L & P Nierenburg Aktiebolag
8 August 2023
1.1 The General Data Protection Regulation (EU) 2016/279 (GDPR) came into force on 25 May 2018. The GDPR aims to protect the fundamental rights and freedoms of individuals, in particular their right to the protection of personal data. L & P Nierenburg Aktiebolag (hereafter referred to as ”the company”) cares about your personal integrity and it is important to us that you feel comfortable with how we handle your personal data.
1.3 We tell you what personal data we process and the reasons for the processing. We also tell you how you can access your personal data and how to submit comments to us about the processing.
2 What personal data we process, purpose, and legal basis
The company processes information about you as a customer when you visit our website and buy products at graningeshoes.com. The processing of your personal data takes place so that we can deliver goods to you, take payment, handle returns, and market our products via digital channels, such as search engine marketing, social media, and banner advertising.
2.2 Representatives from companies/organisations
The company processes information about you that we need to be able to contact you in your role as a representative for a company/organisation (e.g. consultants, suppliers, advertisers, and retailers. Your data is often collected from you directly or from the company/organisation you represent.
2.3 Visitors to our website
2.4 People seeking employment with us
2.5 People who contact us spontaneously
We process your personal data when you, as a private individual or representative of a company/organisation contact us spontaneously. This may be contacts made with us in connection with trade fairs or other similar events. It may also be in connection with enquiries about a product that we sell, or when you notify us that you want to receive our newsletters or interact on our social media.
3 Where do we collect your personal data from?
3.1 We process personal data that you have provided to us when you contact us and/or buy our products and/or visit our website. We can also collect data from public registers.
4 Who do we share your personal data with?
4.1 The company shares information with trusted suppliers who help operate our IT, telephony, website and CRM system. There are Personal Data Processing Agreements with these parties, regulating how the personal data may be used and how it is protected. We may also share your personal data, for example with authorities, if we find it necessary due to statutory requirements. We may also, in order to fulfil our commitments to our customers and other stakeholders, transfer or share the data with third parties such as suppliers or subcontractors, carriers, service providers, payment service providers, and other partners.
5 Transfer to third countries
5.1 We always strive to ensure that your personal data is processed within the EU/EEA, i.e. that personal data is not transferred to third countries. Nevertheless, there may be third country transfers in some processing operations. Regardless of the country in which your personal data is processed, we take reasonable legal, technical and organisational measures to ensure that the level of protection is the same as within the EU/EEA.
6 How long do we keep your personal data?
6.1 We do not keep your personal data for longer than is necessary with regard to the purpose for which the personal data is processed. Some personal data is stored for as long as necessary to be able to fulfil statutory provisions, for example under the Swedish Accounting Act, and to be able to process claims and warranty issues.
7 Security and protection
7.1 The company has taken adequate technical and organisational security measures to protect your personal data from unauthorised access, alteration, or dissemination. We take all reasonable legal, technical, and organisational measures to ensure that the data is handled securely and with an adequate level of protection when transferred to or shared with such third parties.
8 Your rights
8.1 No matter what personal data we have stored about you, you will always have control over your own personal data. Therefore, according to the GDPR, you have the following rights:
8.1.1 Right of access and transparency (”register extract”) – You can request extracts from registered personal data and verify the information we have about you.
8.1.2 Right of correction – You have the right to have incorrect or incomplete data about you corrected.
8.1.3 Right to be forgotten – You have the right to request that your personal data shall be erased if the data is no longer necessary for the purpose for which it was collected. If the data is saved due to statutory obligations, you do not have the right to erasure.
8.1.4 Right to restriction of processing – You have the right to restrict the continued processing of data. For example if you question the lawfulness of the processing.
8.1.5 Right to data portability – i.e. the right to have some of your personal data transferred to another personal data controller.
8.1.6 Right to object – You always have the right to stop direct marketing or object to the processing of personal data based on a balance of interests.
9 If you are dissatisfied with our processing of your personal data
9.1 If you are dissatisfied with our processing of your personal data, you have the right to submit a complaint to the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten www.imy.se).
10.1 We reserve the right to update or change this policy if necessary. You should visit the website regularly to obtain the latest version.
11 How to contact us
11.1 If you have questions regarding our processing of personal data or if you want to exercise any of your rights related to the processing of the same, please contact:
Personal data controller: L & P Nierenburg Aktiebolag
Corporate identity number: 556332-2899
Address: Cylindervägen 18, 131 52 Nacka Strand
Telephone: +46(0)8-545 67 530