Complete Range
Wide Knowledge
Value Adding Focus

Privacy Policy

This privacy policy contains information about how Boxon Group AB, reg.no. 556166-5000, including the following subsidiaries;

1) Boxon AB, org.nr. 556022-7067;
2) Boxon A/S, org.nr. 29207437;
3) Boxon AS, org.nr. 992815922;
4) Boxon Group OY, org.nr. 2998860-6;
5) Båfi Pac Aktiebolag, org.nr. 556581-2699;
6) Boxon Tech AB, org.nr. 556655-2625;
7) Boxon Sarl, org.nr. 48 834 941 189;
8) Boxon GmbH, org.nr. DE182523130;

(together “we”, ”us” or ”the Group”) processes your personal data. We process personal data in accordance with the General Data Protection Regulation (GDPR).

In this privacy policy we describe what personal data we collect about you. The collection may take place, for example, when you visit our websites, make a purchase and/or use our services. The policy also describes how we collect and process your personal data, as well as why we collect your personal data.

1. Controller

Each company within the Group is the controller for the processing of personal data carried out by such company and is therefore responsible for ensuring that your personal data is processed correctly and securely in accordance with applicable legislation.

Boxon Group AB is responsible for data protection issues within the Group, which for instance supervises that the Group’s processing of personal data is carried out in accordance with applicable legislation. Boxon Group AB’s contact information is set out in section 13 below.

2. What is personal data and processing of personal data?

Personal data is any information that can be directly or indirectly linked to an individual. Examples of personal data: name, address and IP address. Processing means any operation which is performed on personal data, such as collection, storage, use, adaption or disclosure.

3. Why we use personal data

We use your personal data to:

  • Provide products and services that you request
  • Develop and improve our products and services
  • Send out newsletters
  • Respond to messages you have sent us
  • Market ourselves, our products and services to existing and new customers through e.g. promotions and invitations
  • Comply with legal requirements

4. How we collect personal data

Depending on the channel through which you have contacted us, we may have collected different personal data. In addition to the information you have provided, we may have collected, e.g. your IP address and company affiliation. We also collect information about your interest in our offers, e.g. by registering the number of times you have clicked on our digital advertisements.

4.1 Personal data you provide us with

We collect personal data contained in the information you provide us with. This may occur when you purchase our products and/or services, contact our customer service, send us an e-mail or communicate with us in any other way. The collection of personal data may also occur if you sign up for one of our newsletters, events or other services. When you provide us with your personal data, we will collect, use and store this information for the purpose for which it was collected. It is always voluntary to provide us with additional information about yourself and we respect your decision not to provide us with such information.

Depending on how you interact with us, the information may include:

  • Name
  • Address
  • E-mail address
  • Phone number
  • Any other personal data you provide
  • Information about your organisation and position
  • Information about how you use our website (e.g. for payment, chat or contact via forms)
  • IP address
  • Operating system
  • Browser ID
  • Browser activity
  • Other information related to your visit to our websites

We collect certain information as part of our log files, but also through the use of cookies or other tracking technologies. Information on how we store and use cookies is described in our cookie policy.

4.2 Personal data we collect from other sources

We may receive information about you from third party advertisers, such as Google Ads and Facebook. These parties analyse users’ online behaviour to reach different types of audiences.

The data about you that we may collect is the following:

  • E-mail address
  • Operating system
  • Browser ID
  • Demographics
  • IP address
  • Location
  • Organisation
  • Web browsing history
  • User behaviour

For information on how third parties collect and process your personal data, we refer you as a user to the respective service’s policy.

5. How can the data be shared?

We respect your right to privacy and will not sell or rent your personal data to third parties. However, we may share personal data with our trusted subcontractors in order to provide you with our services.

We may share your data with subcontractors to enable a more effective marketing. This means that your customer data can be analysed and used to find new customers. In order for subcontractors to create segments for effective marketing, they need to have access to information about existing customers, such as age range, gender and interests.

Personal data may need to be transferred to other companies within the Group as key functions such as marketing and analysis, finance and customer management, are handled jointly within the Group.

We may transfer your personal data to countries outside the EU/EEA. If personal data is transferred to a country outside the EU/EEA, we will take measures to ensure that the personal data continues to be protected and will also take the necessary measures to ensure a lawful transfer of the personal data to countries outside the EU/EEA.

6. How long do we store your personal data?

Your personal data will only be stored as long as there is a need to keep it in order to fulfil the purposes for which the data was collected in accordance with this privacy policy. Personal data will be deleted if the purpose of collection has been achieved.

Certain personal data will, for the purpose of complying with applicable accounting legislation, be stored for seven years, counted from the end of the calendar year in which the financial year to which the information relates to ended.

Contact information regarding company representatives is stored for as long as we consider the information to be necessary to maintain the relationship with the company. Deletion shall take place when we become aware that the information is no longer adequate or relevant for the purpose, or at the request of the contact person.

For more information about how long we store specific personal data, please contact us. Contact information is provided under section "13. Contact" below.

7. Protection of your personal data

You should always be able to feel safe when you provide us with your personal data. We have used appropriate technical and organisational security measures to protect your personal data against unauthorised access, alteration, deletion and other unlawful processing. The security measures taken are adequate to protect the personal data against unauthorised processing. These measures include, for example, new password rules, firewalls, automatic timeouts etc.

8. Automated decision-making and profiling

We do not use automated decision-making in the processing of your personal data.

Profiling may occur in the processing of your personal data. The profiling is only used to enable effective marketing and to offer you products and services that we think you may be interested in. This means that your data may be analysed to gain an understanding of your interests. The use of profiling enables us to market different products to different target audiences. Profiling should not have any consequences for you, apart from the fact that your data is analysed in order to carry out targeted marketing.

9. Your rights

Under the GDPR, you have a number of rights. Your privacy is very important to us and we always strive to protect your personal data in the best possible way. If you are dissatisfied with our processing of your personal data, you have the right to lodge a complaint with the Swedish Authority for Privacy Protection (Box 8114, SE-104 20 Stockholm). Your rights are set below.

  • Right of access - You have the right to access your personal data and to obtain a copy of the personal data concerning you that is processed by us.
  • Right to rectification - If the personal data concerning you that is processed by us is inaccurate, incomplete or outdated, you have the right to obtain rectification of such personal data.
  • Right to erasure - You have the right to request the erasure of personal data concerning you. Unless we have a legal basis to continue the processing of the personal data concerning you, such personal data shall be erased.
  • Right to object - Under certain circumstances you have the right to object against our processing of your personal data.
  • Right to restriction of processing - Under certain circumstances you have the right to obtain restriction of the processing of your personal data. Where processing has been restricted, we may only under certain circumstances carry out other processing activities concerning the personal data than storage.
  • Right to data portability - Where your personal data is processed based on your consent or on a contract with you, you have the right to receive the personal data concerning you in a machine-readable format and request that those data are transmitted to another controller.

 

If you wish to exercise any of the abovementioned rights, or if you have any questions regarding the personal data held by us or this privacy policy, please do not hesitate to contact us.

10. Legal basis and purposes

The processing of your personal data is carried out for various purposes. The legal basis for the processing is stated below.

10.1 Legal obligations

We may process your personal data for the purpose of complying with security standards and other applicable legal requirements, based on the legal basis that this is necessary to comply with a legal obligation to which the Group is subject. The processing is therefore necessary to comply with our legal obligations.

10.2 Performance of contract

We register the customers who use our products and services, together with their relevant contact persons. The processing of this personal data is necessary for the performance of the contract with the customers. Contact details are also used to process payments from them.

10.3 Legitimate interest

When you visit any of our websites www.boxon.se, www.boxon.de, www.boxon.dk, www.boxon.no, www.boxon.com, www.boxon.fi, www.boxon.fr,  technical information is processed. This processing is necessary for our legitimate interest in streamlining, simplifying and developing our websites and in order to attract more customers.

Our legitimate interest may also provide the legal basis for processing in other situations where you have provided us with your contact information. This may be, for example, if you have expressed your interest in our products or services. We then have a legitimate interest in marketing our brand and goods to you as a customer or potential customer.

11. If you do not share your personal data

In some cases, it is necessary for you to provide us with your personal data in order to enter into a contract or due to legal requirements. If you do not provide us with your personal data, we will not be able to fulfil our legal or contractual obligations towards you.

12. Changes in the privacy policy

We reserve the right to change the content of this privacy policy at any time. The latest version is indicated by the date at the bottom of this privacy policy. All updates and changes will be effective immediately. We will publish a revised version of the policy on or websites when a change has been made. 

13. Contact information

If you have any questions, comments and/or complaints regarding the processing of your personal data or privacy issues, or if you wish to exercise any of your rights, please contact us at:

Boxon Group AB 
Attention: GDPR 
Box 13077
250 13 Helsingborg 
Sweden
info@boxon.com

Latest update: 2022-10-20

loading symbol