The data controller for the processing of your personal data is:
Elliotti AB, Makadamgatan 5, 254 64 Helsingborg, Sweden
Telephone: +46 733 884743
What personal data do we collect in, and from where?
When you are in contact with us (e.g. when making a purchase, filling in a form or visiting the website) we collect personal data about you. The information we collect is name, social security number, address, e-mail address and telephone number, purchase, order and usage history, IP address and information that you provide to our customer service.
We collect your address from the civil registration register or you can fill it in yourself on our website.
That is why we process your personal data:
We process your personal data for the following purposes and with the support of the following legal grounds:
We process personal data for processing orders and to send notifications about delivery status.
The processing is necessary for us to be able to fulfill our contract with you.
Customer service cases
We process personal data to handle customer service cases such as e.g. questions, complaints and warranty matters.
The processing takes place in order to be able to help you with your customer service matters, which is our legitimate interest, as well as to fulfill legal obligations in the case of complaints and warranty matters.
We process personal data to send offers and marketing via e-mail, post and SMS. We also recommend products on the website and send personalized offers and reminders about products that are still in your shopping cart. This processing may include profiling.
The processing takes place with your consent for direct marketing or for our legitimate interest in sending direct marketing.
Improvement and development
We process personal data for to be able to improve and develop our service, our products and our technical systems.
The processing takes place for our legitimate interest in being able to update, improve and develop service, products and technical systems.
Fulfillment of obligations according to law
We process personal data in order to comply with applicable laws, e.g. laws on accounting, tax or product safety.
The processing takes place to fulfill obligations according to law.
Prevention of abuse and crime
We process personal data to prevent abuse of our services and to prevent crime, e.g. fraud.
The processing takes place for our legitimate interest in preventing and preventing abuse and illegal use of our services.
Those who receive the personal data
We may do share personal data with others but only when permitted by law. Those with whom personal data is shared can be e.g. authorities, logistics companies, marketing companies or other suppliers.
How long the personal data is saved
We save the personal data as long as necessary for the purposes for which they were collected or as long as required by law or other statutes.
Purchases and order history are saved as long as we are obliged to do so in order to comply with requirements according to law.
Customer service data related to purchases and complaints are saved as long as we are obliged to do so to comply with legal requirements. Communications with our service desk that we do not have to save to comply with legal requirements are deleted after six months.
Data for marketing is saved until you request to no longer receive marketing material or when you have been inactive for three years.
Data for the prevention of abuse and crime is saved as long as we need it to prevent or report crime (e.g. fraud).
We respond to your request regarding any of your rights as soon as possible but no later than within one month.
You have the right to receive information about how we process your personal data and a copy of the personal data.
You can request that incorrect or incomplete data be corrected.
You have the right to your personal data deleted in the following cases:
The personal data are no longer necessary for the purposes for which they were collected or processed;
You have withdrawn your consent to the processing of the personal data and there is no other legal basis for the processing;
You have objected to the processing of personal data that took place in support of our legitimate interest and your interest weighs more heavily;
V i has processed the personal data in an illegal manner;
The personal data must be deleted to fulfill a legal obligation.
Restriction of processing
You have the right to request that the processing of your personal data is limited in the following cases:
You dispute the correctness of the personal data, during a time that gives us the opportunity to check whether the personal data is correct;
We have processed the personal data in an illegal way and you object you that the personal data be deleted and instead request that its use be restricted;
You need the personal data to be able to establish, assert or defend legal claims but we no longer need the personal data for the purposes for which they were processed;
You have objected to the processing of your personal data and we assess over a period of time whose legitimate interest comes first.
Objection to processing
You have the right to object to such processing of your personal data r that we process due to a legitimate interest. The processing ends in such a case if we do not have a legitimate interest that takes precedence over your interests or if we have to continue the processing to safeguard legal claims.
Objection to direct marketing
You have the right to object to the processing of personal data for direct marketing. You can object to direct marketing by contacting customer service. If you have made such an objection, we will stop processing your personal data for direct marketing purposes.
You have the right to receive the personal data that you have provided to us and that we process automatically on based on an agreement with you or due to your consent, in a structured, common and machine-readable format.
If you are dissatisfied with how we process your personal data, you can contact us or submit a complaint to a supervisory authority.
We use so-called cookies on the website. The information that is collected and analyzed with the help of cookies is used to adapt and streamline our services, the content of the website, offers and advertisements to the visitor, as well as to increase the security of the website.
In short, it works like this here: All information that should remain between two page loads must somehow be tied to a particular user. This is done by storing a unique key in a user's browser. When the user loads a new page, the key is sent to the page and in this way we can find out if the user is logged in and if he has put something in the shopping cart and so on.
If you do not accept cookies in your browser several of the functions on the websites will not work.This is because the website will think it is a new visitor at each page load
If you do not accept cookies, your browser can be set so that you automatically refuse the storage of cookies or be informed every time a website requests to store a cookies. Through the browser, previously stored cookies can also be deleted. See the browser's help pages for more information.
You can choose not to accept cookies from third parties in your browser.
Google will use this information for the purpose of evaluating your use of the website, compiling reports of activities on the website and providing other services in connection with activities on the website and use of the Internet.
If you do not want your visits to our website to appear in the statistics in Google Analytics, you can install an add-on in your browser by following this link: https://tools.google.com/dlpage/gaoptout.
Our e-commerce platform is provided by Shopify and data is stored in their secure services / solutions.
The person responsible for the processing also uses services provided by third parties. Here is an overview of some subcontractors where information can be stored.
If you pay with Klarna in the online store, personal data such as e-mail, name, address, social security number is shared with Klarna for credit. Elliotti never stores your social security number and you can be sure that this is treated securely and encrypted at Klarna. You can read more about Klarna data protection here.
Gsuite at Google:
Gsuite by Google is used, among other things, for managing e-mail, documents (G Disk). Information stored in these systems and email correspondence or documents may be stored with Gsuite by Google.
Fortnox is used as an accounting system and data required for accounting is stored here. Typical name / Address / Order / Invoice.
Communication via e-mail and SMS
As a customer, you will be able to receive e-mails and text messages about your customer relationship. For example, we send you emails / SMS related to orders you have entered, SMS with tracking number, forgotten password, information about your customer account, etc. This is defined as justified interest and it will not be asked for consent.
We also use email for marketing and communication. As a customer, you receive regular newsletters, provided you have given your consent to it. It is possible to unsubscribe by clicking on the unsubscribe link in the e-mails.
We use advertising via Google's platform. Cookies are used so that advertising can be targeted based on the visitors' patterns.
We use advertising via Facebook's platform. Cookies are used so that advertising can be targeted based on visitor patterns.
Security Certificate (SSL)
It is safe to visit this website and our website has a security certificate that verifies the website's identity and ensures that all communications are encrypted. We use a recognized security certificate from leading player Commfides (also a supplier to Altinn.no).
The purpose of encryption is to ensure secure data communication between the server (our website) and the client (your browser) This includes a digital certificate that proves the authenticity of the website and its sender.
Transparency and rectification
You have the right to access the information recorded about you. If the registered information is incorrect or incomplete, you can request that the information be corrected in accordance with the Personal Data Act.
Storage and deletion
Information that is no longer required for the purpose for which it was created are removed from our systems.
According to the law, you have automatically agreed that we will store cookies on your computer if you allow this via your browser settings.
Cookies are small text files that are placed on your computer / device when you download a website.
Storage of information and processing of this information is not permitted unless the user has both been informed of and has given consent to the processing. The user must be informed about and approve what information is processed, what the purpose of the processing is and who processes the information, cf. ekomlagen section 2-7b.
JSESSIONID; this is a "session cookie" that is removed from your computer / mobile when you close the browser. This cookie has a reference ID for a session file on the web server. The session file contains non-personal data. Required for the anonymous user to have their own shopping cart, favorites, etc. The session file is automatically deleted after the user has closed the browser or been inactive and is therefore not saved permanently. Only system administrators have access to these session files..
Google Analytics/Google Tag Manager; leaves cookies on your computer (these begin with _ga, _gat and _gid). The information is processed in de-identified and aggregated form. De-identified means that we cannot trace the information we collect to the individual user. We use the "IP Anonymization in Google Analytics" functionality, for example an IP address 220.127.116.11 becomes 18.104.22.168. Elliotti does not use analysis tools other than Google Analytics and data is thus not transferred by Elliotti, to other systems or other systems for further analysis.
Facebook; leaves cookies on your computer. Elliotti uses Facebook for certain types of advertising, such as product ads. Trackers are published on our website to track the results of these marketing activities. Facebook trackers collect data about user traffic and for logged-in Facebook users, they also have the user's identity. Facebook trackers are for evaluation.