Skip to main content
English
Open search engine
Search
Close search engine Clear Search
Products in the cart: 0. See details

Privacy Policy and Cookies Policy

 

 

PRIVACY POLICY AND COOKIES POLICY

OF THE ONLINE STORE 

SCANDINAVIANMOSS.EU 

www.shop.scandinavianmoss.eu 

 

 

 

Owner/Seller/Data Controller: 

 

Scandinavian Moss AB

Björkstigen 1, 842-33, Sveg, Sweden

VAT EU: SE559306373701

E-MAIL: 

scandinavianmoss@scandinavianmoss.eu 

admin@scandinavianmoss.eu 

+46 722012958

 

+46 768004442

 

  1. General

 

 

  1. This document sets out the privacy policy for the online shop www.shop.scandinavianmoss.eu (hereinafter referred to as the "Online Shop"). The data controller for the Online Store is the Seller and Manufacturer – Scandinavian Moss AB, Björkstigen 1, 842-33, Sveg, Sweden, EU VAT: SE559306373701, E-MAIL:scandinavianmoss@scandinavianmoss.eu ,admin@scandinavianmoss.eu , +46 722012958, +46 768004442.
  2. Personal data collected by the data Controller is processed on the basis of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as the GDPR).
  3. The data Controller makes every effort to protect the privacy and information provided to it concerning the Customers of the Online Store. The Administrator selects and applies appropriate technical measures with due diligence, including programming and organisational measures, to ensure the protection of the data being processed, in particular to protect the data against unauthorised access, disclosure, loss and destruction, unauthorised modification, as well as against processing in violation of applicable law.
  4. Personal data will be processed in accordance with the principles set out in Article 5 (GDPR).

Personal data will be:

  1. processed lawfully, fairly and in a transparent manner in relation to the data subject ("lawfulness, fairness and transparency");
  2. collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes; further processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes shall, in accordance with Article 89(1) of the GDPR, not be considered incompatible with the initial purposes ("purpose limitation");
  3. adequate, relevant and limited to what is necessary for the purposes for which they are processed (‘data minimisation’);
  4. accurate and, where necessary, kept up to date (‘accuracy’);
  5. kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, for scientific or historical research purposes or statistical purposes pursuant to Article 89(1) of the GDPR, subject to the implementation of appropriate technical and organisational measures required by of this Regulation in order to safeguard the rights and freedoms of data subjects ("storage limitation");
  6. processed in a manner that ensures appropriate security of personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures (‘integrity and confidentiality’).

 

 

  1. Personal data we collect and use

 

  1. We ensure that the collection and use of your personal data is lawful. 
  2. The controller may process the following personal data of Customers necessary to establish, shape the content, change or terminate the legal relationship concerning services provided electronically, including:

a) the Customer's surname and first names;

b) company name and EU VAT registration number;

c) address/registered office of the company;

d) delivery address;

e) correspondence address, if different from the address referred to in point c,d;

f) the Customer's e-mail addresses;

g) telephone number;

h) IP address;

i) information about the web browser and device used to view the online store.

 

 

  1. Legal basis for the processing of personal data

 

  1. The legal basis for the processing of personal data is derived from the provisions of the GDPR (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC - General Data Protection Regulation). When we inform you about the processing of personal data on the basis of:
  1. Article 6(1)(a) of the GDPR – this means that we process personal data on the basis of the consent received,
  2. Article 6(1)(b) of the GDPR – this means that we process personal data because it is necessary for the performance of a contract or in order to take steps prior to entering into a contract, upon request,
  3. Article 6(1)(c) of the GDPR – this means that we process personal data in order to comply with a legal obligation,
  4. Article 6(1)(f) of the GDPR – this means that we process personal data for the purposes of our legitimate interests.

 

 

  1. Purposes of personal data processing

 

  1. Customers' personal data is collected in the following cases:
  1. registering an account in the Online Store in order to create an individual account and manage that account. Legal basis: necessary for the performance of the Account service agreement (Article 6(1)(b) of the GDPR);
  2. placing an order in the Online Store in order to perform a sales contract. Legal basis: necessary for the performance of a sales contract (Article 6(1)(b) of the GDPR);
  3. marketing, analytical and statistical activities of the Administrator or its partners (third parties) or other so-called third parties with whom we cooperate, e.g. presenting you with advertisements and offers, also tailored to your interests based on profiling (in a simplified way, we analyse your activity (e.g. your purchase history and behaviour on our website) so that we can better adapt not only to specific, general groups of our Customers, but also to your preferences). However, our activities do not significantly influence your decisions, e.g. purchasing decisions – legal basis: Article 6(1)(f) of the GDPR, i.e. the legitimate interest of the Controller or a third party;
  1. For other purposes, the Customer's personal data may be processed on the basis of:
  1. applicable law – when processing is necessary to fulfil a legal obligation incumbent on the Controller, e.g. when the Controller settles sales contracts on the basis of tax or accounting regulations (Article 6(1)(c) of the GDPR);
  2. necessity for purposes other than those mentioned above resulting from legitimate interests pursued by the Controller or by a third party, in particular to establish, pursue or defend claims, conduct correspondence with Customers, including via contact forms (including responding to Customer messages), market and statistical analyses (Article 6(1)(f) of the GDPR).

 

  1. Period of personal data processing

 

  1. Data processed for the purpose of performing a contract is stored for the period necessary to perform, terminate or otherwise expire the concluded Sales Contract or contract for the provision of Electronic Services.
  2. Data processed on the basis of applicable law is stored for the period required by law, e.g. the storage of tax records (until the expiry of the limitation period for tax liabilities, unless tax laws provide otherwise).
  3. Data processed for purposes arising from the Administrator's legitimate interests will be stored for the duration of the legitimate interest pursued by the Administrator, but no longer than for the limitation period for claims. 
  4. Personal data processed for the purposes covered by the consent statement will be processed until the consent is revoked.

 

 

 

  1. Recipients of personal data

 

  1. The recipients of the Customer's data may be entities performing the order on behalf of the Seller and handling its service: shipping companies and carriers (DHL, UPS), accounting companies, IT solution providers, payment processing companies, banks, marketing service providers, warehouse service providers, telecommunications service providers, law firms, authorised state authorities.
  2. The entities providing online payment services are:
    1. Stripe – Stripe Payments Europe, Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin.
  1. We entrust the processing of personal data to, among others:
  2. All entities to whom we entrust the processing of personal data guarantee the use of appropriate measures to protect and secure personal data as required by law.
  3. Your personal data is generally processed within the European Economic Area (hereinafter: "EEA"). However, due to the Administrator's cooperation with third parties in the scope of the Online Store's activities, your personal data may be transferred to a country outside the EEA where the entity cooperating with the Administrator maintains tools for processing personal data in cooperation with the Administrator. In the event of such a transfer, it will only take place to the extent necessary for the provision of services by these entities to the Controller.
  4. In the case of transfer of personal data to entities based outside the EEA, the Administrator ensures the application of the requirements set out in Chapter 5 of the GDPR, including the application of appropriate safeguards for the transfer in the form of standard contractual clauses adopted by decision of the European Commission. You can obtain a copy of the safeguards for personal data transferred outside the EEA by contacting the Administrator at the following e-mail address: scandinavianmoss@scandinavianmoss.eu . 

 

 

  1. Your rights in the protection of personal data

 

  1. Due to the voluntary nature of providing your personal data, you have the right to 
  1. access your personal data (Article 15 of the GDPR);
  2. rectify your personal data (Article 16 of the GDPR);
  3. erase your personal data ("right to be forgotten" (Article 17 of the GDPR);
  4. restrict the processing of your personal data (Article 18 of the GDPR);
  5. to transfer your personal data (Article 20 of the GDPR);
  6. to object (Article 21 of the GDPR);

 

 

  1. Right to lodge a complaint

As a data subject, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State where you are located, your place of work or the place of the alleged infringement, without prejudice to any other judicial remedy, if you consider that the processing of your personal data infringes data protection legislation.

Swedish Data Protection Authority

Tel. 08-657 61 00

Email datainspektionen@datainspektionen.se

datainspektionen.se 

  1. Consent to the processing of personal data may be withdrawn at any time. Withdrawal of consent to data processing does not affect the lawfulness of data processing carried out by the Controller on the basis of consent prior to its withdrawal.
  2. To exercise your rights, please contact us at the following e-mail address: scandinavianmoss@scandinavianmoss.eu 

 

 

COOKIE POLICY

 

  1. The data Controller uses cookies. 
  2. Cookies are IT data, in particular text files, stored on Users' devices and intended for use on websites. 
  3. The cookies used by the Administrator are safe for the User's devices. In particular, it is not possible for viruses or other unwanted software or malware to enter the User's devices in this way. These files allow the identification of the software used by the User and the customisation of the Services to each individual User. Cookies usually contain the name of the domain from which they originate, their storage time on the device and the assigned value.
  4. Depending on the purpose of collection, we distinguish the following cookies:
  1. necessary: necessary for the proper functioning of the website – files processed on the basis of the legitimate interest of the administrator (Article 6(1)(f) of the GDPR);
  2. statistical: they allow us to examine traffic on the website, learn about the preferences of our users, analyse their behaviour on the website and enable interaction with external networks and platforms – files processed on the basis of the user's voluntary consent (Article 6(1)(a) of the GDPR);
  3. marketing: they allow us to tailor the advertisements and content displayed to the preferences of our users and to conduct personalised marketing campaigns – files processed on the basis of the user's voluntary consent (Article 6(1)(a) of the GDPR).
  1. In terms of their validity period, we distinguish between two categories of cookies:
  1. session cookies – existing until the end of a given session,
  2. persistent cookies – existing after the end of the session.
  1. In terms of the entity administering cookies, we distinguish between:
  1. our cookies,
  2. third-party cookies.
  1. Cookies may be used by advertising networks, in particular the Google network, to display advertisements tailored to the way the Customer uses the Online Shop. For this purpose, information about the Customer's navigation path or the time spent on a given page may be stored.
  2. With regard to information about the Customer's preferences collected by the Google advertising network, the Customer may view and edit information resulting from cookies using the tool: https://www.google.com/ads/preferences/.
  3. The User may independently and at any time change the settings for cookies, specifying the conditions for their storage and access by cookies to the User's device. The User may make the changes referred to in the previous sentence using the web browser settings or by configuring the service. These settings can be changed in particular to block the automatic handling of cookies in the web browser settings or to inform the User each time they are placed on the User's device. Detailed information about the possibilities and ways of handling cookies is available in the software (web browser) settings.
  4. To learn how to manage cookies, including how to disable them in your browser, you can use your browser's help file. You can find information on this by pressing the F1 key in your browser. In addition, you will find relevant tips on the following subpages, depending on the browser you are using:

Firefox

Chrome

Safari

Internet Explorer / Microsoft Edge

  1. Restricting the use of cookies may affect some of the features available on the website. 
  2. The website also collects external cookies, known as third-party cookies, which originate from external servers.
  3. Due to the fact that the Administrator cooperates with other entities within the Online Shop, for the purposes of this cooperation, the browser also saves cookies that originate from entities with which the Administrator cooperates. In this way, information about the Products viewed is collected, among other things. Cookies sent to by these entities are intended, in particular, to ensure the proper functioning of the Online Store and to improve the effectiveness of presenting advertisements that correspond to your online activity. Your data in this regard will be processed within the scope of your consent, among other things, to ensure the accuracy and attractiveness of the advertisements of products and services presented or to make the appropriate settlements for the publication of these advertisements. If you do not want the above-mentioned partner to process your data collected on our websites in order to ensure the correctness and attractiveness of the advertisements of products and services presented to you, you can withdraw your consent. (Google Analytics, Google ADS, Meta Pixel).

 

 

 

The administrator reserves the right to change this privacy policy with cookies. The new version will be posted on the online store's website. 

 

 

05.01.2026