Your shopping cart is empty!

Different shipping methods available.
Fast delivery, stocked items are shipped the same day (ordered before 14:00)

Start
General Data Protection Regulation (GDPR)

Processing of personal data in accordance with the General Data Protection Regulation (EU) 2016/679

On this day, 10 May 2018, the following policy has been established for AB Mahol

Purpose of the policy

We care about your privacy. You should feel safe when you entrust us with your personal data. Therefore, we have established this policy. It is based on current data protection legislation and clarifies how we work to safeguard your rights and your privacy.

The purpose of this policy is to let you know how we process your personal data, what we use it for, who can access it and under what conditions, and how you can exercise your rights.

Background information

We process your personal data primarily to fulfil our obligations towards you. Our starting point is to process no more personal data than is necessary for the purposes, and we always endeavour to use the least privacy-sensitive data.

We also need your personal data to provide you with good service, for example in terms of marketing, follow-up and information. We may also need your personal data to comply with laws and to perform customer and market analyses.

You have the right to object to us using your personal data for direct marketing purposes. When we collect personal data about you for the first time, we will provide you with more information about this and how you can object.

Guidelines

What personal data do we process?

We only process personal data when we have a legal basis. We do not process personal data other than when it is needed to fulfil contractual and legal obligations.

First, middle and last name
Your address
Postcode and town
Telephone number
E-mail address
Social security number (when ordering against a credit service such as invoice, account or instalment)
IP address

How do we get access to your personal data?

As far as possible, we try to obtain your consent before we start processing your personal data. We do this by having you fill in explicit consent clauses where processing is based on consent.

You have the right to withdraw your consent at any time. We will then no longer process your personal data or obtain new ones, provided that it is not necessary for the fulfilment of our contractual or legal obligations. Please note that withdrawal of consent may mean that we cannot fulfil our obligations to you.

We also access your personal data in the following ways:

Data that you provide to us directly
Data recorded when you place an order via one of our websites
Data we receive when you are in contact with one of our staff
Data we receive when you sign up for newsletters and other mailings
Information we receive when you respond to questionnaires and surveys
Information we receive when you contact us, apply for employment with us, visit us or otherwise contact us

What information do we give to you?

When we collect your personal data for the first time, we will inform you how we obtained the personal data, what we will use it for, what your rights are under data protection law and how you can exercise them. You will also be informed about who is responsible for the processing of your personal data and how you can contact us if you have any questions or need to make a request or enquiry relating to your personal data and/or rights.

Is your personal data processed in a secure manner?

We have developed procedures and working methods to ensure that your personal data is processed in a secure manner. The starting point is that only employees and other persons within the organisation who need the personal data to perform their tasks should have access to it.

We do not store sensitive personal data.

Our business system and other technical tools are developed with your privacy in mind and are highly protected against intrusion, destruction and other changes that may pose a risk to your privacy.

When do we disclose your personal data?

Our starting point is not to disclose your personal data to third parties unless you have consented to it or unless it is necessary to fulfil our obligations under contract or law. In cases where we disclose personal data to third parties, we ensure that the personal data is processed in a secure manner.

We do not sell, trade or otherwise transfer personal data to third parties. Third parties do not include trusted third parties who help us run our website (hosting provider) or our company (accountant, accounting firm and product suppliers) as well as official partners such as payment providers, TA systems (transport administration systems) and business systems when necessary to fulfil our commitment.

How long do we keep your personal data?

Your personal data is stored by us in order to fulfil our obligations under contract or law. Depending on the nature of the personal data, it is stored for different periods of time between 1-7 years.

First, middle and last name - 7 years (Accounting Act 1990: 1078 Chapter 7)
Address - 7 years (Accounting Act 1990:1078 Chapter 7)
Postcode and town - 7 years (Accounting Act 1990:1078, Chapter 7)
Telephone number - 3 and 2 years respectively (Consumer Sales Act 1990:932 23§ and Sales Act 1990:931 32§)
E-mail address - 3 and 2 years respectively (Consumer Purchases Act 1990:932 23§ and Purchases Act 1990:931 32§)
Personal identity number (when ordering against a credit service such as an invoice, account or instalment) - Until payment has been made in full (Consumer Credit Act 2010:1846, section 14)
IP address - 1 year (Criminal Code 1962: 700 Chapter 9 Section 2)

What rights do I have as a data owner?

As a data owner, you have the right to know what personal data we have about you (register extract), to invoke rectification if registered data is incorrect, the right to have your personal data deleted (the right to be forgotten). You also have the right to restrict the processing of your personal data, the right to data portability (to transfer your personal data to another controller) and the right to object.

You have the right to lodge a complaint with the responsible supervisory authority (the Swedish Data Protection Authority) if you believe that your personal data has been processed incorrectly by us.

Responsibility

AB Mahol is the data controller, which means that we are responsible for how your personal data is processed and that your rights are utilised.

If you wish to get in touch with the data controller, please do so via the following contact:

AB Mahol

Södra Hamnvägen 3

46138 Trollhättan, Sweden

Telephone: (+46)0520-22 14 80 (ask to speak to the data controller)

Email: info@abmahol.se (subject line: data processor)

Changes to the Policy

AB Mahol reserves the right to make changes to this policy at any time to the extent that the changes are necessary to address disruptions or to meet new legal or technical requirements. Any changes to this policy will be posted on the website.