Privacy Policy

Your privacy is important to us at NIMO. The purpose of the information in this policy is to provide you with knowledge and confidence in how we handle your personal data.

When you apply for a job

In order for us to process your application, determine if you are a suitable candidate, and contact you for any questions or interview scheduling, we need to process your personal data. The specific data we process depends on what you submit to us, but typically includes your name, address, email address, phone number, social security number, as well as information about qualifications and other content in your CV and/or cover letter. This processing is carried out based on our legitimate interest in being able to manage your application.

If you wish to withdraw your application, you can do so by contacting us through the channel you used to submit your application, or alternatively, through the contact information provided at the bottom of this policy. If you do so, we will delete all your personal data and close your recruitment case unless we have an obligation to retain some or all of the data according to the law or there is another legitimate reason to retain your personal data.

If your job application is declined, your application documents will be retained for two years to comply with requirements in anti-discrimination laws. However, if we choose not to proceed with your application because we do not currently have a job opening, your documents will be retained for one year unless you request their deletion before that time. Even if you are hired, your qualifications will be retained for two years, while other necessary information such as your name, social security number, and contact details will be retained throughout your employment and for some time afterward.

Your personal data may be stored with our hosting provider for email communication and document management. Otherwise, your personal data will not be shared with anyone outside of NIMO before employment.

When you communicate with us on social media

We are active on social media. If you, as an individual, choose to publish content, such as a post or a comment, on any of our public pages, you consent to us processing the personal data you publish. We do this in order to market ourselves and communicate with individuals who contact us with questions or engage in discussions. In addition to storing your personal data in the service where you posted it, we also process it by reading, potentially responding to, and eventually deleting it. You can withdraw your consent at any time by deleting what you have posted. Twice a year, we go back and delete all content from the second-to-last six months.

Please note that by publishing content on one of our public pages, you also provide the information you publish to the provider of the social service. NIMO has no control over what these providers do with your data; it is entirely governed by their own terms for their respective services.

Sometimes, we also advertise our posts on social media. When we do so, we typically target individuals of working age who have indicated that they reside in the area of one of our offices. It may also happen that we target individuals with specific interests they have stated on their profile. We do not have access to specific individual data; all actual processing of personal data is done by the social service provider.

When you send us an email

Incoming emails typically contain personal data. If you send an email to one of us, we will process your personal data by reading, storing, managing your message, and, if necessary, forwarding it to the appropriate recipient within NIMO. The personal data processed by us for this purpose is the same as what you provide in your message. Common examples of personal data that come to us in this way include names, email addresses, phone numbers, and job titles.

The legal basis for this processing is our legitimate interest in handling and responding to email messages. As long as your message has not evolved into a case with another legal basis, you have the right to object to further processing. In that case, we will delete all messages containing your personal data, unless we have a legal obligation to retain one or more of them according to the law, or there is another legitimate reason to retain your messages. The same applies after communication or the case has been concluded. For example, if the case relates to an existing customer relationship, we may retain it for the duration of the customer relationship (also based on a legitimate interest) and for some time afterward (to protect our rights under the law).

Please think twice before mentioning another person in an email to us. Even such personal data is processed based on our legitimate interest, but it may be difficult or even impossible for us to inform the individual that their personal data is being processed in this case. Take care of your fellow humans and only mention other individuals than yourself if you consider it necessary.

When you visit our website

We collect statistics about those who visit In this statistics, we process data such as IP addresses, the names of the IP address owners, the search terms you have entered, as well as device and browser information. We process this data based on our legitimate interest in tracking visitors' use of our website to improve and develop it. If you wish to object to this processing, you can contact us as specified in the "Contact" section.

We use various tools for collecting and structuring statistics on our website. The providers of these services may have access to certain data collected in this way.

Information about cookies and how to change your consent can be found in our cookie policy.

Your Rights

According to the General Data Protection Regulation, you have the right to:

  • Request an extract of your personal data and information about how we process it
  • Request correction or completion of your personal data
  • Request a temporary restriction of our processing of your personal data, e.g., while a correction is made
  • Request the deletion of your personal data (please note that if we still have a legitimate reason to retain the data, such as a legal obligation or contract, your request may be denied)
  • Submit a complaint to the Swedish Data Protection Authority (Integritetsskyddsmyndigheten) if you believe that our processing is unlawful or not performed correctly.

You always have the right to object to processing performed with a legitimate interest based on your specific circumstances. We will then reassess whether it is still legitimate to process your personal data for the stated purpose. However, if processing is performed for direct marketing, we will cease such processing if you object.

Regarding processing performed with your consent, you can always withdraw your consent at any time, and the processing of personal data will stop. However, processing that occurred before the consent was withdrawn is still considered legal.

Automated processing (e.g., in an IT system) performed with your consent or a contract where personal data has been collected directly from you is subject to the right to data portability, which means you have the right to request your personal data in a structured, commonly used, and machine-readable format.


The data controller for all the processing mentioned above is Nimoverken AB, 556138-1582, Box 288, 542 23 Mariestad, Sweden.

If you have any questions about our processing of your personal data, please contact