Security & Privacy
This policy applies to the processing of personal data that CaseOnline Sweden AB ("CaseOnline.se") collects about you who can, for example, come from via our websites (including social networks belonging to third parties), electronic mail, sms, telephone, store, registration forms , in other contacts with us, camera surveillance, from third parties and from publicly available information.
With reference to EU law, we refer below to the General Data Protection Regulation (GDPR) and other applicable Swedish data protection legislation.
What information do we collect about you?
By "personal data" is meant information that concerns you and can identify you.
In this personal data policy, the terms "personal data" and "information about you" are used synonymously and alternately.
You can usually use our website without providing us with any information beyond technical. On some pages, information from you will be requested, for example in connection with purchases and service matters or if you register to receive electronic newsletters. Furthermore, we may use information about you that we have obtained from other sources provided by third parties, e.g. marketing and sales activity companies.
The personal information about you collected may be:
Personal and contact information - such as your name, address, e-mail address and telephone number, demographic information (such as date of birth, age, gender, geographical location, favorite products and hobbies) and, when clearly justified for the purpose of the treatment or the importance of a secure identification, including social security numbers.
Financial information - information that is needed to complete an order or that you use to make a purchase, such as payment or credit card details.
Technical information about your device or internet connection - for example, IP address, cookies, geographical location and login information.
Information about your user behavior - such as your search patterns and activities on the website, your response time for pages and how you use our services.
User-generated information - content that you self-register, submit or publish, for example in connection with calls to customer service (which may be recorded), competitions, newsletter sign-up and content that you share with us by uploading on our website or on social networks (which you allow the network to share with us), such as texts, videos and photographs.
Information from other sources - Generally available information or information from our partners that we collect, for example, to keep our information about you updated or to secure payment, for example.
Purpose and legal basis
In order for our processing of your personal data to be legal, it is presumed that there is a legal basis for this, ie. that it is necessary to fulfill an agreement with you or a legal obligation that lies with us, or that the treatment is done according to a balance of interests or that you have given your consent to a specific treatment. Below are examples of the purposes for which we process your personal data and on the basis of which legal basis this is done.
CaseOnline Sweden AB processes your personal data for various purposes. Mainly, CaseOnline Sweden AB processes your information for the following purposes and the following stated legal bases for the same:
One of our primary purposes of collecting personal data is to fulfill our obligations to you as a customer, such as processing and delivering your orders, invoicing and providing customer service and other commitments related to the purchase of our products. For example, we may need to answer your questions through our customer service related to the purchase and send out information to you for product security purposes, eg if any of our products need to be recalled, and otherwise assure us that legal requirements are complied with (for example the Accounting Act).
Legal basis: Compliance with contracts (terms of sale) or legal obligation
Another main purpose is to be able to offer you good products and services through customized services and to deliver better services with more relevant content. We use the information we collect to provide you with information about products you require, but also to better understand our customers. To achieve this, we do customer surveys, among other things. Furthermore, we analyze information about our customers' demographic and geographical conditions, interests and behavior based on the information we receive from our website or other so-called profiling services. Customer and market analyzes and processing for statistical purposes are performed at a pooled level and are not intended to identify individual customers.
Legal basis: legitimate interest
We may use information about you to send newsletters by mail, e-mail, SMS / MMS or by telephone, inform you of new products, promotions, offers, competitions and other information about our products and activities that we offer and which we think may be of interest to you. We may thus use the information about you for direct marketing, including so-called profiling, provided you have not instructed us not to. However, to the extent that you do not have a customer relationship with us or have had one in the last twelve months, we will only use your information for electronic direct marketing if you have given your consent. Your personal information can also be used for interest-based advertising on the internet via us or the digital advertising networks we work with and which in some cases can be adapted to your interests based on information we have collected, so-called profiling.
You have the opportunity at any time to oppose us using your personal data for direct marketing purposes by contacting us in the manner described under the heading Contact below, or directly in our electronic mailings.
Legal basis: legitimate interest or consent (unless otherwise expressly stated in connection with the collection of your personal data).
CaseOnline Sweden AB's legitimate interest in the above-mentioned personal data processing is to offer you a better buying and customer experience as well as to provide you with personalized offers and other relevant information.
Information about cookies
Who do we disclose your information to?
We treat your personal data with the utmost care and your information is only used by us and by selected third parties.
Third parties that we employ to help us conduct our business (such as for customer surveys and mailings) are only permitted to use your personal information on our behalf and for the specific tasks they have to perform according to our instructions and act as personal data assistants to us. They are required to keep your personal information confidential and secure. If required by law, you have the right to receive a list of possible personal data assistants who process your personal data on behalf of us.
In order to be able to offer better services and for marketing purposes, we may also pass on your personal data to third parties, usually then as independent personal data managers, so that they can perform a service for us or you, for example for address updates, a postal or freight service- companies that deliver products, insurance companies, banks / credit information companies or to digital advertising networks with which we work.
We may also, in other special cases, disclose personal information, e.g. when we have reason to believe that the information is necessary to identify, contact or prosecute anyone who may have infringed the Site, or who has otherwise infringed or infringed on our rights or property or the rights of our customers or other visitors.
The transfer of personal data to countries outside the EU / EEA requires that the country in question has an agreement with the EU / EEA, that the country is considered to have sufficient data protection legislation, or that we have entered into an agreement with the current third party that they are required to apply by the EU Commission clauses concerning the protection of personal privacy. You can find a list of approved third countries and standard clauses on the European Commission's website and on the Swedish Data Inspectorate's website on data transfer to third countries.
In accordance with law, you have the right to request information about personal data we hold about you after you have identified yourself and clearly stated what information you wish to access. Such a request must be in writing and individually signed and sent to the address given below under the heading Contact below. We will respond to your request as soon as possible and within a month. In the event that we are unable to fulfill your request, we will notify you and state why.
If you believe that the information about you is incorrect or incomplete, you have in a way and limited to what is prescribed by law the right to contact us with a request for correction. We will correct or update your information as soon as reasonably possible.
You also have the right in law to request the removal of the data about you or to request that we limit the processing of your personal data and withdraw any consent. You also have the right in law to have the right to have (ported) the personal data you have provided to us.
Please note that we may be required to retain the necessary personal information in connection with deletion, revocation of consent or porting in order to fulfill our obligations under law or contract. It may also be permissible for us by law to retain certain personal data to meet our business needs.
You have the right to object to such processing of your personal data as we do with a balance of interests, including profiling. We must then, after specifying which treatment you object to, show that there are interests that weigh more heavily. You are also entitled at any time to object to the processing of your personal data that is made for direct marketing.
How long do we store your personal data?
We will only store your personal data for as long as is necessary for the purposes provided by this personal data policy or as required by law or contract. Your personal data will be deleted or anonymized when they are no longer relevant for the purposes for which they have been collected or are no longer required by law or contract.
What do we do to protect your information?
To prevent unauthorized access, use, alteration, destruction or disclosure, we have established appropriate and reasonable standards to protect and secure the information about you that we are processing. Measures are taken to prevent unauthorized or unlawful processing of your information and accidental loss or destruction of, or damage to, this information. CaseOnline Sweden AB uses SSL (Secure Socket Layer), among other things, which means that the orders you place are encrypted.
Should a personal data incident be discovered, this will in a manner prescribed by law be reported to the Data Inspectorate and to you.
Links to other websites
Change of personal data policy
Complaints and damages
If you believe that the processing of your personal data has been handled incorrectly, please notify us as soon as possible. You also have the opportunity to make a complaint to the Data Inspectorate regarding our personal data processing.
If you believe that you have suffered damage as a result of our processing of your personal data in violation of law, you may be entitled to damages. You can then request damages from us or bring an action in court.
CaseOnline Sweden AB, 559042-0724, is responsible for personal data processing of your personal data as described above, unless otherwise explicitly stated in connection with the collection of your data. CaseOnline Sweden AB complies with Swedish data protection legislation. If you have any questions about the policy or our personal data processing please contact us as below.
CaseOnline Sweden AB
Blomgatan 17 B
973 31 Luleå
Org no. 559042-0724