networks, cloud services, digital platforms, or on-site in physical locations. The Service may include both digital and printed materials.

The Order

The Service may be ordered in one of the following ways:

– the Customer orders the Service as an employee of the Customer’s employer (“Employer”);

– the Employer orders the Service on behalf of the Customer;

– the Employer orders a subscription or training package that constitutes an order for the Customer;

– the Customer orders the Service as a private individual.


The Order includes a description of the scope and content of the Service (“Specification”), available where the Order is placed. The Order also states the number of permitted users.

ProjektStegen reserves the right to decline an Order if ProjektStegen considers the Customer or the organization represented by the Customer to be a competitor.

Term of the Agreement

The period during which the Service is available is specified in the Order. After the Term expires, the Customer no longer has the right to use the Service.

Pricing

The price of the Service is stated at the place of purchase. Applicable statutory value-added tax (VAT) will be added.

Delivery and access

Delivery is deemed to have taken place when the Customer has received login credentials. The Customer accesses the Service by logging in through the platforms, communication channels, or facilities designated by ProjektStegen. The Service may only be used through the environments provided or approved by ProjektStegen.

Intellectual property and license rights

The Service is protected by copyright and all intellectual property rights belong exclusively to ProjektStegen. The Customer receives only a non-exclusive, non-transferable right to use the Service for the number of users purchased. The Customer may not copy the Service, in whole or in part. The Customer may not sublicense, rent, transfer, assign, pledge, or otherwise distribute any rights granted under the Agreement, whether for compensation or free of charge, without prior written approval from ProjektStegen. Copyright notices or markings may not be altered or removed. Nothing in these Terms shall be interpreted as transferring any intellectual property rights to the Customer or any third party.

Login credentials

Login credentials are personal. The Customer is responsible for storing and handling them securely and preventing unauthorized access.

Confidentiality

ProjektStegen may receive confidential information about the Customer during the Term. Confidential information includes business or professional secrets or other non-public information relating to the Customer or the Employer. ProjektStegen may use such information only for the purpose for which it was provided. The confidentiality obligation applies during the Term and thereafter as long as the information remains confidential. This obligation does not apply where disclosure is required by law or by a public authority. Information that ProjektStegen has informed the Customer may be shared with other users of the Service or with the Employer shall not be regarded as confidential.

The Customer agrees not to disclose to third parties any information or knowledge obtained through the Agreement that may constitute trade secrets and must take necessary steps to prevent such disclosure. The duty of confidentiality survives termination.

Processing of personal data

By using the Service, the Customer accepts that personal data will be processed in accordance with ProjektStegen’s Privacy Policy available on its website and within the designated platforms.
If the Employer has ordered or paid for access, the Customer acknowledges that ProjektStegen may report participation data and results to the Employer in order to fulfill contractual obligations.

Early termination

ProjektStegen may suspend access to the Service and terminate the Agreement with immediate effect if the Customer materially breaches these Terms. A material breach always includes unauthorized sublicensing or use of the Service beyond the permitted number of users or in any manner not expressly allowed. Upon termination on these grounds, the right to use the Service ceases immediately.

Responsibility for use and service errors

ProjektStegen does not warrant that the Service will be error-free or that the results of use will be accurate, optimal, or complete for the Customer’s needs. ProjektStegen is liable only for direct damages caused by willful misconduct or gross negligence. ProjektStegen is not liable for indirect or consequential damages, including but not limited to lost profits, wasted costs, loss of expected savings, or loss or corruption of data. Total liability is limited to the amount paid by the Customer for the affected Service.

Maintenance of the Service

ProjektStegen shall maintain, update, and upgrade the Service as it deems necessary. ProjektStegen also has the right, but not the obligation, during the Term to further develop or modify the Service, as well as subcontractors, operating platforms, and third-party products. Nothing in this section shall result in any material degradation of the Service.

The Customer acknowledges that maintenance of the Service may, from time to time, require the Service to be unavailable due to scheduled or unscheduled downtime. ProjektStegen will make reasonable efforts to perform such work in a manner that minimizes inconvenience to the Customer.

Use of subcontractors

ProjektStegen has the right to engage subcontractors to fulfill its obligations under the Agreement. ProjektStegen remains responsible for the performance of such obligations as if they had been carried out by ProjektStegen itself.

Assignment

The Agreement may not be assigned or otherwise transferred to any third party. However, ProjektStegen shall have the right to assign its rights and obligations under the Agreement to any legal entity that acquires or is authorized to take over all or part of ProjektStegen’s business.

Changes to the Terms

ProjektStegen reserves the right to make changes or additions to these Terms during the Term of the Agreement. In the event of such changes, ProjektStegen will notify the Customer as appropriate under the circumstances, for example by email, through a notice within the Service, or on ProjektStegen’s website. If the Customer believes that a change or addition constitutes a material disadvantage, the Customer shall inform ProjektStegen, and the parties shall enter into discussions in order to reach a mutual agreement.

Force majeure

Neither party shall be liable for any loss, damage, or delay caused by government action or omission, new or amended legislation, labor disputes, acts of war, fire, blockades, or other circumstances beyond the reasonable control of the party, and whose consequences the party could not reasonably have avoided or overcome (“Force Majeure”). A party invoking Force Majeure shall notify the other party in writing without undue delay. If performance of the Agreement is materially prevented for more than one (1) month due to Force Majeure, either party shall have the right to terminate the Agreement in writing.

Disputes and governing law

Any dispute arising out of or in connection with the Agreement that cannot be resolved amicably between the parties shall be finally settled by arbitration in accordance with the Rules for Expedited Arbitrations of the Stockholm Chamber of Commerce. The seat of arbitration shall be Stockholm. The Agreement, and its performance, shall be governed by and interpreted in accordance with the laws of Sweden.

AI Policy

AI Policy for the Portal

This policy applies to the portal — a learning platform providing courses, modules, system support, and tools for project-based work.

1. Background and purpose

We use artificial intelligence (“AI”) within the portal to improve the user experience, streamline processes, and support learning. The purpose of this policy is to ensure that AI functionality is used in a responsible, ethical, and lawful manner.

2. Scope

This policy applies to AI features used within the portal and covers course participants, users, as well as the technical and functional implementation of AI in the platform.

3. Complementary function and right to modify

AI functionality is intended to complement other learning resources. We reserve the right to modify, add, or remove AI functionality at any time without prior notice.

4. Principles

Transparency: AI features shall be presented in a way that is understandable to users. We inform users when AI is being used and for what purpose.

Responsibility: We are responsible for the AI functionality integrated into the portal. Users are responsible for applying critical judgment to AI-generated content and for how they use it.

Privacy and data protection: AI interactions are handled with respect for individual privacy and in accordance with applicable data protection laws. We retain AI-generated interaction data only as long as necessary for the functionality of the relevant systems.

Data and third-party processing: By using AI functionality in the portal, you acknowledge that these systems involve complex technologies and that certain input you provide may be temporarily processed or stored by third-party providers. You should therefore not submit sensitive personal data or other information that you do not wish to be processed or stored outside the portal.

Fairness and security: We actively work to prevent AI systems from contributing to discrimination or systematic bias. We also strive to ensure that systems are technically protected and used securely.

5. Guidelines

Use within the portal: AI is used as a support tool in various situations, for example to generate responses, provide recommendations, or tailor content. Participants should be aware that AI results may contain errors and that human judgment is always required.

Development and procurement: All AI functionality introduced in the portal shall be tested and quality-reviewed before being made available.

Training and support: Staff, consultants, and support resources shall be informed about AI capabilities and their limitations.

Maintenance and monitoring: AI modules are regularly reviewed and evaluated to ensure they function as intended and to identify potential risks.

6. User responsibility

Users are responsible for interpreting and reviewing AI-generated content before relying on it. AI output must not be used as the sole basis for decisions without critical assessment. AI may not be used to create or distribute misleading, unlawful, or inappropriate content.

7. Reasonable use of AI and API resources

The portal uses AI services and APIs that involve operational and licensing costs. Users agree to use these resources within reasonable limits (“fair use”) consistent with normal access to the portal. If usage becomes disproportionate — for example through excessive request volumes or automated processing not supported by agreement — we reserve the right to limit or suspend access. In such cases, we will inform the user and, where appropriate, offer a dialogue to reach a further agreement.

8. Disclaimer

AI-generated responses and recommendations are provided as guidance and support. Despite our efforts, errors, inaccuracies, misleading information, or inappropriate content may occur. ProjektStegen Sverige AB cannot be held responsible for actions or decisions taken by users based on AI-generated content.

9. Policy violations

Violations of this policy may result in restricted access to AI functionality, suspension of user accounts, or other measures depending on the nature of the breach.

10. Governance and updates

This policy is reviewed and updated as necessary to reflect technological developments, ethical considerations, and changes in legislation. All users, staff, suppliers, and partners are expected to comply with this policy.