Privacy Policy

Last updated: January 1, 2025

1. Introduction

Wind-Legacy Sweden ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our digital subscription services.

2. Information We Collect

2.1 Personal Information

We may collect the following types of personal information:

  • Name and contact information (email address, phone number)
  • Business information (company name, job title)
  • Billing and payment information
  • Communication preferences
  • Technical information (IP address, browser type, device information)

2.2 Usage Data

We automatically collect certain information when you visit our website:

  • Log files and analytics data
  • Cookies and similar tracking technologies
  • Website usage patterns and preferences
  • Interaction with our content and services

3. How We Use Your Information

We use your personal information for the following purposes:

  • To provide and maintain our digital subscription services
  • To process transactions and manage billing
  • To communicate with you about our services
  • To send marketing communications (with your consent)
  • To improve our website and services
  • To comply with legal obligations
  • To protect against fraud and security threats

4. Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your personal data based on:

  • Consent: When you voluntarily provide information or consent to marketing communications
  • Contract: To fulfill our contractual obligations when providing services
  • Legitimate Interest: For business operations, fraud prevention, and service improvement
  • Legal Obligation: To comply with applicable laws and regulations

5. Data Sharing and Disclosure

We may share your information in the following circumstances:

  • Service Providers: With trusted third-party vendors who assist in our operations
  • Business Transfers: In connection with mergers, acquisitions, or asset sales
  • Legal Requirements: When required by law or to protect our rights
  • Consent: With your explicit permission for specific purposes

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

6. International Data Transfers

As a Swedish company, we primarily store data within the European Economic Area (EEA). If we transfer data outside the EEA, we ensure appropriate safeguards are in place, including:

  • Adequacy decisions by the European Commission
  • Standard Contractual Clauses
  • Certification schemes and codes of conduct

7. Data Security

We implement appropriate technical and organizational measures to protect your personal information:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and authentication measures
  • Employee training on data protection
  • Incident response procedures

8. Your Rights Under GDPR

As a data subject, you have the following rights:

  • Right of Access: Request copies of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Request limitation of data processing
  • Right to Data Portability: Request transfer of your data
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent for specific processing activities

To exercise these rights, contact us at [email protected].

9. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience. Our Cookie Policy provides detailed information about:

  • Types of cookies we use
  • How to manage cookie preferences
  • Third-party cookies and analytics

You can control cookies through your browser settings or our cookie consent banner.

10. Data Retention

We retain personal information only for as long as necessary to fulfill the purposes outlined in this policy:

  • Customer data: Duration of relationship plus 7 years for legal compliance
  • Marketing data: Until consent is withdrawn or 3 years of inactivity
  • Website analytics: Up to 26 months
  • Legal documents: As required by Swedish law

11. Children's Privacy

Our services are not intended for individuals under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected such information, we will delete it promptly.

12. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will notify you of material changes through:

  • Email notifications to registered users
  • Prominent website notices
  • Updated "Last modified" date

13. Contact Information

For questions about this Privacy Policy or to exercise your rights, contact us:

Wind-Legacy Sweden
Kungsgatan 12
111 43 Stockholm
Sweden

Email: [email protected]
Phone: +46 8 123 456 78

Data Protection Officer: [email protected]

14. Supervisory Authority

You have the right to lodge a complaint with the Swedish Authority for Privacy Protection (IMY):

Integritetsskyddsmyndigheten (IMY)
Box 8114
104 20 Stockholm
Sweden

Website: www.imy.se
Phone: +46 8 657 61 00