Legal
Privacy Policy
Last updated: 2026-02-23
1. Who We Are
is the data controller responsible for your personal data. We are an antivirus software reseller registered in Sweden.
This Privacy Policy explains what personal data we collect, why we collect it, how we use it, and what rights you have. It applies to all customers — both individuals and businesses.
We process personal data in accordance with the EU General Data Protection Regulation (GDPR) and applicable Swedish data protection law.
2. What Data We Collect
We collect only what we need to provide our services:
| Category | Data | Source |
|---|---|---|
| Account data | Name, email address | You provide this when registering |
| Billing data | Billing address, VAT number (businesses), payment details (handled by Stripe) | You provide this at checkout |
| Transaction data | Purchase history, subscription status, invoices | Generated when you use our services |
| Usage data | IP address, browser type, pages visited, timestamps | Collected automatically |
| Support data | Support messages, email correspondence | You provide this when contacting us |
We do not collect sensitive personal data such as health, biometric, or political data.
3. Why We Use Your Data
We only process your data when we have a valid legal reason to do so:
To fulfil your order
Legal basis: contract (GDPR Art. 6(1)(b))
We use your name and email to create your account, deliver your purchase, process payments, send order confirmations and invoices, and handle support requests.
To comply with the law
Legal basis: legal obligation (GDPR Art. 6(1)(c))
Swedish accounting law requires us to keep financial records for at least 7 years.
To keep our services secure
Legal basis: legitimate interests (GDPR Art. 6(1)(f))
We use usage data to monitor security, prevent fraud, and improve our services. We have assessed that this does not override your rights.
To send marketing emails
Legal basis: consent (GDPR Art. 6(1)(a))
We only send marketing emails if you have given us explicit consent. You can unsubscribe at any time using the link in any marketing email, or by contacting us.
4. Who We Share Your Data With
We do not sell your personal data. We only share it with the following parties, and only what is necessary:
-
Stripe, Inc. — Payment processing
Stripe handles all payment card data, invoicing, and refunds. Stripe is an independent data controller for payment data. Your data may be transferred to the United States under Standard Contractual Clauses. See Stripe's Privacy Policy.
-
Our Supplier(s) — Order fulfilment
As a reseller, we share your name and email address with our upstream supplier(s) to deliver your order and activate your licence. Our suppliers are contractually required to use your data only for this purpose and in compliance with GDPR. We have Data Processing Agreements (DPAs) in place where required.
-
Hosting Providers — Infrastructure
Our application and database are hosted on servers within the EU/EEA. Our hosting providers act as data processors under DPAs.
-
Authorities — Legal compliance
We may share your data with authorities if required by law or to protect our legal rights.
5. International Data Transfers
Some of our service providers (such as Stripe) are based outside the EU/EEA. When data is transferred to countries without an EU adequacy decision, we ensure appropriate safeguards are in place — such as Standard Contractual Clauses (SCCs) approved by the European Commission.
6. How Long We Keep Your Data
We keep your data only as long as necessary:
| Data type | Retention period |
|---|---|
| Account data (name, email) | Duration of account + 12 months after deletion |
| Billing & transaction records | 7 years (required by Swedish accounting law) |
| Usage & log data | Up to 12 months |
| Support communications | 3 years from last contact |
Once the retention period expires, your data is securely deleted or anonymised.
7. Your Rights
Under GDPR, you have the following rights regarding your personal data:
| Right | What it means |
|---|---|
| AccessArt. 15 | Request a copy of the data we hold about you. |
| RectificationArt. 16 | Ask us to correct inaccurate or incomplete data. |
| ErasureArt. 17 | Ask us to delete your data, subject to legal retention requirements. |
| RestrictionArt. 18 | Ask us to limit how we use your data in certain situations. |
| PortabilityArt. 20 | Receive your data in a structured, machine-readable format. |
| ObjectArt. 21 | Object to processing based on legitimate interests or for direct marketing. |
| Withdraw consentArt. 7(3) | Withdraw consent at any time where processing is based on consent. This does not affect prior processing. |
To exercise any of these rights, contact us at . We will respond within 30 days.
You also have the right to file a complaint with the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten, IMY): www.imy.se.
8. Cookies
We use cookies to keep our services running, maintain your session, and understand how our site is used.
- Essential cookies are used without consent — they are required for the site to work.
- Non-essential cookies (e.g. analytics) are only set after you give consent via our cookie banner.
You can change your cookie preferences at any time through our cookie settings or your browser settings.
9. How We Protect Your Data
We use appropriate technical and organisational measures to keep your data safe. This includes encrypted connections (TLS), access controls, and regular security reviews.
If a data breach occurs that poses a risk to your rights, we will notify the relevant supervisory authority within 72 hours and inform you without undue delay where required.
10. Children's Privacy
Our services are not intended for children under 16. We do not knowingly collect data from children. If you believe we have done so by mistake, please contact us and we will delete it promptly.
11. Updates to This Policy
We may update this policy from time to time. If we make significant changes, we will notify you by email or by posting a notice on our website. The date at the top of this page always shows when it was last updated.
12. Contact Us
For privacy-related questions or to exercise your rights, contact us at:
Org. no.:
Email: