Effective date: 2021-05-18
1. About this Policy
When you use Debricked, you trust us with your personal data. We always respect your privacy and take its protection very seriously. Debricked is committed to keeping your trust. That starts with helping you understand our privacy policies. We are committed to complying with the EU General Data Protection Regulation (GDPR) and other privacy laws we are subject to. Debricked Data Protection policy gives you, as the data subject, an overview of the personal data obtained by Debricked, why we obtain the data, how we use the data and how you can exercise your rights with respect to your personal data.
2. Data Controller and Data Processor
2.1 Data Controller
Address: Anckargripsgatan 3 2TR 211 19 Malmö
Company registration N: 559159-5730
A Data Controller is a natural or legal person who (either alone or jointly or in common with other persons) determines the purposes for which and how any personal information is, or is to be, processed. Debricked acts as the Data Controller of your data
2.2 Data Processors (or Service Providers)
Data Processor (or Service Provider) refers to any natural or legal person who processes the data on behalf of the Data Controller. We at Debricked may process your data,however we may also use the services of various Service Providers (see section 9) in order to process your data more efficiently.
3. What personal data do we process, for what purpose, and why is it lawful for us to do so?
|Purpose of Processing Your Personal Data||Categories of Personal Data We Process (see description below the table)||Legal Basis for Processing Your Personal Dat|
|Administer the customer relationship with you in different ways, for example, to process your payment or carry out our obligations||Personal data||Fulfil contractual obligations|
|Perform data analysis for Service improvement and monitor the data usage||Usage data||Debricked has a legitimate interest in performing data analysis for product improvement|
|To detect, prevent and address technical issues as part of our efforts to keep our Services safe and secure.||Usage data||Debricked has a legitimate interest in maintaining our Services safe and secure.|
|Comply with applicable laws, such as taxation and bookkeeping||Personal data||Comply with laws|
|Protect Debricked from legal claims, and enforce our legal rights.||Personal data||Debricked has a legitimate interest in protecting itself from legal claims, and in enforcing its legal rights.|
|To provide marketing, news, general information and offers regarding our Services and events to you.
You may always reject by following the unsubscribe link or instructions provided in any email or contacting us, see Section 13
|Personal and Usage data||Debricked has a legitimate interest in providing marketing and offers to you.|
Debricked AB ensures that the processing performed for the outlined purposes is necessary for fulfilling our legitimate interests.
Description of categories of personal data:
While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you (“Personal Data”). Personally identifiable information may include:
We may also collect information on how the Service is accessed and used (“Usage Data”). This Usage Data may include information such as your computer’s Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers, actions taken in the user interface and other diagnostic data.
4. Retention of Your Personal Data
Debricked AB will also retain usage data for internal analysis purposes. Usage data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Service, or if we are legally obligated to retain this data for longer periods.
If you request, we will delete or anonymise your personal data so that it no longer identifies you, unless we are legally allowed or required to maintain certain personal data, including situations such as the following:
5. Your Data Protection Rights under GDPR
If you are a resident of the European Economic Area (EEA), you have certain data protection rights. Debricked AB enables you to correct, amend, delete or limit the use of your Personal Data.
6. Transfer of Personal Data
Your personal data may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction.
If you are located outside the EU and choose to provide information to us, please note that we transfer the data, including Personal Data, to the EU and process it there.
7. Disclosure of Personal Data
7.1 Business Transaction
7.2 Disclosure for Law Enforcement
Under certain circumstances, Debricked AB may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).
7.3 Legal Requirements
Debricked AB may disclose your Personal Data in the good faith belief that such action is necessary to:
8. Security of Personal Data
We are committed to protecting your personal data. We implement appropriate technical and organisational measures to help protect the security of your personal data including pseudonymisation, encryption, access, and retention policies to guard against unauthorised access and unnecessary retention of personal data in our systems. We heavily invest in our security which continuously monitors our systems to report any suspicious activity. We continuously assess any potential risks that could exist and design the necessary countermeasures to make sure you stay safe. However, please note that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
9. Our Policy on “Do Not Track” Signals under the California Online Protection Act (CalOPPA)
We do not support Do Not Track (“DNT”). Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked.
You can enable or disable Do Not Track by visiting the Preferences or Settings page of your web browser.
10. Service Providers
We may employ third party companies and individuals to facilitate our Service (“Service Providers”), provide the Service on our behalf, perform Service-related services or assist us in analysing how our Service is used.
These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
We may use third-party Service Providers to monitor and analyse the use of our Service. We, however, do not use any of these Service Providers for logged in users in our Service.
10.2 Behavioral Remarketing
We may provide paid products and/or services within the Service. In that case, we use third-party services for payment processing (e.g. payment processors).
The payment processors we work with are:
10.4 Customer Experience
We may use third-party providers to enhance your experience as a customer.
11. Children’s Privacy
Our Service does not address anyone under the age of 18 (“Children”).
We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your Child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers
12. Tracking & Cookies Data
14. Contact Us
Debricked AB is the responsible entity (Data Controller) for the processing of your personal data as described above. It is subject to Swedish data protection legislation.