Integritets Policy

Privacy Policy – Hairucation AB

Last updated: 2025-09-08

Hairucation AB values your privacy. This policy explains how we collect, use, store, and protect your personal data when you shop with us or use our services. The policy applies to our websites, including fastfoilsnordic.com and ysparksweden.se.

By using our websites, you confirm that you have read this policy and understand how we handle your personal data.

Data Controller

Hairucation AB (reg. no.556928-2139) is the data controller for the processing of your personal data in connection with purchases, customer support, marketing, and other communication.

Address: Slottsvägen 11, 371 62 Lyckeby, SE
Email: info@hairucation.se

Relationship with Shopify

We use Shopify as our e-commerce platform. Shopify processes personal data to deliver, protect, and improve the platform.

  • As our data processor, Shopify handles data so that we can operate our store.
  • As an independent data controller, Shopify may process certain data to develop and improve its own services (for example, platform analytics).

For more information about Shopify’s processing and your rights with them, see Shopify’s Privacy Policy.

What Personal Data Do We Collect?

We may collect the following categories of personal data:

  • Contact details: name, address, email address, phone number
  • Payment information: card or invoice details via your chosen payment provider
  • Order information: purchase history, deliveries, returns
  • Account information: login details and settings (if you create an account)
  • Communication: information you provide in customer support or other contact
  • Device and usage data: IP address, browser type, device type, interactions on our website
  • Marketing preferences: if you sign up for newsletters or promotion

Sources of Personal Data

We collect personal data:

  • Directly from you (when you make a purchase, create an account, sign up for a newsletter, or contact us)
  • Automatically through cookies and similar technologies
  • From our service providers (payment and shipping companies, IT providers)
  • From partners (e.g. marketing platforms)

Why Do We Process Your Data?

We process your personal data in order to:

  • Handle orders, payments, and deliveries
  • Provide customer support
  • Send order confirmations and delivery notifications
  • Fulfill legal obligations (e.g. accounting regulations)
  • Send newsletters and marketing (only with your consent)
  • Prevent fraud and ensure a secure shopping experience
  • Improve our services and your user experience

Legal Basis

We process personal data based on:

  • Contract: to fulfill your purchase
  • Legal obligation: e.g. accounting law (7 years)
  • Consent: for newsletters and marketing cookies
  • Legitimate interest: to improve services and provide relevant communication

Retention Period

  • Purchases/accounting: kept for 7 years in accordance with accounting law
  • Customer service cases: kept for up to 24 months
  • Newsletters/marketing: kept until you unsubscribe or withdraw consent
  • Cookies/analytics data: kept up to 24 months depending on type

After this, the data will be deleted or anonymized.

Sharing of Data

We only share personal data when necessary to provide our services:

  • Payment providers (e.g. Klarna, Stripe, PayPal)
  • Shipping companies (e.g. PostNord, DHL)
  • IT and system providers (e.g. Shopify, analytics tools)
  • Newsletter platforms (e.g. Mailchimp)

We never sell your personal data.

International Transfers

When we use service providers outside the European Economic Area (EEA), we ensure protection through the EU Standard Contractual Clauses (SCCs) or adequacy decisions by the European Commission.

Children’s Data

Our services are not directed to children under the age of 16. We do not knowingly collect data from children. If you are a parent or guardian and believe that your child has provided data to us, please contact us and we will delete it.

Your Rights

Under applicable data protection laws (including GDPR), you have the right to:

  • Request access to your data
  • Request correction of inaccurate data
  • Request deletion of your data (unless we are legally required to keep it)
  • Request restriction of processing
  • Object to processing based on legitimate interest
  • Receive your data in a structured format (data portability)
  • Withdraw your consent for marketing at any time

You may also appoint an authorized agent to submit requests on your behalf. We do not discriminate against anyone for exercising their rights.

If you are located in the EU/EEA, you can also file a complaint with your local supervisory authority. In Sweden, this is the Swedish Authority for Privacy Protection (IMY).

Cookies

We use cookies to improve your experience.

Types of cookies

  • Necessary cookies – required for the site to function (e.g. shopping cart)
  • Functional cookies – remember your preferences
  • Analytics cookies – analyze website traffic (e.g. Google Analytics)
  • Marketing cookies – used for advertising (e.g. Facebook Pixel, if applicable)

You can always manage or delete cookies in your browser or via the cookie banner.

Security

We use technical and organizational measures to protect your personal data against unauthorized access, loss, or misuse.

Changes to This Policy

We may update this policy from time to time. The latest version will always be available on our website.