Privacy Policy / GDPR

 

Last updated: 2018-05-15

Introduction

This document explains how we collect, store, protect and use personal data. In this context, “personal data” is taken to mean information which can be used directly or indirectly to identify a natural person. Examples of personal data include name, address, email address, phone number and civil registration number. The concept of “processing” refers to everything that can be done to or with personal data. Examples of processing include collection, registration, storage, coordination and deletion.

Keeping your personal data safe and secure is a key priority for us. If you have any questions, comments or enquiries about this policy, you are welcome to email us at info@sun-flex.com.

Sun-Flex updates this privacy policy at regular intervals. When this is done, the “updated” date at the top of the front page of the privacy policy is changed. If significant changes have been made to the privacy policy, Sun-Flex will issue notification of this by publishing a clear message on the website and, if appropriate, informing you directly via email. We encourage you to read this policy regularly to stay up-to-date with how we are helping to protect your information.

By using our website, you approve and accept this privacy policy.

Controller

  • Fridstiernan AB/Sun-Flex
  • Org.nr: 556237-6771
  • Tegelbruksvägen 1
  • 517 91 Bollebygd

Where are your data stored and processed?

Sun-Flex strives always to store your data within the EU/EEA.
With the exceptions stated below, the personal and corporate data you provide via this website will not be transferred outside the Sun-Flex organisation and the subsidiaries and affiliate companies it controls without your express permission.

Sun-Flex may disclose your personal and corporate data if required to do so by law, or if Sun-Flex considers in good faith that this is necessary:

  1. to fulfil legal regulations or comply with a legal decision applied to Sun-Flex or the website
  2. to protect and defend rights and/or property belonging to Sun-Flex and the website
  3. under extraordinary circumstances, to protect the personal security of users of Sun-Flex services, its websites or people in general.

What information do we collect and how do we process it?

Your data are stored for as long as you have an account with us. You can contact us at any time to terminate your account and have your data deleted.

On making a purchase

The data we request in order to be able to manage, process and complete a purchase are:

  • Name
  • Civil registration or company registration number
  • Contact information (address, email and phone number)
  • Invoicing address, if relevant
  • Payment information
  • Purchase information (which products you ordered)

The processing carried out in connection with a purchase are identification, delivery, payment processing, credit check, address check and, if relevant, processing of complaints or warranty issues.

This collection and processing of information is necessary to allow us to complete the purchase agreement.

Customer service tasks

We process certain personal data to enable us to handle customer service tasks. This applies, for example, when you ask customer service a question by phone, email, contact form or social media. In some cases we require information in order to be able to identify a customer account or order.

The data which may be processed include:

  • Name
  • Civil registration or company registration number
  • Order number or customer number
  • Contact information
  • Task history
  • Order history
  • Technical information (e.g. serial number)

This processing has a legal basis in the legitimate interests of the customer and us. These data are stored until the task has been concluded.

Marketing

We process customer data in order to analyse and manage statistics. The intention here is to create relevant offers regarding our products and services and present them to you.

The data collected for this purpose are:

  • Name
  • Address
  • Phone number
  • Email address
  • IP address
  • Unit information
  • Geographical information

It is in our legitimate interest to market ourselves via email, letter, phone and/or social media. You can unsubscribe from our mailshots by clicking “unsubscribe” at the bottom of our emails, or by contacting our customer service department. We store these data until you actively decline email marketing.

Development of the website

In order to be able to improve, develop and assess our website and services, we collect and analyse information about how our website is used. We can then use these data to suggest relevant products, for example, or otherwise to improve the user experience.

The data collected for this purpose are:

  • IP address
  • Type of browser
  • Geographical location
  • Operating system
  • Platform
  • Domain name
  • Purchase and user-generated data (e.g. click and visit history)
  • Popular searches
  • References from other websites

This processing has a legal basis in the legitimate interests of ourselves and the customer in developing the site. These data are stored as from the collection date.

In order to prevent misuse of a service, or to prevent, forestall and investigate crimes against the company.

We process certain customer data so as to identify, prevent and forestall different types of crime. Examples of crimes and misuse of services that we aim to prevent through our security measures are fraud and virus attacks.

The data collected and processed for this purpose are:

  • Technical data (such as IP address, operating system, platform and browser settings)
  • Civil registration or company registration number
  • Purchase and user-generated data (e.g. click and visit history)
  • Information about how our services are used

The legal basis for this collection can be fulfilment of a legal obligation. Alternatively, it is in our legitimate interest to maintain security on our website and/or to prevent, forestall and investigate crimes against the company.

Cookies

Our website uses what are known as “cookies” to help you enjoy an individualised internet experience, as well as “session cookies” to manage aspects of your visit such as the contents of your shopping basket, which pages you access when you click a link, and so on.

A cookie is a text file that is saved on your computer (with your consent) and gives you access to a variety of functions on the website. Cookie files cannot be used to run software or to infect your computer with a virus. A cookie is uniquely allocated to you, and can only be read by a web server in the domain that issued the cookie file to you. One of the main objectives of cookie files is to indicate to the web server that you have returned to a specific website so that you receive a personally adapted experience when you visit the site again.

You can choose whether or not to accept a cookie. Most browsers accept cookie files automatically, but it is usually possible to change the settings not to accept cookie files if you prefer.

If you choose to accept cookie files, you can also choose to log onto our website automatically. If you deselect the function, it is possible that you may not be able to use all the functions on the website. Please note that some firewalls shut down the processing of cookies and must therefore be configured manually if the website is to function as intended.

Your rights

The right to be deleted – you have the right to demand at any time that we delete the information we have collected about you. If, by law, we are not entitled to delete all the information – to comply with bookkeeping legislation, for example – we will inform you of which data we cannot delete.

The right to rectification – you have the right to contact us to have your customer data rectified.

Right to information about and access to your customer data – you can contact us to ask for an extract of the categories of data we have stored and for what purpose. We will normally provide this information within a month, and we will contact you directly should a delay occur.

The right to data portability – you have the right to have your data delivered to you so that you can transfer them to another party. These data will be supplied in a machine-readable format to facilitate processing and transfer.

The right to restriction – you have the right to demand restrictions on the processing of certain personal data.

The right to decline direct marketing – you can contact us at any time to decline direct marketing. You can call or email us, or click the “unsubscribe” link in our mailshots to decline email marketing.

In order to request any of the measures listed above, we would ask you to call us on +46 322-12700, email us at info@sun-flex.com or write to us at Sun-Flex, Tegelbruksvägen 1, 517 91 Bollebygd, Sweden.

Complaints

To submit a complaint about our processing of personal data, you can contact us directly via any of the channels presented above, or contact the Swedish Data Protection Authority.