Privacy & Confidentiality Policy

Privacy Policy

For Apofemme Scandinavia, our customers' trust and satisfaction is our greatest asset. This trust is the foundation of our business. We will always prioritise your safety and satisfaction, we believe this will give us greater confidence. Customer privacy is based on our respect for the personal protection we all should receive when shopping for products or services on the internet.

We ensure and enforce this privacy policy by treating the information our customers entrust to us in a careful and responsible manner. Therefore, in all situations where personal data or other important information may be processed by Apofemme Scandinavia, or by someone else on behalf of Apofemme Scandinavia, all possible measures are taken to protect customer data from unauthorized access, disclosure, alteration and destruction.

With this policy, we want to inform you in more detail about how we take your privacy seriously. At the same time, it is of the utmost importance that you can always contact us in case of any complaints. Whatever the reason for your contact, your privacy is protected.

Personal data

Apofemme Scandinavia protects and will always protect your privacy, we strive to always protect your unique personal information in a respectful and accurate manner. Our goal is to strive for and comply with all applicable data protection directives, laws and regulations in force at any given time. Among other things, this policy will help you understand the information Apofemme Scandinavia collects and how it is used. By accepting the policy on our website in connection with the purchase or submission of information, you consent to the processing of your personal data as set out below.

Apofemme Scandinavia AB with registration number 559283-5721 is a Swedish limited liability company based in Stockholm. Our address is Maria Bangata 17, 118 63 Stockholm. This company is responsible for your personal data and how we process it.

How we process your personal data

We process the personal data you provide when ordering, which we collect on Apofemme.se through various cookies. The personal data that Apofemme Scandinavia processes is your personal identity number, name, e-mail address, purchase, payment and order history, payment method, delivery address, IP address and telephone number.

Your personal data - how is it processed?

The information you provide may be used for purposes such as identification, direct marketing, customer surveys, newsletters and statistics. The data may also be used for mailings, text messages and e-mails as well as for marketing and information purposes; if you do not wish this, you always have the right to opt out of this type of contact. Of course, you have the option to contact us at any time to discontinue marketing to you as a customer of Apofemme.se.

The information you provide may be used to analyse purchasing behaviour in order to provide you with the best and most relevant information and marketing and to improve Apofemme.se.

Your personal identity number will also be processed in connection with purchases on behalf of (or due to requirements from) Klarna AB, which needs this for credit reporting purposes. See Klarna's terms and conditions here.

The use of the data may involve checking and cross-checking with other registers. The data may also be aggregated or shared with public authorities or our partners, but we will always respect your privacy.

How is your personal data protected?

We comply with all directives and laws to protect your data. To keep the personal data we process safe, we have taken several security measures: we have implemented security procedures and technical and organizational measures to protect your personal data such as SSL certification technology for browsers. In addition, we have advanced firewalls and anti-virus software to protect and prevent unauthorized access to our server and network. Access to the areas where personal data is stored is strictly protected by Beebyte AB.

Apofemme.se also uses SSL (Secure Socket Layer) which is a secure protocol for safe data transmission over the Internet (or other networks). You as a customer need to check that SSL is not turned off in your browser settings. Of course we also use one-way encryption, all for your security.

How long is personal data stored?

Once you have agreed to be a customer (made a purchase) with Apofemme.se, your data is stored until you actively ask us to remove you from our customer register. You can unsubscribe as a customer at any time.

Please note that your data will never be stored for longer than is permitted by applicable personal data legislation. We comply with all directives.

Can I change the data you store?

You always have the right, according to the applicable personal data legislation, to obtain once per calendar year an extract of the personal data we have recorded and how it has been used, regardless of how this data has been collected. If you wish to receive this information, please submit a written request to us. In accordance with applicable personal data legislation, the request must be submitted signed by you by post to the address indicated on Apofemme.se. Please send the request by registered mail, clearly indicating your sender details and that you wish to receive extracts. It cannot therefore be sent by e-mail.

Apofemme.se always wants to ensure that your personal data is correct and up to date. If any of the information you have provided to Apofemme.se changes, for example if you change your email address, name or payment details - please inform us of the correct information by sending an email to kundtjanst [at] Apofemme.se. You have the right to request that personal data be corrected, blocked or deleted at any time.

It is important to point out that the personal data will not be processed for direct marketing purposes if you object to such processing. You always have the right to withdraw your consent to the processing of personal data at any time; we respect your privacy.

Links

Links pointing to other websites may appear on our website. We take no responsibility for the content of these websites.

Our personal data processing policy - GDPR

Introduction and purpose

The purpose of our policy is to ensure that Apofemme Scandinavia handles personal data in accordance with the EU's latest General Data Protection Regulation (GDPR). The policy covers all processing operations where personal data is handled and includes both structured and unstructured data.

This policy is embedded in all our employees.

Application and revision

The Board of Directors is responsible for ensuring that the processing of personal data complies with this policy.

The policy shall be adopted by the Board at least once a year and updated as necessary.

Jonnie Hiltula (CEO) is responsible for managing the process regarding the annual update of the policy due to new and changing regulations.

This policy applies to the company's CEO, employees and contractors involved in Apofemme Scandinavia's activities.

Organisation and responsibilities

The CEO has overall responsibility for the content of this policy and that it is implemented and complied with by the business. The CEO may delegate responsibility and implementation to the appropriate person in the company.

All employees are responsible for acting in accordance with this policy and what it seeks to ensure.

Personal data processing

All personal data processing shall be carried out in accordance with the following principles:

Legality

Purpose limitation

Data minimisation

Accuracy

Storage minimisation

Privacy and confidentiality

For payment services, Klarna AB is ultimately responsible for the processing of personal data and other data that is compatible with their business.

Our data processing shall be documented on an ongoing basis in the Processing Register

Monitoring and evaluation of our processing of personal data shall take place at least annually.

Any incidents relating to personal data that we process shall be reported without delay to the CEO, who shall without undue delay and at the latest within 72 hours report the incident to the Data Protection Authority and otherwise take the necessary measures in response to the incident.

Our requirements that personal data is handled in accordance with the GDPR shall always be ensured when procuring and developing IT solutions, 3rd party integrations and services, and shall be part of the requirement specification in any contract.

Secure payments with

Subscribe to our newsletter and get the latest info of products and offers