Legal and privacy policy

Introduction

Coloreel intends to provide you with a level of comfort and confidence in how we collect, use, disclose, and safeguard personal and other information that we collect or that you provide to Coloreel. This Privacy Policy also explains how you can contact us if you have any questions or concerns.

This privacy policy describes our practices in connection with information that we collect through our websites, software applications, social media pages, e-mail messages, and your interest in our products, or other personal information that you otherwise provide to Coloreel (personal data).

Responsibility for your personal data

Coloreel Group AB (publ) (“Coloreel”), Gjuterigatan 9, 553 18 Jönköping, Sweden, org. nr. 556646-3435 is controller for the personal data we collect and process.

Please see our contact details in the section “How to Contact Us” below.

Personal data that we may process

This privacy policy applies to personal data, which is information that can be used to contact or identify you. Personal data includes your name, home and business mailing addresses, telephone number, e-mail address, payment card, social media account identification, date of birth, and specific data about your field of interest (as described below in more detail).

A further detailed list of our processing of personal data can be found in Appendix 1.

How we may use personal data

We shall be responsible in our processing of personal data, regardless of whether it concerns employees, customers, suppliers or other business partners. Matters that in various ways affect the processing of personal data are found in all areas of our business and as such we encourage the inclusion of an item covering personal data processing in all meeting agendas.

The data must be processed in a legal, correct and transparent manner in relation to the data subject. We shall be transparent as regards which data we process and ensure that the persons who in different ways are registered at our company can exercise their rights in an effective manner.

The collection of personal data may only take place for specified, explicit and legitimate purposes and we shall only collect the data required for these purposes. We work actively to restrict retention by deleting data in accordance with our retention policy and, where appropriate, through the use of automatic deletion. We shall implement reasonable measures to ensure that the data are correct.

In order to ensure and demonstrate that we comply with the legal requirements, we shall gather all documentation concerning our data protection work in one place: the Qnister GDPR tool.

How we may share personal data

The personal data we collect may be disclosed to third parties when necessary to perform services on our or your behalf. We do not share your personal data with unaffiliated third parties for their marketing purposes unless you approve that sharing. When you sign up for our newsletter you approve to share your personal data to our partners, distributors and third parties like Google, Facebook, LinkedIn and other tools for marketing purposes.

Where possible, we avoid the transfer of personal data to a third country, although if this is deemed appropriate and necessary it may only take place once sufficient security measures have been taken and documented.

Cookies

A cookie is a small text file with information stored on your computer, tablet or cell phone when you visit a website. Cookies are used to make web pages work more efficiently but also to provide certain information to the owner of a website. Cookies make it possible to separate different users from each other, which in turn can give each user a more positive experience of the site.

There are two types of cookies, permanent cookies, and session cookies. On the Coloreel website, we use both these types of cookies. Permanent cookies are stored as a file on your computer or mobile device until you on the website itself, or the server that sent them erases them. Session cookies are stored while you are browsing a website and disappears when you close the browser.

The information collected through cookies does not contain any personal information but is used to determine visitors’ patterns regarding the use of our web services. As for behavior on Coloreel.com, IP addresses are not stored in our databases. As a website visitor, information about you can never be linked to your identity.

You can delete cookies from your computer or mobile device through the browser. For instructions on how to manage and delete cookies, go to the “Help” option in your browser. You can choose to disable cookies or get a notification each time a new cookie is sent to your computer or mobile device. Please note that if you decide to disable cookies, you will not be able to use all features on our site. For more information about how to manage and remove cookies, visit www.aboutcookies.org.

Unless you have adjusted your browser settings so that it will refuse cookies, our system will place cookies on your device as soon you visit any page on our website.

Cookies on our Website

The specific types of first and third party cookies served through our Website and the purposes they perform are described in further detail below:

Essential Website Cookies: These cookies are strictly necessary to provide you with services available through our website and to use some of its features. Because these cookies are strictly necessary to deliver the websites, you cannot refuse them without impacting how our websites function. You can block or delete them by changing your browser settings.

Performance and Functionality Cookies: These cookies are used to enhance the performance and functionality of our website but are non-essential to their use. However, without these cookies, certain functionality may become unavailable.

Analytics and Customization Cookies: These cookies collect information that is used either in aggregate form to help us understand how our website is being used or how effective our marketing campaigns are, or to help us customize our websites and application for you in order to enhance your experience.

Advertising (Targeting) Cookies: These cookies are used to make advertising messages more relevant to you and your interests. They also perform functions like preventing the same ad from continuously reappearing, ensuring that ads are properly displayed, and in some cases selecting advertisements that are based on your interests.

Targeted online advertising: We have engaged one or more third party service providers to track and analyze both individualized usage and volume statistical information from interactions with our Website. We also partner with one or more third parties (such as advertisers and ad networks) to display advertising on our Website and/or to manage and serve to advertise on other sites.

These third parties use cookies, web beacons, pixel tags and similar tracking technologies to collect and use certain information about your online activities, either on our Website and/or other sites or mobile apps, to infer your interests and deliver you targeted advertisements that are more tailored to you based on your browsing activities and inferred interests (“Interest-Based Advertising”). For more information about this practice, click here: http://www.aboutads.info/choices/.

Our third party service providers may also use cookies or web beacons to collect information about your visits to our Websites and/or other sites to measure and track the effectiveness of advertisements and our online marketing activities (for example, by collecting data on how many times you click on one of our ads). The information collected by these third parties does not include personal information that enables you to be specifically identified (e.g. by reference to your name or email address).

Security

We seek to use reasonable organizational, technical, and administrative measures to protect personal data within our organization. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure. If you have reason to believe that your interaction with us is no longer safe (for example, if you feel that the security of any account with us is compromised), please immediately notify us of the problem by contacting us using the “How to Contact Us” section below.

If you sell or transfer your Coloreel product to another person, please notify us so that we can determine whether additional steps are required to help safeguard your personal data from disclosure to the purchaser or transferee of the Coloreel product.

Risk assessment

We shall regularly perform risk assessments of the processing of personal data that we perform. We shall take technical and organisational measures to achieve an appropriate security level in relation to the risk. Risk analyses and decisions on measures shall be documented.

Authorisation

There shall be written authorisation instructions for all IT systems that contain personal data. The fundamental principle is that authorisation shall be assigned such that only persons who require access to personal data have such access. Depending on the sensitivity of the personal data, authorisation may be more or less inclusive.

Breach management

All security breaches shall be documented in an incident management log with details about the circumstances surrounding the personal data breach, its consequences and the corrective measures that have been taken. A security breach is an incident that leads to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, retained or otherwise processed.

Where the legislation so prescribes, breaches shall also be reported to the Swedish Authority for Privacy Protection and the data subject shall be informed.

Rights and choices

When Coloreel collects and processes your personal data, you have certain rights. Depending on the circumstances you may have the right to:

– Request a copy of the personal data that the company processes and details of how the data are processed;

– Request the rectification of any inaccurate data;

– Request to be erased. However, this can only be done provided that there is no other legal basis giving the company the right to retain the data;

– Request that processing be restricted under certain circumstances, such as during a period when the correctness of the data is under investigation;

– Exercise the right to data portability; and

– Oppose to profiling.

If you have any questions regarding the processing of your personal data, please use the contact information below under section “How to Contact Us”.

Retention period

We will retain your personal data for the period necessary to fulfill the purposes outlined in this Privacy Policy unless a more extended retention period is required or permitted by law.

How to contact us

To contact us with a question or comment, to opt out from specific services, or to request access to, correction, or deletion of your personal data, please contact us at info@coloreel.com.

Please note that e-mail communications are not always secure, so please do not include credit card information or sensitive information in your e-mails to us.