Diplomat Communications values your personal privacy and strives to always protect your personal data in the best possible way. This policy describes how personal data is collected, used, shared, and protected. Diplomat Communications complies with the General Data Protection Regulation (EU) 2016/679 (“GDPR”), applicable Swedish law, and recommendations from the PR trade association PRECIS.
Data controller
Diplomat Communications AB, with organization number 559012–9333, is the data controller for the processing of personal data unless otherwise stated or agreed in writing.
Personal data is processed in the following situations
- When contacting us via email or our website
- When participating in events and webinars
- When subscribing to newsletters
- When applying for employment
- When a person is a customer or a representative of a customer
- When interacting on social media
The purpose is to:
- Deliver services and fulfill contracts
- Communicate with customers and stakeholders
- Send relevant marketing (only with consent)
- Manage recruitment processes
- Improve our website and analyze traffic
What personal data is processed?
Diplomat Communications may process personal data such as:
- Name
- Contact details (email, phone number, address)
- Employer and job title
- Correspondence and meeting history
- Information about participation in events or newsletter subscriptions
- Photos or video material (only with consent)
- IP address and user data (via cookies)
Legal basis for processing
| Purpose | Legal basis |
| Customer relations and contracts | Performance of contract |
| Marketing | Consent or legitimate interest |
| Recruitment | Consent or legitimate interest |
| Communication and support | Legitimate interest |
| Web analytics via cookies | Consent (via cookie banner) |
For processing based on consent, an explicit, voluntary, and informed agreement is required. Consent can be withdrawn at any time.
Who might we share personal data with?
Processing primarily takes place within the EU/EEA. If personal data is processed in countries outside the EU/EEA, appropriate safeguards are ensured in accordance with the GDPR, for example through the EU’s standard contractual clauses.
How is personal data protected?
Diplomat Communications applies technical and organizational security measures in accordance with GDPR requirements. Examples include:
- Network encryption
- Access restrictions
- Procedures for handling personal data incidents
Internal IT security guidelines are continuously applied and managed under Diplomat’s information security policy.
How long is personal data stored?
Personal data is stored only as long as necessary for each specific purpose or as required by law. Examples:
- Customer data: up to 10 years in accordance with the Accounting Act
- Recruitment data: a maximum of 2 years after the recruitment process has been completed
- Marketing: until the individual withdraws their consent
Your rights
Individuals whose personal data is processed by Diplomat have the right to:
- Request access to their personal data
- Have incorrect data corrected
- Request deletion (except where required by law)
- Object to processing or request restriction
- Have their data transferred (data portability)
- Withdraw consent at any time
If the processing is deemed inappropriate, there is a right to file a complaint with the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten).
Requests to exercise these rights should be sent to: integritet@diplomatcom.com
Cookies
Cookies are used on the website. For detailed information about purposes, types of cookies, and how to manage your settings, please see the separate cookie policy.
Changes to the privacy policy
Diplomat Communications reserves the right to update this policy. Any changes to this privacy policy will be published on www.diplomatcom.com
This policy was adopted by the board of Diplomat Communications AB on June 17, 2025.