top of page
P6133306.JPG

Personal data policy

PERSONAL DATA POLICY

Handling of personal data within GREJA Trädgård & Design

GREJA Trädgård & Design is committed to protecting your privacy rights. You should understand why we collect your personal data, what we collect, how we use it, and how long we store it. We also want you to know how you can access, modify, correct, and in certain cases, delete your information.

Who are we?

In this context, we are GREJA Trädgård & Design, registered under the business name GREJA Trädgård & Design. Hereinafter referred to synonymously as "we" and "GREJA."

Introduction

This information text explains how we handle your personal data and what rights you have. The information is addressed to you as a customer, visitor to our website, participant in any of GREJA’s activities, or in any other way communicates with GREJA.

Your privacy is important. We are therefore committed to ensuring that the personal data collected about you is stored and handled in a safe and secure manner and in accordance with data protection legislation. We encourage you to read through this information carefully. If you have any questions about how your personal data is handled, you are welcome to contact us. Our contact details are at the end of this document.

What is personal data?

Personal data is any information that directly or indirectly (i.e., together with other data) can be linked to you, such as name, address, image, personal identification number, IP address, email address, and purchase history.

WHAT PERSONAL DATA DO WE HANDLE ABOUT YOU AND WHY?

In this section, we explain how your personal data is used.

When you are a customer of GREJA

When you are a customer of GREJA, we handle the following data that you provide to us:

Your name and contact details, your purchase history when shopping on the e-platform, and other information you voluntarily share with us.

We handle your personal data to:

  • Identify you as a customer,

  • Maintain warranty obligations,

  • Invoice you for delivered products and services,

  • Provide you with rights under the purchase agreement and delivery conditions,

  • Send you information about GREJA’s services and products.

Compile statistics about customers and the website, with the aim of improving the experience for you as a customer of GREJA.

Legal basis for handling: We handle your personal data based on fulfilling our obligations to you as a customer and based on a legitimate interest when we have a justified reason to use your data for statistics, ensuring payment, and preventing fraud.

Storage period: We store data about you as long as you are an active customer of GREJA. According to accounting laws, invoices, receipts, and other relevant documents must be stored for up to seven years. The personal data on these documents will therefore be stored for that period.

WHEN YOU COMMUNICATE WITH US

You can choose to contact GREJA in many different ways: via contact forms, calls, or emails, and also via social media @ellen.hanssons.

When you communicate with GREJA, we handle data that you provide to us, such as:

Name and contact details, information about your opinion, question, or case.

We handle your personal data to respond to questions and handle your case, deliver ordered products and/or services, improve the information we provide.

Legal basis for handling:

We handle your personal data based on our and your legitimate interest in managing your case (legitimate interest).

WHEN YOU USE GREJA’S WEBSITE

When you visit our website, we handle:

Information about your visits to our websites, through so-called cookies. For more information on how we use cookies, see the information on the website regarding our Cookie Policy.

Your email address if you choose to shop in the webshop.

Your contact details and other information you voluntarily provide if you use the contact form or contact GREJA Trädgård and Design via email, mobile, or via social media @ellen.hanssons.

GREJA handles your personal data to:

Provide a functioning website, communicate with you if you wish to be contacted by us or have made purchases in the webshop, maintain, test, and improve our website, and detect and prevent security breaches.

Legal basis for handling: We handle your personal data based on our and your legitimate interest as described above (legitimate interest) and based on legitimate interest for our justified reasons to maintain, test, and improve our website. If our processing requires your consent, we will obtain your consent where possible before processing begins.

Storage period: The material is stored as long as it remains relevant to our purposes.

When GREJA has a legal obligation

In addition to what is described in the points above, we sometimes handle your personal data when we are legally obligated to do so, such as due to our accounting obligations or upon request from authorities.

Legal basis: When we handle your personal data due to legal obligations, we do so based on a legal obligation.

How long do we store your personal data?

Your personal data is only stored as long as required to fulfill the purposes of the processing or as long as we are legally obligated to store it. After that, your data is deleted or anonymized in a secure manner so that it can no longer be linked to you.

To whom do we disclose your personal data?

GREJA never sells your data to a third party. However, we may disclose your personal data to the following categories of recipients:

Suppliers providing IT services or processing payments on our behalf.

Companies and organizations that organize activities in collaboration with GREJA. This may apply in contexts where there are legal reasons for needing the information. If the information provided will be used to contact you directly, such as for marketing purposes, you will be informed with the opportunity to decline.

Other recipients when required by law, regulation, or government decision.

Recipients handling personal data on GREJA’s behalf must always enter into a so-called data processing agreement with us to ensure that your data is handled correctly and securely.

When your personal data is shared with a recipient that is independently responsible for personal data, such as an authority or a bank, the recipient’s privacy policy and information about personal data handling apply.

HOW DO WE PROTECT YOUR PERSONAL DATA?

Your privacy is important to us, and we therefore focus on security. We take measures to protect your data in accordance with the General Data Protection Regulation (GDPR) and established information security guidelines.

YOUR RIGHTS

You have certain rights under data protection legislation. If you wish to exercise any of your rights, you can contact us using the contact information in the next section.

  • Access to your personal data – You have the right to confirm if we process your personal data and request an extract of what data is being processed.

  • Request correction – You have the right to correct inaccurate information.

  • Request deletion – You have the right, under certain circumstances, to have your data deleted. For example, data required for us to fulfill our obligations to you as a customer cannot be deleted as long as you remain an active customer.

  • Object to processing based on our legitimate interest and processing for direct marketing purposes – You have the right to object to the processing of your personal data or request that processing be restricted.

  • Right to data portability – You have the right to request that personal data be transferred from us to another organization, company, or authority. This right is limited to data you have provided to us.

If you want to learn more about data protection legislation and your rights, you can read more here: http://eur-lex.europa.eu/legal-content/SV/TXT/?uri=CELEX:32016R0679

If you believe that our handling of your personal data is not in accordance with data protection legislation, we ask that you contact us (see the contact section below). You also have the right to file a complaint with the Swedish Data Protection Authority, which is the supervisory authority.

CONTACT INFORMATION

GREJA Trädgård & Design (org. no. 900912-3549) is the controller for the processing of your personal data, which is handled in accordance with the description above.

If you would like further information on how your personal data is handled, please contact us with a written, personally signed request sent to:

GREJA Trädgård & Design
Holm 312
473 97 Henån
SWEDEN

In the letter, please provide your name, address, email, phone number, and personal identification number in addition to your request. Also, attach a copy of your identification. A response will be sent to your registered address.

Updating of this information text

This information text was last updated on December 1, 2023, and may be subject to change. If we make significant changes to the text, we will notify you at least 30 days before the change takes effect via email and by publishing a new version on our website.

bottom of page