Last Updated: September 9, 2024
Introduction
At CaseBob Sweden, we are committed to protecting the privacy and data security of our customers. In compliance with the General Data Protection Regulation (GDPR), we have established this GDPR Compliance Policy to ensure that your personal data is handled responsibly, securely, and in accordance with EU regulations.
What Data We Collect
We collect personal data that you provide to us when using our website, making purchases, or contacting us. The types of personal data we collect include:
- Name and contact information (email address, phone number, shipping address)
- Payment details (credit card numbers, billing address)
- Order history and transaction details
- IP address, browser type, and usage data from your interactions with our website
How We Use Your Data
We use your personal data to fulfill our contractual obligations to you, improve our services, and ensure that we comply with legal requirements. Specifically, your data may be used for the following purposes:
- Processing and fulfilling your orders
- Communicating with you about your purchases, shipments, or customer service inquiries
- Providing you with information about promotions, new products, and services (with your consent)
- Ensuring the security of our website and preventing fraud
- Complying with legal obligations, such as tax regulations and reporting requirements
Lawful Basis for Processing
We process your personal data based on one or more of the following legal grounds:
- Consent: You have given clear consent for us to process your personal data for specific purposes.
- Contractual necessity: Processing is necessary for us to fulfill a contract with you (e.g., to process your orders).
- Legal obligation: Processing is necessary for compliance with legal requirements (e.g., tax laws).
- Legitimate interest: Processing is necessary for our legitimate business interests, such as preventing fraud and improving our services, unless those interests are overridden by your rights.
Your Rights Under GDPR
As a data subject under GDPR, you have the following rights:
- Right to Access: You can request a copy of the personal data we hold about you.
- Right to Rectification: You have the right to request that we correct any inaccuracies in your personal data.
- Right to Erasure: You have the right to request that we delete your personal data when it is no longer necessary for the purposes it was collected.
- Right to Restrict Processing: You can request that we limit the processing of your personal data under certain conditions.
- Right to Data Portability: You have the right to receive the personal data we hold about you in a structured, commonly used, and machine-readable format.
- Right to Object: You can object to the processing of your personal data where it is based on legitimate interests or direct marketing purposes.
To exercise any of these rights, please contact us at hello@casebob.com. We will respond to your request within 30 days.
Data Security
We implement industry-standard security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include encryption, secure socket layer (SSL) technology, and regular security assessments. However, please be aware that no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security of your data.
Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying legal, accounting, or reporting requirements. If you request the deletion of your data, we will securely delete or anonymize the data, except where retention is required by law.
Sharing Your Data
We do not sell your personal data to third parties. We may share your data with trusted service providers who assist us in operating our website, conducting business, or providing services to you (e.g., payment processors, shipping companies). These providers are obligated to keep your data confidential and only use it for the purposes for which it was shared. We may also disclose your data to comply with legal obligations or protect our legal rights.
International Data Transfers
If you are located within the European Economic Area (EEA), your data may be transferred to, and processed in, countries outside of the EEA. When this occurs, we ensure that the recipient country or organization provides an adequate level of data protection as required by GDPR. We use appropriate safeguards such as standard contractual clauses to ensure your data remains protected.
Cookies and Tracking Technologies
Our website uses cookies and similar tracking technologies to enhance your experience, analyze usage, and assist with our marketing efforts. By continuing to use our website, you consent to the use of cookies. You can manage your cookie preferences through your browser settings. For more information, please refer to our Cookie Policy.
Changes to This Policy
We may update this GDPR Compliance Policy from time to time to reflect changes in our practices or legal requirements. The most recent version will always be available on our website, and significant changes will be communicated to you where necessary.
Contact Us
If you have any questions or concerns about this GDPR Compliance Policy or how we handle your personal data, please contact us at:
Email: hello@casebob.com
Business Hours: 8:00 to 17:00 CEST, Monday to Friday
CASEBOB SWEDEN
Fjällbo Park 23B, 415 74 GÖTEBORG, Sweden
Organisation Number: 790713-4931
VAT: SE790713493101
Email: hello@casebob.com