Privacy Policy

1. Introduction and Data Controller Information

This Privacy Policy explains how Squibronex collects, uses, stores, and protects your personal data when you visit our website or use our services. We are committed to protecting your privacy and ensuring transparency in our data processing activities in accordance with the General Data Protection Regulation (GDPR) and applicable Swedish data protection laws.

Data Controller:

Squibronex
Gustav III:s boulevard 46
169 73 Solna, Sweden
Phone: +46 8 587 800 00
Email: message@squibronex.world

The data controller is responsible for determining the purposes and means of processing your personal data. If you have any questions about this Privacy Policy or how we handle your data, please contact us using the information provided above.

2. Personal Data We Collect

We collect and process the following categories of personal data:

2.1 Information You Provide Directly

Contact and Order Information: When you submit an order form or contact us, we collect your name, email address, phone number, and any message or inquiry you provide. This information is necessary to process your order, respond to your inquiries, and provide customer support.

Communication Records: We maintain records of correspondence between you and our customer service team, including emails, phone calls, and chat messages, to ensure quality service and resolve any issues.

2.2 Information Collected Automatically

Technical Data: When you visit our website, we automatically collect certain technical information, including your IP address, browser type and version, operating system, device type, time zone setting, browser plug-in types and versions, and other technology on the devices you use to access our website.

Usage Data: We collect information about how you interact with our website, including the pages you visit, the time spent on each page, links clicked, search queries, date and time of visits, referring website addresses, and other diagnostic data.

Cookies and Similar Technologies: We use cookies and similar tracking technologies to track activity on our website and store certain information. For detailed information about our use of cookies, please refer to our Cookies Policy.

3. Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR:

Consent (Article 6(1)(a) GDPR): When you submit the order form or accept cookies, you provide explicit consent for us to process your personal data for the specified purposes. You have the right to withdraw your consent at any time.

Contract Performance (Article 6(1)(b) GDPR): Processing is necessary to fulfill our contractual obligations when you place an order or request our services.

Legal Obligation (Article 6(1)(c) GDPR): We may process your data to comply with legal obligations, such as tax laws, accounting requirements, and consumer protection regulations.

Legitimate Interests (Article 6(1)(f) GDPR): We process certain data based on our legitimate business interests, such as improving our website, preventing fraud, ensuring network and information security, and conducting business analytics. We always balance these interests against your rights and freedoms.

4. Purposes of Data Processing

We process your personal data for the following purposes:

Order Processing and Fulfillment: To process your orders, arrange delivery, handle payments, and provide customer support related to your purchases.

Communication: To respond to your inquiries, send order confirmations, provide updates about your order status, and communicate important information about our products or services.

Website Improvement: To analyze how visitors use our website, identify technical issues, improve user experience, and optimize website performance and functionality.

Marketing (with consent): If you have provided consent, we may send you promotional materials, newsletters, and information about new products or special offers. You can opt out of marketing communications at any time.

Legal Compliance: To comply with applicable laws, regulations, legal processes, and governmental requests, including tax and accounting obligations.

Security and Fraud Prevention: To protect our website, systems, and users from security threats, fraudulent activities, and unauthorized access.

5. Data Sharing and Disclosure

We do not sell your personal data to third parties. We may share your information with the following categories of recipients:

Service Providers: We engage trusted third-party service providers to perform functions on our behalf, including payment processing, order fulfillment, shipping and delivery, email service providers, website hosting, data analytics, and customer support. These providers have access to personal data only as necessary to perform their functions and are contractually obligated to protect your data and use it only for the purposes we specify.

Legal Authorities: We may disclose your personal data if required by law, court order, or governmental regulation, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others, investigate fraud, or respond to government requests.

Business Transfers: In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your personal data may be transferred to the successor entity, subject to the same privacy protections outlined in this policy.

With Your Consent: We may share your information with other third parties when you have given us explicit consent to do so.

6. International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA) where our service providers are located. When we transfer data internationally, we ensure appropriate safeguards are in place to protect your data in accordance with GDPR requirements, including:

Standard Contractual Clauses approved by the European Commission;

Adequacy decisions confirming that the destination country provides an adequate level of data protection;

Other legally approved transfer mechanisms.

You have the right to request information about the safeguards we have implemented for international data transfers.

7. Data Retention Periods

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy and to comply with legal obligations:

Order and Customer Data: We retain order information, including contact details and transaction records, for seven years from the date of the transaction to comply with accounting and tax regulations.

Communication Records: Customer service correspondence is retained for three years to ensure quality service and resolve potential disputes.

Marketing Consent: If you have consented to receive marketing communications, we retain your contact information until you withdraw consent or for three years of inactivity, whichever comes first.

Technical and Usage Data: Website analytics and technical data are typically retained for 26 months, after which they are anonymized or deleted.

Cookie Data: Cookie retention periods vary depending on the type of cookie. Please refer to our Cookies Policy for specific information.

After the retention period expires, we securely delete or anonymize your personal data. If deletion is not possible due to legal requirements, we will securely store your data and isolate it from further processing until deletion becomes possible.

8. Your Rights Under GDPR

Under the General Data Protection Regulation, you have the following rights regarding your personal data:

Right of Access (Article 15): You have the right to request confirmation of whether we process your personal data and to obtain a copy of your data along with information about how it is processed.

Right to Rectification (Article 16): You can request correction of inaccurate or incomplete personal data we hold about you.

Right to Erasure (Article 17): Also known as the "right to be forgotten," you can request deletion of your personal data when it is no longer necessary for the purposes for which it was collected, when you withdraw consent, or when there is no legal ground for processing.

Right to Restriction of Processing (Article 18): You can request that we limit the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data or object to processing.

Right to Data Portability (Article 20): You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.

Right to Object (Article 21): You can object to processing of your personal data based on legitimate interests or for direct marketing purposes. We will cease processing unless we have compelling legitimate grounds that override your interests.

Right to Withdraw Consent (Article 7(3)): Where processing is based on consent, you have the right to withdraw your consent at any time. Withdrawal does not affect the lawfulness of processing before withdrawal.

Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority, particularly in the EU member state of your residence, workplace, or where an alleged infringement occurred. In Sweden, the supervisory authority is the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten).

To exercise any of these rights, please contact us using the contact information provided at the beginning of this policy. We will respond to your request within one month, though this period may be extended by two additional months for complex requests.

9. Data Security Measures

We implement appropriate technical and organizational security measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction:

Encryption: We use HTTPS encryption (SSL/TLS) to protect data transmitted between your browser and our servers. Sensitive data is encrypted both in transit and at rest.

Access Controls: Access to personal data is restricted to authorized personnel who need the information to perform their job functions. All employees and contractors are bound by confidentiality obligations.

Security Monitoring: We regularly monitor our systems for potential vulnerabilities and attacks, and we implement security patches and updates promptly.

Data Minimization: We collect only the personal data necessary for the specified purposes and limit access to that data.

Regular Assessments: We conduct regular security assessments and audits to ensure our security measures remain effective and up to date.

While we strive to protect your personal data, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but are committed to protecting your data using industry-standard practices.

10. Children's Privacy

Our website and services are not directed to individuals under the age of 18. We do not knowingly collect personal data from children. If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately. If we become aware that we have collected personal data from a child without parental consent, we will take steps to delete that information promptly.

11. Automated Decision-Making and Profiling

We do not use your personal data for automated decision-making or profiling that produces legal effects or similarly significantly affects you. Any data analysis we conduct is for aggregate statistical purposes to improve our services and does not involve automated individual decision-making.

12. Third-Party Links

Our website may contain links to third-party websites, services, or applications that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites you visit. This Privacy Policy applies only to information collected through our website.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational, legal, or regulatory reasons. When we make material changes, we will update the "Last Updated" date at the top of this policy and may provide additional notice, such as a prominent announcement on our website or email notification if you have provided your email address.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your personal data. Your continued use of our website after changes are posted constitutes your acceptance of the updated policy.

14. Contact Information and Data Protection Officer

If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us:

Squibronex
Gustav III:s boulevard 46
169 73 Solna, Sweden
Phone: +46 8 587 800 00
Email: message@squibronex.world

We are committed to resolving any privacy concerns you may have and will respond to your inquiries as promptly as possible.

15. Specific Information for Swedish Residents

In addition to the rights outlined above under GDPR, Swedish residents should be aware that data protection in Sweden is supervised by the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten). You can contact them at:

Integritetsskyddsmyndigheten
Box 8114
104 20 Stockholm, Sweden
Phone: +46 8 657 61 00
Website: www.imy.se